Hello, I read the documentation but to be honest, I was unable to find any direct answers about clustering and auto-unsealing. To be straight:
- If I create a cluster and one of the nodes goes down, will this particular node be able to auto-unseal itself? Does any node joining the cluster need to be manually unsealed?
- If nodes joining the cluster are obtaining master key automatically what happens in case of all the cluster goes down (crash or planned restart)? Does administrators need to manually unseal all of the nodes or just only one?
- In documentation of transit and raft auto-unseal approach one of the vaults is marked as master and auto-unsealing the other vault. Can it be configured that in case of Vault 1 goes down, Vault 2 also will be able to auto-unseal the other vault?
- Is there any restriction to mechanisms described by above questions when using auto-unseal (Raft) and all vaults are configured as one cluster?