High Availability Mode Setup for Governance Engine
This section describes how to configure and start Governance Engine in high availability (HA) mode for IBM Digital Asset Haven.
Before you begin
- LPAR and cryptographic prerequisites
-
- Both LPARs use the same master key.
- Local crypto domain passthrough is correctly configured on both LPARs.
- Terraform variable consistency
- Ensure that the following Terraform variables have identical values on both the active and backup LPARs:
SECRETMKVP
- Certificate and key files
- Ensure that the following certificate and key files are present on the active LPAR at IBM_DIGITAL_ASSET_HAVEN_HYBRID/GOVERNANCE-ENGINE/contracts/pods/tls/:
ge.ca.cert.pemge.client.cert.pemge.client.key.pembackup.ge.ca.cert.pembackup.ge.cert.pembackup.ge.key.pem
Ensure that the following certificate and key files are present on the backup LPAR at IBM_DIGITAL_ASSET_HAVEN_HYBRID/GOVERNANCE-ENGINE/contracts/pods/tls/:backup.ge.ca.cert.pembackup.ge.cert.pembackup.ge.key.pem
- Network prerequisites
-
- Ensure that the IP addresses of all participating LPARs are allowlisted.
- Verify network reachability between the active and backup LPARs.
Procedure
What to do next
After both servers are running, verify that:
- The active and backup Governance Engine instances are running successfully.
- Synchronization between the active and backup instances is complete.