You can remove a master, which is no longer required in the IBM Security Key Lifecycle Manager Multi-Master cluster.
About this task
You cannot delete a primary master of the cluster. You can delete a standby master only when the
cluster contains multiple standbys. IBM Security Key Lifecycle Manager
Multi-Master cluster supports up to three standbys.
Use the IBM Security Key Lifecycle Manager Multi-Master page or
Remove Master REST Service to delete a master.
Your role must have a permission to delete a master of the cluster.
Procedure
-
Go to the appropriate page or directory.
- Graphical user interface
-
- Log on to the graphical user interface.
- On the Welcome page, click .
- REST interface
- Open a REST client.
-
Delete the master details.
- Graphical user interface
-
- From the Masters table, select the master that you want to delete.
- Click Delete Master.
- On the Confirm dialog, read the confirmation message before you delete the
master.
- Click OK.
- REST interface
-
- Obtain a unique user authentication identifier to access IBM Security Key Lifecycle Manager REST services. For more information about the
authentication process, see Authentication process for REST services.
- To run Remove Master REST Service, send the HTTP POST request. Pass the user
authentication identifier that you obtained in
Step a along with the request
message as shown in the following
example.POST https://localhost:<port>/SKLM/rest/v1/ckms/config/nodes/removeNode
Content-Type: application/json
Accept: application/json
Authorization: SKLMAuth userAuthId=139aeh34567m
[
{"clusterName": "multimaster"},
{"type": "Node",
"ipHostname" : "cimkc2b151",
"httpPort" : "443",
"sklmUsername" : "sklmadmin",
"sklmPassword" : "SKLM@admin123",
"wasUsername" : "wasadmin",
"wasPassword" : "WAS@admin123"}
]
-
Restart WebSphere® Application Server to refresh the
configuration.
What to do next
Verify whether the master that you deleted is removed from the Masters table.