Install Event Store 20.10 on ubuntu 20.04

dlwangwj · July 2, 2021, 9:39am

we use the following config for cluster,but still has a problem.

Error information:
“@t”:“2021-07-02T09:33:56.1340580Z”,"@mt":“Server certificate validation error: {e}”,"@l":“Error”,“e”:“The certificate (CN=eventstoredb-node) provided by the server failed validation with the following error(s): RemoteCertificateChainErrors (PartialChain)”,“SourceContext”:“EventStore.Core.Cluster.EventStoreClusterClient”,“ProcessId”:42550,“ThreadId”:8,“GrpcMethodType”:“Unary”,“GrpcUri”:"/event_store.cluster.Gossip/Update"

=====VM 1 config

Paths

Db: /var/lib/eventstore
Index: /var/lib/eventstore/index
Log: /var/log/eventstore

Certificates configuration

CertificateFile: /etc/eventstore/certs/node.crt
CertificatePrivateKeyFile: /etc/eventstore/certs/node.key
TrustedRootCertificatesPath: /etc/eventstore/certs/ca

Network configuration

IntIp: 172.16.10.22
ExtIp: 172.16.10.22
HttpPort: 2113
IntTcpPort: 1112
ExtTcpPort: 1113
EnableExternalTcp: true
EnableAtomPubOverHTTP: true

Cluster gossip

ClusterSize: 3
DiscoverViaDns: false
GossipSeed: 172.16.10.23:2113,172.16.10.24:2113

Projections configuration

RunProjections: All

=====VM 2 config

Paths

Db: /var/lib/eventstore
Index: /var/lib/eventstore/index
Log: /var/log/eventstore

Certificates configuration

CertificateFile: /etc/eventstore/certs/node.crt
CertificatePrivateKeyFile: /etc/eventstore/certs/node.key
TrustedRootCertificatesPath: /etc/eventstore/certs/ca

Network configuration

IntIp: 172.16.10.23
ExtIp: 172.16.10.23
HttpPort: 2113
IntTcpPort: 1112
ExtTcpPort: 1113
EnableExternalTcp: true
EnableAtomPubOverHTTP: true

Cluster gossip

ClusterSize: 3
DiscoverViaDns: false
GossipSeed: 172.16.10.22:2113,172.16.10.24:2113

Projections configuration

RunProjections: All

=====VM 3 config

Paths

Db: /var/lib/eventstore
Index: /var/lib/eventstore/index
Log: /var/log/eventstore

Certificates configuration

CertificateFile: /etc/eventstore/certs/node.crt
CertificatePrivateKeyFile: /etc/eventstore/certs/node.key
TrustedRootCertificatesPath: /etc/eventstore/certs/ca

Network configuration

IntIp: 172.16.10.24
ExtIp: 172.16.10.24
HttpPort: 2113
IntTcpPort: 1112
ExtTcpPort: 1113
EnableExternalTcp: true
EnableAtomPubOverHTTP: true

Cluster gossip

ClusterSize: 3
DiscoverViaDns: false
GossipSeed: 172.16.10.22:2113,172.16.10.23:2113

Projections configuration

RunProjections: All

alexey.zimarev · July 2, 2021, 3:27pm

As you are using a self-signed certificate, have you placed the CA certificate to /etc/eventstore/certs/ca on all the nodes?

If you used our certificate generation tool, you should have one CA certificate and three node certificates (btw you can use the same node certificate file on all the nodes). It won’t work if each node uses a different CA certificate.

dlwangwj · July 3, 2021, 2:43am

Thanks support. I fixed this problem.