Dear Justin,
When importing a bundle, it will use the cluster pass phrase to decrypt, therefore,
1. when migrateOut, use following option
encryptUsingClusterPassphrase
2. ensure the target server is configured with the same cluster pass phrase as the source server.
Regards,
Mark
Original Message:
Sent: 10-15-2020 04:30 PM
From: Justin Offett
Subject: Docker bundle bootstrap
Hello all,
I'm trying to configure a docker container using the steps from here: https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-gateway/congw-10-0/install-configure-upgrade/configuring-the-container-gateway/customize-the-container-gateway.html#concept.dita_325f1d4a41256a7e5906a63e766a4e9b3c24d769_autoprovisionAutoProvisionGatewayEntities
The issue is that the bundle I'm trying to use has been exported using migrateOut with an encryptionPassphrase. I beleive this is necessary to pick up trusted certificates as well as passwords.
When I try to import this bundle I get the following error:
gateway | 2020-10-14T16:55:02.839+0000 INFO 1 com.l7tech.external.assertions.gatewaymanagement.server.rest.exceptions.ExceptionMapper: Error processing management request:Resource validation failed due to 'INVALID_VALUES' Failed to decrypt passwordgateway | 2020-10-14T16:55:02.842+0000 WARNING 1 com.l7tech.external.assertions.gatewaymanagement.server.ServerRESTGatewayManagementAssertion: 9050: Error processing management request: <?xml version="1.0" encoding="UTF-8" standalone="yes"?>gateway | <l7:Error xmlns:l7="http://ns.l7tech.com/2010/04/gateway-management">gateway | <l7:Type>InvalidResource</l7:Type>gateway | <l7:TimeStamp>2020-10-14T16:55:02.838Z</l7:TimeStamp>gateway | <l7:Link rel="self" uri="/1.0/bundle"/>gateway | <l7:Detail>Resource validation failed due to INVALID_VALUES Failed to decrypt password</l7:Detail>gateway | </l7:Error>
Is there a mechanism to set the encryptionPassphrase used on the bundle so that the provisioning (bundle migrateIn) will be successful?
Please let me know if you have any questions!
Thanks,
Justin