Integrity check

Enterprise Edition

Tarantool Cluster Manager is a part of the Enterprise Edition.

TCM supports the integrity check mechanism. The integrity check mechanism in TCM verifies the digital signature of centralized configuration files. It ensures that TCM only applies configurations that are signed with a trusted private key.

This mechanism allows TCM to:

Update the configuration with integrity check support.
Detect unauthorized changes in centralized configuration.

Configure integrity check

Configuration parameters

Parameter	Description	Type	Default
security.integrity-check	Enables signature validation	`bool`	`false`
security.signature-private-key-file	Path to the private key for signing configuration	`string`	`""`

Example configuration

Integrity check can be enabled directly in the TCM configuration file:

# tcm.yaml
security:
    integrity-check: true
    signature-private-key-file: /etc/tcm/private_key.pem

Версия:

Integrity check

Configure integrity check

Configuration parameters

Example configuration