Joining an Existing Cluster using the CLI Manager

If you are using cloned machines to join a cluster, it is necessary to rotate the keys on all cloned nodes before joining the cluster.

If the cloned machines have proxy authentication, two factor authentication, or TAC enabled, it is recommended to use new machines. This avoids any limitations or conflicts, such as, inconsistent TAC, mismatched node statuses, conflicting nodes, and key rotation failures due to keys in use.

For more information about rotating the keys, refer here.

Important : When assigning a role to the user, ensure that the Can Create JWT Token permission is assigned to the role.
If the Can Create JWT Token permission is unassigned to the role of the required user, then joining the cluster operation fails.
To verify the Can Create JWT Token permission, from the ESA Web UI navigate to Settings > Users > Roles.

To join a cluster using the CLI Manager:

1. In the ESA CLI Manager, navigate to Tools > Clustering > Trusted Appliances Cluster.

2. In the Cluster Services screen, select Join: Join an existing cluster.

   The following screen appears.

   

3. Enter the IP address of the target node in the Node text box.

4. Enter the credentials of the user of the target node in the Username and Password text boxes.

   • Ensure that the user has administrative privileges.
     
   • Select Advanced to manage communication or set the preferred communication method.
     For more information about managing communication methods, refer here.

5. Select Join.

   The node is joined to an existing cluster.

• ←Previous
• Next→