Hey there Thwacksters,
I've been noticing something in which it appears that the SolarWinds Platform will copy the primary polling engines local computer certificates to all other ancillary servers. No idea at what point this may have started (or simply if I never noticed it..), whether it may be triggered by updates, configuration wizard runs or High-Availability, but I've seen this on the 2022.x and 2023.x versions.
I was wondering if anyone out there in the community may have noticed anything like this before and perhaps why the SolarWinds Platform may do this? My first thought was perhaps the administration service does this, or maybe it's RabbitMQ... or the Information Service (SWIS) but that's just speculation.
So I'll try to explain it a bit further in a hopefully simple example. For example, consider an environment with (2) polling engines (1 primary, 1 additional) both configured in an HA pool with a standby and a web server for a total of (5) servers:
- Primary Engine HA Pool
- SERVER1 - HA Active Engine
- SERVER2 - HA Standby Engine
- Additional Engine HA Pool
- SERVER3 - HA Active Engine
- SERVER4 - HA Standby Engine
- Additional Web Server
The computer certificate of SERVER1 is copied to most all other servers (e.g. SERVER3, SERVER4, SERVER5), in some cases, SERVER2's certificate is on those servers as well, always the primary engines though. Appears to copy any certificate in which matches either the subject or alternate dns names with its own hostname (.e.g SERVER1) to all other polling engines and web servers in the environment.
Thanks in advance everyone!
