Question about pg_tde use HashiCorp Vault to achieve rotate key

Hi, I’m trying to use pg_tde and HashiCorp Vault to achieve rotate key.
Here are my steps below:

  1. I start the HashiCorp Vault:

  1. Set the environment variable
    image

  2. Check the vault service is running ok.

  3. Store two keys

  4. Valid the keys

  5. Set the pg_tde_policy.hcl

  6. Write in and read the pg_tde_policy

8.Create a new token relate to the pg_tde_policy

  1. Valid the new token

  2. Connect to database and check the status

  3. Create a new provider through HashiCorp Vault and set the principal key

  4. Restart the percona postgrsql service
    image

  5. When I try to connect database again, it seems core dumped…

Any suggestions for my problem?

Thx!

Hi,

I’ve notified our pg_tde developers to get back to you on this issue!

Hello Kevin,

We have recently updated our documentation site here: pg_tde documentation

Please let us know your thoughts, and if you have the time to go through the setup again, let us know your feedback, we really appreciate it, thank you!