Question about pg_tde use HashiCorp Vault to achieve rotate key

Hi, I’m trying to use pg_tde and HashiCorp Vault to achieve rotate key.
Here are my steps below:

1. I start the HashiCorp Vault:
   
   

   image942×502 57.1 KB

image596×299 25.4 KB

2. Set the environment variable
   

3. Check the vault service is running ok.
   

   

   image948×106 16 KB

4. Store two keys
   

   

   image682×444 29.9 KB

5. Valid the keys
   

   

   image427×614 29.4 KB

6. Set the pg_tde_policy.hcl
   

   

   image392×331 17.9 KB

7. Write in and read the pg_tde_policy
   

   

   image588×349 21.5 KB

8.Create a new token relate to the pg_tde_policy

image938×193 21.5 KB

9. Valid the new token
   

   

   image948×581 44.1 KB

10. Connect to database and check the status
    

    

    image945×271 25.8 KB

11. Create a new provider through HashiCorp Vault and set the principal key
    

    

    image946×536 48.9 KB

12. Restart the percona postgrsql service
    

13. When I try to connect database again, it seems core dumped…
    

    

    image620×181 13.1 KB

Any suggestions for my problem?

Thx!

Hi,

I’ve notified our pg_tde developers to get back to you on this issue!

Hello Kevin,

We have recently updated our documentation site here: pg_tde documentation

Please let us know your thoughts, and if you have the time to go through the setup again, let us know your feedback, we really appreciate it, thank you!