Hi I have a percona xtradb cluster and its fine , but when i try to create a slave from one of the node it fails as
Last_IO_Errno: 3159
Last_IO_Error: error connecting to master 'repluser@10.128.0.21:3306' - retry-time: 60 retries: 1
Last_SQL_Errno: 0
but i can login through mysql -hmysql1 -urepluser -pPassword123#@!
below are cnf
log-bin
log_slave_updates
expire_logs_days=7
Disabling symbolic-links is recommended to prevent assorted security risks
symbolic-links=0
#binlog encrption
#encrypt-binlog=1
#master_verify_checksum
#binlog_checksum=crc32
require_secure_transport = ON
#Cluster encryption
early-plugin-load = keyring_file.so
keyring-file-data = /var/lib/mysql-keyring/keyring
ssl-key=/etc/certs/server-key.pem
ssl-ca=/etc/certs/ca.pem
ssl-cert=/etc/certs/server-cert.pem
[mysqld_safe]
log-error=/var/log/mariadb/mariadb.log
pid-file=/var/run/mariadb/mariadb.pid
include all files from the config directory
!includedir /etc/my.cnf.d
Please help
2 Likes
Hello, did you grant the replication slave privilege to the user? did you create the user with % wildcard or limited to login from specific ip addresses? See MySQL :: MySQL 8.0 Reference Manual :: 17.1.2.3 Creating a User for Replication for more info.
3 Likes
Hello, did you grant the replication slave privilege to the user? did you create the user with % wildcard or limited to login from specific ip addresses?
Yes i have tried both the approach still no luck
1 Like
@Pappu_Dba,
I see MariaDB mentioned above. Are you trying to replicate between PXC and Maria? If you are, and GTID is enabled, then this won’t work because MariaDB uses a proprietary GTID sequence.
Can you also share the CREATE USER and GRANT syntax you used to create the ‘repluser’ account?
1 Like
Even though this is an old issue. I came across similar one and thought to update this one after getting resolution.
This should be because of require_secure_transport = ON
and the user is created without SSL or the connection is without SSL certs
Error no 3159 is an insecure connection being prohibited.