Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-22060

PgSQL plugin is not able to start TLS encryption for official template

XMLWordPrintable

    • Icon: Problem report Problem report
    • Resolution: Fixed
    • Icon: Critical Critical
    • 6.0.22rc1, 6.4.7rc1, 7.0.0alpha4, 7.0 (plan)
    • 5.0.30, 6.0.12, 6.2.6, 6.4.0beta4
    • None
    • None
    • RHEL 8.7
      LTS 6.0
      PgSQL 14.6
      TSDB 2.8.1
      OpenSSL 1.1.1 series
      Agent2 6.0.14
    • Sprint 103 (Aug 2023)
    • 1

      Steps to reproduce:

      1. Follow: https://git.zabbix.com/projects/ZBX/repos/zabbix/browse/templates/db/postgresql_agent2/README.md?at=refs%2Fheads%2Frelease%2F6.2
      2. Setup PgSQL server to use optional TLS (with mandatory we will just fail);
      3. Check PgSQL stats:
      SELECT datname,usename, ssl, client_addr 
  FROM pg_stat_ssl
  JOIN pg_stat_activity
  ON pg_stat_ssl.pid = pg_stat_activity.pid;

      Result:
      Suggested user will not use encryption.

      Expected:
      Able to set tls options for the plugin like:

      Plugins.PostgreSQL.TLSConnect=required

      This is not a feature request, this is a bug in design. Create official template, implement encryption, and they are cannot be used until you manually re-create the template to support {$PG.SESSION} variable in all keys.

        1.
        		 Faulty TLSConnect parameter functionality in PostgreSQL plugin Sub-task Closed Eriks Sneiders

            drasikhov Denis Rasikhov
            edgar.akhmetshin Edgar Akhmetshin
            Team INT
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: