The dual account feature ensures high availability by alternating between two sets of credentials. This prevents downtime during rotation and provides an immediate fallback if an update fails.
System configuration:
Redundancy and fallback: Dual accounts provide a method to control rotation to avoid downtime and offer a fallback mechanism in case of failure.
Account roles: Users configure two accounts: a primary account (currently active) and a secondary account (standby).
Rotation and update process:
Targeted rotation: During a rotation event, only the secondary account is rotated.
Swap mechanism: Once the secondary account rotation is successful, the primary and secondary accounts are swapped within the Secret Manager.
Manual updates: For manual updates, users are permitted to update only the secondary account values.
Manual sync: After a manual update, a successful sync to the target triggers the account swap.
Failure handling:
Stability in failure: If a rotation or sync fails, the accounts remain as they are.
No switching: No swapping is performed in a failure scenario, ensuring the existing primary account remains active.