Add known issue text for PKI revocation (#19632)

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2023-03-20 12:24:05 -04:00 · 2023-03-20 12:24:05 -04:00 · 1fe1c756ab
parent 411705d723
commit 1fe1c756ab
1 changed files with 12 additions and 0 deletions
--- a/website/content/docs/upgrading/upgrade-to-1.13.x.mdx
+++ b/website/content/docs/upgrading/upgrade-to-1.13.x.mdx
@ -81,3 +81,15 @@ are unaffected.
@include 'tokenization-rotation-persistence.mdx'

@include 'ocsp-redirect.mdx'
+
+### PKI Revocation Request Forwarding
+
+If a revocation request comes in to a standby or performance secondary node,
+for a certificate that is present locally, the request will not be correctly
+forwarded to the active node of this cluster.
+
+As a workaround, submit revocation requests to the active node only.
+
+#### Impacted Versions
+
+Affects Vault 1.13.0 only.