Skip to content

Configure UDS

A Unix Domain Socket (UDS) listener provides lower-overhead communication between Secret Agent and Aerospike Database when both processes run on the same host. For cross-host deployments or when TLS encryption is required, use a TCP connection instead.

To configure a UDS listener, add the uds section to the service context in your Secret Agent configuration file:

service:
  uds:
    socket-path: /var/run/aerospike/secret-agent.sock

The socket-path value specifies the file system path where Secret Agent listens for connections. Both the Secret Agent process and the client must have read and write access to this path.

When Secret Agent starts, it creates a socket file at the specified path. If the socket file already exists, Secret Agent deletes it and creates a new one. The socket file is created with permissions 660 (readable and writable by the owner and group). Secret Agent sets the user and group ownership of the socket file to match the Secret Agent process.

The socket file is deleted when Secret Agent stops gracefully.

Feedback

Was this page helpful?

What type of feedback are you giving?

What would you like us to know?

+Capture screenshot

Can we reach out to you?