ACCESS FEDERATION: How to remove a registered synchronization target
2023-03-01 17:07
When using Access Federation, you might want to remove an Artifactory instance (or several instances when using high availability) from your synchronization targets list, which means that new security entities (users, groups, tokens, and permissions) won’t transfer to said instance(s).
However, you might have noticed that on the Access Federation configuration page, you may only apply new topologies or edit existing ones, and there is no option to remove synchronization targets.
Changes must be made to the configuration files located under your Artifactory installation path in order to remove a synchronization target from your Access Federation setup.
Steps to remove a synchronization target:
- Gain access to the server which hosts the source Federation instance (in case of using a highly available cluster, it is sufficient to do so for a single node of the cluster)
- Navigate to $JFROG_HOME/artifactory/var/etc/access
- Edit the “access.config.latest.yml” file
- Look for your “outbound” rules under the “federaton” section
- Under federation.outbound.servers you should see the list of synchronization targets, each one is specified using a hyphen (“-”), one such example with a single synchronization target:
* Please be aware that the aforementioned technique only removes synchronization target(s) from asingleJPD (JFrog Platform Deployment), if you desire to delete a bi-syncrhoned Federation setup, you must do so from both ends.
