Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...



Waiting for the salt-key to be accepted:
-----------------------------------------
[DEBUG ] Connecting the Minion to the Master URI (for the return server): tcp://127.0.0.1:4506
[DEBUG ] Trying to connect to: tcp://127.0.0.1:4506
[DEBUG ] salt.crypt.get_rsa_pub_key: Loading public key
[ERROR ] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate
[INFO ] Waiting 10 seconds before retry.
[DEBUG ] salt.crypt.get_rsa_pub_key: Loading public key
[ERROR ] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate
[INFO ] Waiting 10 seconds before retry.
Proxy Not in the top.sls file:
--------------------------
[DEBUG ] Loaded minion key: /etc/salt/pki/proxy/minion.pem
[DEBUG ] Closing AsyncZeroMQReqChannel instance
[ERROR ] No proxy key found in pillar or opts for id ex4600-1. Check your pillar/opts configuration and contents. Salt-proxy aborted.
[INFO ] Proxy Minion Stopping the Salt ProxyMinion
[ERROR ] No proxy key found in pillar or opts for id ex4600-1. Check your pillar/opts configuration and contents. Salt-proxy aborted.
[INFO ] Shutting down the Salt ProxyMinion
The Salt ProxyMinion is shutdown.
No proxy key found in pillar or opts for id ex4600-1. Check your pillar/opts configuration and contents. Salt-proxy aborted.
labuser@saltsackmaster:/srv/pillar$ sudo vi top.sls




PCLI issue


Public key authentication failed : 20.39.210.162


Code Block
titlekey issue
admin@node1.weconnect# show system connectivity internal
Tue 2022-11-08 13:36:18 UTC
Retrieving internal system connectivity...

============ ================= =============== =============== ===============
 Local Node   Remote Node       Service         Address         Message
============ ================= =============== =============== ===============
 node1        UNKNOWN-          ssc             127.0.1.2:122   Public key au
              conductor-node-                   22              thentication
              one.UNKNOWN                                       failed :
                                                                20.39.210.162
 node1        UNKNOWN-          step-           127.0.1.2:155   Public key au
              conductor-node-   repository      55              thentication
              one.UNKNOWN                                       failed :
                                                                20.39.210.162
 node1        node1.weconnect   epm             127.0.0.2:144   Connected
                                                44
 node1        node1.weconnect   routing-        127.0.0.2:133   Connected
                                agent-          33


GUI issue




Code Block
titlesaltminion
Nov 08 14:23:48 sn9103210046 salt-minion[15371]: [ERROR   ] Sign-in attempt failed: {
'enc': 'pub', 
'pub_key': '-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlxt9sehPEipqHH9mEUm\nShJrCFwXD/qTJa/vlxgS2IpxDFmOrbKXRyS7z3YsP7/mxf+jnWAGdmLat5pvgaCt\n9gKo+KE4cxmulBAe6LJnZddA0Sy1Nd0Kp9M4wS1k3kQJ10NvaZy1SjhL+0ix7AVr\ncHVw0c9y2GCXq9QZPbiKApoeiIyE40D3xKGjzgd6spMh9inpHSkeEDhvS7QW98V7\nuKgw5SEytkV0vV7sDxLivxpmvjwPyZlEXCbPquNg9JdNVSS3BJazGmG4GWs6yAh1\ni0fYEkpLlMR44sgzSf/WUtVcolfWAHaD5Q/jSsRRsL/D+TGefzZ8AsNKHlcZYWWa\nSwIDAQAB\n-----END PUBLIC KEY-----\n', 'publish_port': 4505, 
'aes': b'\x8e/\xef7\x91\x1br\xa9)3\x9c\xa7\xccz\x0b\xc8AN\x1f\xf2\x81\x0cvguK\\kn\xce\x18\x9c\xc9\xe1\xc6\xa4\x9a\xed\xa1\x80N\xe9N\xab\xbc\xb4R\xdb\xfam\xcd\xd2\xb9y\xf0\xd2\x95fp\x14\xcd\x89\xd0\xb3\xb6\'\xb3\x81U\xc6\x1c)\xa6\x0e\x9d`\xecD:\xfdU\xaau\xccZ\xf6z%\xa0\x1c\x9a\x86(\xc2\x1aWT\xeb\x00ZEC\xb3\n\xe8?\xc46o\xfc*?p\xc6<\x1f\xcb\xfb\x15\x0f\x94\\\xc2\x03\x1eb\xacih\xc7\x8c\x01\xa7\xc6\x01\xe7\xb5\xb9\xf36\xd3\x95\x85aE9\x91\xc1Y\xa1\xfb$\xb2\x08\xba06\x1f\xd4[\xbeTj\x14\x01M\xbe\xc9\x87\x11\x85\x82h\x9f\xf5d\x0f\xe0\xc1[\x8f\x10\xbaV\x86,\x91"\x8fb\x9c1k\xe2S\x96\x7f\x0f\x06\x0e\xef\xd4B\xbc\x10\xceT%!K\xa9^\xa9]@f#\x83\xb17b\x85T\xf8\\\xf6\xf6\xe5\xf4\xf2 ZJ#\x81?J\x9c\xea\xac\x16\xeb\xf4\xc8\x1a\xcd\n\xf5\xf5\xaf\x95\xf8I\xa0\xa6\xf4', 
'sig': b'\x07\x12\x85E\x8c\x9aNQ\x02\x90\x04\x9d0\x0f\xc9BC\xd3\x9aYL\x7f\x8c\x84\xed?\xce\xdd\x9d\xe1\xa8b\x03\xbd\x88\xe4E\xa3\x07\xcc\x93\x15\x98\xb4I\xf3>\xd3t\xfa\xdc\xec\xb1\x9e\xc7\xe5\xce\x81xa\xb3j\x8e\xdd\xcf\x87uZ\x13\xbb\xce\xe2k\x88\x05\xce8M{\xe7{\xcf5\xa9"\xabx\xf6%2\x00\xe4\xf2f\xb5j[\xad\xa3b\x81Rs\x00T\x1a\xc7\xe4A&\xe9\xf3\x91\x03\xb9\xe3TH\xfe0e\xe66\x90P\x16\x18\xa3mS\xc9+B\xf4\x17\x07A\x13\x0f\x86;W\xe7\xdfF\xab\tuz\xdf/P\xa7\xecH\x07i\xa0M1=\x00\xb2P\xb2\xa8\xe7tw\x11\x06_\x98+\xea\xaf\xafD\x80\xf2\xea8\xbdn;\x1aq\xe1\xdc\xbc+\xd8\xae%\x16<\xa2-\x17K\xfaQR\x94\xae1\xac9\xac\xd1$\xdb\xb6\x8e\xe8\x0b\x875\xf0\xc2\xe9\x08\xe83w\x02\x06,\x89#\xa9\x98\xfd\x8aew\x0fZ\xad\xdc\xbd\x82\x9b\xed\xa6d\xbc\xd3\xe1O\x8eq\x9et\x002'}
[root@sn9103210046 ~]#



Code Block
titletest with SSH
collapsetrue
It look like a:

on the SSR:
ssh 20.39.210.162 -p 4505 -i minion.pub



on the conductor:
[root@Conductor2-Azure ~]# journalctl -fu 128T

Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner: 128T Salt Master: [ERROR   ] Exception parsing response from ('90.200.149.193', 16614)
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner:
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner: 128T Salt Master: Traceback (most recent call last):
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner:
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner: 128T Salt Master:   File "/usr/lib/128technology/unpar/salt_master/pypi__36__salt_3002_5/salt/transport/tcp.py", line 1515, in _stream_read
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner:
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner: 128T Salt Master:     body = framed_msg["body"]
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner:
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner: 128T Salt Master: TypeError: 'int' object is not subscriptable
Nov 08 14:35:19 Conductor2-Azure processManager[6049]: Automated Provisioner:


on the Conductor

journalctl -fu 128T

Nov 08 14:27:41 Conductor2-Azure sshd[21230]: Connection closed by authenticating user root XX.XX.XX.XX port 16496 [preauth]

Source IP@ : XX.XX.XX.XX


On the conductor master keys

/etc/128technology/salt/pki/master/


Code Block
titlemaster keys
[root@Conductor2-Azure ~]# ll /etc/128technology/salt/pki/master/
total 8
-r-------- 1 root root 1679 Nov  8 12:33 master.pem
-rw-r----- 1 root root  451 Nov  8 12:33 master.pub
drwxr-xr-x 2 root root   52 Nov  8 14:44 minions
drwxr-xr-x 2 root root    6 Nov  8 12:35 minions_autosign
drwxr-xr-x 2 root root    6 Nov  8 13:52 minions_denied
drwxr-xr-x 2 root root    6 Nov  8 15:23 minions_pre
drwxr-xr-x 2 root root    6 Nov  8 12:35 minions_rejected






generate certificate