salt public and private keys
- Jean-luc KRIKER
Owned by Jean-luc KRIKER
| Option 1 | Conductor has been rebuilt and the master public has changed |
|---|---|
| read master pub key on the conductor | more /etc/128technology/salt/pki/master/master.pub |
backup old master pub on the SSR and copy the master key from the condutcor to the SSR | mv minion_master.pub  minion_master.pub.bkup vi /etc/salt/pki/minion/minion_master.pub |
| Option 2 | The SSR is New, and the pub may have changed |
| On the conductor | |
|---|---|
keys [root@conductor CA]# cd /etc/128technology/salt/pki/master/ [root@conductor master]# ls master.pem master.pub minions minions_autosign minions_denied minions_pre minions_rejected [root@conductor master]# ls -al total 36 drwxr-x--- 7 root root 4096 Apr 28 13:51 . drwxr-x--- 3 root root 4096 Apr 28 13:44 .. -r-------- 1 root root 1679 Apr 28 13:44 master.pem -rw-r----- 1 root root 451 Apr 28 13:44 master.pub drwxr-xr-x 2 root root 4096 Apr 28 15:23 minions drwxr-xr-x 2 root root 4096 Apr 28 13:51 minions_autosign drwxr-xr-x 2 root root 4096 Apr 28 13:51 minions_denied drwxr-xr-x 2 root root 4096 Apr 28 15:23 minions_pre drwxr-xr-x 2 root root 4096 Apr 28 13:51 minions_rejected [root@conductor master]# | |
| On the SSR / minion | |
minion [root@lr202007009846 ~]# ls /etc/salt/pki/minion/ -al total 20 drwx------. 2 root root 4096 Dec 7 12:19 . drwxr-xr-x. 4 root root 4096 Dec 6 18:52 .. -rw-r--r-- 1 root root 451 Dec 7 12:19 minion_master.pub -r-------- 1 root root 1675 Dec 7 09:18 minion.pem -rw-r--r-- 1 root root 451 Dec 7 09:18 minion.pub | |