在salt master端執行salt ‘*’ test.ping時,某一節點出現如下報錯:Minion did not return. [No response]
登陸到這一節點查看minion的日志,發現如下的問題:
1 $ tail -f /var/log/salt/minion 2 The master may need to be updated if it is a version of Salt lower than 2015.5.3, or 3 If you are confident that you are connecting to a valid Salt Master, then remove the master public key and restart the Salt Minion. 4 The master public key can be found at: 5 /etc/salt/pki/minion/minion_master.pub 6 2015-11-23 23:30:02,645 [salt.crypt ][ERROR ][3530] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 7 2015-11-23 23:30:05,108 [salt.crypt ][ERROR ][3586] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 8 2015-11-23 23:30:15,136 [salt.crypt ][ERROR ][3586] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 9
minion大概的意思就是,minion端拿到的key與master端的不符,驗證無法通過。
解決方法是刪除minion端的key,再重新與master進行連接和認證。
1 $ cat pki/minion/minion_master.pub 2 -----BEGIN PUBLIC KEY----- 3 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzq0AjuyQsVEgsx692GN 4 ... ... 5 7fbuudp4yu5vcYcqksKIFcm0J3E+OR+rx/NUIHt0ZL8HLxcSn4Si/S6dVp/vE7Oc 6 swIDAQAB 7 -----END PUBLIC KEY----- 8 [root@localhost salt]# rm -fr pki/minion/minion_master.pub 9 10 [root@localhost salt]# service salt-minion restart 11 Stopping salt-minion daemon: [ OK ] 12 Starting salt-minion daemon: [ OK ] 13 salt-key -A ##重新加載key
至此,master與minion端的通信正常。