在salt master端执行salt ‘*’ test.ping时,某一节点出现如下报错:Minion did not return. [No response]
登陆到这一节点查看minion的日志,发现如下的问题:
1 $ tail -f /var/log/salt/minion 2 The master may need to be updated if it is a version of Salt lower than 2015.5.3, or 3 If you are confident that you are connecting to a valid Salt Master, then remove the master public key and restart the Salt Minion. 4 The master public key can be found at: 5 /etc/salt/pki/minion/minion_master.pub 6 2015-11-23 23:30:02,645 [salt.crypt ][ERROR ][3530] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 7 2015-11-23 23:30:05,108 [salt.crypt ][ERROR ][3586] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 8 2015-11-23 23:30:15,136 [salt.crypt ][ERROR ][3586] The Salt Master has cached the public key for this node, this salt minion will wait for 10 seconds before attempting to re-authenticate 9
minion大概的意思就是,minion端拿到的key与master端的不符,验证无法通过。
解决方法是删除minion端的key,再重新与master进行连接和认证。
1 $ cat pki/minion/minion_master.pub 2 -----BEGIN PUBLIC KEY----- 3 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzq0AjuyQsVEgsx692GN 4 ... ... 5 7fbuudp4yu5vcYcqksKIFcm0J3E+OR+rx/NUIHt0ZL8HLxcSn4Si/S6dVp/vE7Oc 6 swIDAQAB 7 -----END PUBLIC KEY----- 8 [root@localhost salt]# rm -fr pki/minion/minion_master.pub 9 10 [root@localhost salt]# service salt-minion restart 11 Stopping salt-minion daemon: [ OK ] 12 Starting salt-minion daemon: [ OK ] 13 salt-key -A ##重新加载key
至此,master与minion端的通信正常。