FAQ
I recently configured a new Salt master to run as a non-privileged user
under a Python virtual env.

Virtual environment root :

/pyvenv/salt

Layout :
root_dir: /pyvenv/salt/salt-master-root/

pki_dir: /pyvenv/salt/salt-master-root/etc/salt/pki/master

cachedir: /pyvenv/salt/salt-master-root/var/cache/salt/master

Sym_link : /pyvenv/salt/salt-master-root/ ---- > /etc/salt/master

I copied over the minion public keys to
.../salt-master-root/etc/salt/pki/master/minions
and minions cache info to
.../salt-master-root/var/cache/salt/master/minions/

The public/private key pair of the old Salt master was also copied under
.../salt-master-root/etc/salt/pki/master

Running a "salt '*' test.ping " returns a response from only one minion.

I can run a salt-call cp.list_master from any minions successfully.

Also briefly restarted the master with setting the " open_mode: True "
feature to refresh the minion keys.


thanks,
Rohit

--
You received this message because you are subscribed to the Google Groups "Salt-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Search Discussions

  • Colton Myers at Oct 31, 2014 at 9:48 pm
    Hey Rohit,

    Did you ever get this figured out? The next thing I would recommend is restarting all of your minions.

    --
    Colton Myers (basepi)
    Platform Engineer, SaltStack
    On Sep 26, 2014, at 9:19 AM, Rohit Sood wrote:


    I recently configured a new Salt master to run as a non-privileged user under a Python virtual env.

    Virtual environment root :

    /pyvenv/salt

    Layout :
    root_dir: /pyvenv/salt/salt-master-root/

    pki_dir: /pyvenv/salt/salt-master-root/etc/salt/pki/master

    cachedir: /pyvenv/salt/salt-master-root/var/cache/salt/master

    Sym_link : /pyvenv/salt/salt-master-root/ ---- > /etc/salt/master

    I copied over the minion public keys to .../salt-master-root/etc/salt/pki/master/minions
    and minions cache info to .../salt-master-root/var/cache/salt/master/minions/

    The public/private key pair of the old Salt master was also copied under .../salt-master-root/etc/salt/pki/master

    Running a "salt '*' test.ping " returns a response from only one minion.

    I can run a salt-call cp.list_master from any minions successfully.

    Also briefly restarted the master with setting the " open_mode: True " feature to refresh the minion keys.


    thanks,
    Rohit


    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com For more options, visit https://groups.google.com/d/optout <https://groups.google.com/d/optout>.
    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com.
    For more options, visit https://groups.google.com/d/optout.
  • Rohit Sood at Nov 14, 2014 at 1:45 pm
    Hi Colton,
                    the issue resolved after rejecting and re-accepting the
    minion keys.

    ...Rohit
    On Friday, October 31, 2014 5:48:42 PM UTC-4, basepi wrote:

    Hey Rohit,

    Did you ever get this figured out? The next thing I would recommend is
    restarting all of your minions.

    --
    Colton Myers (basepi)
    Platform Engineer, SaltStack

    On Sep 26, 2014, at 9:19 AM, Rohit Sood <rs...@tibco.com <javascript:>>
    wrote:


    I recently configured a new Salt master to run as a non-privileged user
    under a Python virtual env.

    Virtual environment root :

    /pyvenv/salt

    Layout :
    root_dir: /pyvenv/salt/salt-master-root/

    pki_dir: /pyvenv/salt/salt-master-root/etc/salt/pki/master

    cachedir: /pyvenv/salt/salt-master-root/var/cache/salt/master

    Sym_link : /pyvenv/salt/salt-master-root/ ---- > /etc/salt/master

    I copied over the minion public keys to
    .../salt-master-root/etc/salt/pki/master/minions
    and minions cache info to
    .../salt-master-root/var/cache/salt/master/minions/

    The public/private key pair of the old Salt master was also copied under
    .../salt-master-root/etc/salt/pki/master

    Running a "salt '*' test.ping " returns a response from only one minion.

    I can run a salt-call cp.list_master from any minions successfully.

    Also briefly restarted the master with setting the " open_mode: True "
    feature to refresh the minion keys.


    thanks,
    Rohit


    --
    You received this message because you are subscribed to the Google Groups
    "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an
    email to salt-users+...@googlegroups.com <javascript:>.
    For more options, visit https://groups.google.com/d/optout.

    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com.
    For more options, visit https://groups.google.com/d/optout.
  • Colton Myers at Nov 14, 2014 at 6:35 pm
    Thanks for the update, Rohit, glad you got it figured out.

    --
    Colton Myers
    Platform Engineer, SaltStack
    @basepi on Github/Twitter/IRC
    On Nov 14, 2014, at 6:45 AM, Rohit Sood wrote:

    Hi Colton,
    the issue resolved after rejecting and re-accepting the minion keys.

    ...Rohit

    On Friday, October 31, 2014 5:48:42 PM UTC-4, basepi wrote:
    Hey Rohit,

    Did you ever get this figured out? The next thing I would recommend is restarting all of your minions.

    --
    Colton Myers (basepi)
    Platform Engineer, SaltStack
    On Sep 26, 2014, at 9:19 AM, Rohit Sood <rs...@ <>tibco.com <http://tibco.com/>> wrote:


    I recently configured a new Salt master to run as a non-privileged user under a Python virtual env.

    Virtual environment root :

    /pyvenv/salt

    Layout :
    root_dir: /pyvenv/salt/salt-master-root/

    pki_dir: /pyvenv/salt/salt-master-root/etc/salt/pki/master

    cachedir: /pyvenv/salt/salt-master-root/var/cache/salt/master

    Sym_link : /pyvenv/salt/salt-master-root/ ---- > /etc/salt/master

    I copied over the minion public keys to .../salt-master-root/etc/salt/pki/master/minions
    and minions cache info to .../salt-master-root/var/cache/salt/master/minions/

    The public/private key pair of the old Salt master was also copied under .../salt-master-root/etc/salt/pki/master

    Running a "salt '*' test.ping " returns a response from only one minion.

    I can run a salt-call cp.list_master from any minions successfully.

    Also briefly restarted the master with setting the " open_mode: True " feature to refresh the minion keys.


    thanks,
    Rohit


    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+...@ <>googlegroups.com <http://googlegroups.com/>.
    For more options, visit https://groups.google.com/d/optout <https://groups.google.com/d/optout>.

    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com For more options, visit https://groups.google.com/d/optout <https://groups.google.com/d/optout>.
    --
    You received this message because you are subscribed to the Google Groups "Salt-users" group.
    To unsubscribe from this group and stop receiving emails from it, send an email to salt-users+unsubscribe@googlegroups.com.
    For more options, visit https://groups.google.com/d/optout.

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupsalt-users @
postedSep 26, '14 at 3:19p
activeNov 14, '14 at 6:35p
posts4
users2

2 users in discussion

Rohit Sood: 2 posts Colton Myers: 2 posts

People

Translate

site design / logo © 2022 Grokbase