Hello,
I have a strange behavior when I try to reconfigure agent to talk with a satellite instead of actual master.
Randomly, when I run the icinga node setup command I got this message :
information/cli: Requesting certificate without a ticket.
information/cli: Verifying parent host connection information: host ‘satellite_fqdn’, port ‘5665’.
information/cli: Using the following CN (defaults to FQDN): ‘agent_fqdn’.
information/cli: Backup file ‘/var/lib/icinga2/certs//agent_fqdn.key.orig’ already exists. Skipping backup.
information/cli: Backup file ‘/var/lib/icinga2/certs//agent_fqdn.crt.orig’ already exists. Skipping backup.
information/base: Writing private key to ‘/var/lib/icinga2/certs//agent_fqdn.key’.
information/base: Writing X509 certificate to ‘/var/lib/icinga2/certs//agent_fqdn.crt’.
information/cli: Verifying trusted certificate file ‘/var/lib/icinga2/certs/master.crt’.
information/cli: Requesting a signed certificate from the parent Icinga node.
critical/cli: Peer certificate does not match trusted certificate.
critical/cli: Failed to fetch signed certificate from parent Icinga node ‘satellite_fqdn, 5665’.
Please try again.
At this moment there is no network problem, if I listen on satellite network interface I can see the tcp paquet on port 5665 incoming.
If I re launch the command, sometimes it pass, sometimes I have the same error…
An other randomly issue, when the node setup is OK, sometimes I don’t have the signing request on master/satellite … And some other time I have it …
Have you an idea why those behavior happen ?
Thanks for advance