I was able to get the compute hosts certificate renewed and back into the cluster,
however I noticed that a couple of my other hosts also have expired certs, but the agent
and libvirtd processes are still running on those hosts. Can someone confirm that running
the "Provision Host Security Keys" option is the correct way to update the
certificates on a host that is still active? I couldn't find any documentation on this
feature/button.
It says it will restart the agent and libvirtd. I'm pretty sure it won't but
this will not affect currently running VM's on the host, correct?
On 8/22/22 14:51, Joshua Schaeffer wrote:
Thanks I appreciate the links.
On 8/22/22 12:41, Sina Kashipazha wrote:
Hey Joshua,
You can provision host certificate through the API call (with cloud monkey) or
UI.
Have a look at the following links:
http://docs.cloudstack.apache.org/en/4.17.0.0/adminguide/hosts.html#securing-process
https://cloudstack.apache.org/api/apidocs-4.17/apis/provisionCertificate.html
Kind regards,
Sina
--
Thanks,
Joshua Schaeffer
