[Users] Need to recreate public RSA key on node
Hi, I inadvertently overwrote my root authorized_keys file on my host/node (copied instead of appended :( ), so I need to find the proper public RSA key to put back there for ovirt-engine. But I can't seem to find the private (or public) key on the Engine. There is no actual account "ovirt-engine" on the Engine. Where does this key come from? Any other suggestions on an easy way to recreate the file? This is my only node, and it hosts my Primary Data Domain, so I don't think I can easily remove/re-add it. My node was up at the time, and surprisingly it remains up and operational at least for now. What is the remote root ovirt-engine login used for? -Bob
# openssl x509 -in /etc/pki/ovirt-engine/certs/engine.cer -pubkey -noout | ssh-keygen -i -m PKCS8 -f /dev/stdin ----- Original Message -----
From: "Bob Doolittle" <bob@doolittle.us.com> To: "users" <users@ovirt.org> Sent: Wednesday, January 8, 2014 7:37:30 PM Subject: [Users] Need to recreate public RSA key on node
Hi,
I inadvertently overwrote my root authorized_keys file on my host/node (copied instead of appended :( ), so I need to find the proper public RSA key to put back there for ovirt-engine.
But I can't seem to find the private (or public) key on the Engine. There is no actual account "ovirt-engine" on the Engine. Where does this key come from?
Any other suggestions on an easy way to recreate the file? This is my only node, and it hosts my Primary Data Domain, so I don't think I can easily remove/re-add it.
My node was up at the time, and surprisingly it remains up and operational at least for now. What is the remote root ovirt-engine login used for?
-Bob
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Awesome, thanks! -Bob P.S. I should have said that engine and node are both RH6.5, so ssh-keygen doesn't recognize the -m option, but I was able to copy the engine.cer to an F20 host first and run the command. On 01/08/2014 12:51 PM, Alon Bar-Lev wrote:
openssl x509 -in /etc/pki/ovirt-engine/certs/engine.cer -pubkey -noout | ssh-keygen -i -m PKCS8 -f /dev/stdin
# openssl pkcs12 -in /etc/pki/ovirt-engine/keys/engine.p12 -passin pass:mypass -nodes -nocerts | ssh-keygen -y -f /dev/stdin ----- Original Message -----
From: "Bob Doolittle" <bob@doolittle.us.com> To: "Alon Bar-Lev" <alonbl@redhat.com> Cc: "users" <users@ovirt.org> Sent: Wednesday, January 8, 2014 8:01:46 PM Subject: Re: [Users] Need to recreate public RSA key on node
Awesome, thanks!
-Bob
P.S. I should have said that engine and node are both RH6.5, so ssh-keygen doesn't recognize the -m option, but I was able to copy the engine.cer to an F20 host first and run the command.
On 01/08/2014 12:51 PM, Alon Bar-Lev wrote:
openssl x509 -in /etc/pki/ovirt-engine/certs/engine.cer -pubkey -noout | ssh-keygen -i -m PKCS8 -f /dev/stdin
participants (2)
-
Alon Bar-Lev -
Bob Doolittle