[英]Salt master is not able to decrypt pillar data using gpg keys
My salt master is not able to decrypt the encrypted pillar data. 我的盐管理员无法解密加密的支柱数据。 How can I make sure that I have salt master configured properly?
如何确保已正确配置Salt Master?
I have gpg keys inside /etc/salt/gpgkeys and also have setup python-gnupg on master and minion, still facing the problem. 我在/ etc / salt / gpgkeys里面有gpg键,并且在master和minion上也安装了python-gnupg,仍然面临问题。
When I execute salt "minion*" pillar.get it returns encrypted data where should have returned the decrypted data. 当我执行盐“ minion *” poster.get时,它将返回加密的数据,而应该返回已解密的数据。
Thanks, Ankit 谢谢安吉
Did some more digging and just got it to work :) I had to modify the Salt Master Configuration and create soft link to my gpg keys as below: 进行了一些进一步的挖掘,然后使它起作用:)我不得不修改Salt Master Configuration并创建指向我的gpg键的软链接,如下所示:
Set the Following Parameter in /etc/salt/master 在/ etc / salt / master中设置以下参数
renderer: jinja | 渲染器:jinja | yaml |
yaml | gpg
gpg
Create gpgkeys Symlink in /etc/salt/ 在/ etc / salt /中创建gpgkeys Symlink
ln -s /root/.gnupg /etc/salt/gpgkeys ln -s /root/.gnupg / etc / salt / gpgkeys
Restart the Salt Master Service 重新启动Salt Master服务
service salt-master restart 服务盐主重新启动
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.