Key Management¶
Keys are the mechanism that ensures secure communication between SambaBox and salt-minions (clients).
Unless a client’s key is in the Accepted list in SambaBox, the key cannot be acted upon.
Client computers with minion installations are listed on the key management screen. Accept the keys of these computers and register each as an entity in the management system.
Accepted¶
In this field, client keys accepted by SambaBox are listed along with their network names.
Keys in the list can be moved to the Rejected list with the [Reject] button.
Note
Clients in the reject list cannot be communicated and their orchestration functions are not valid.
Clients can be completely removed from the system with the [Delete] and re-accepted afterwards.
Hint
With the [Delete] button, you can restart the salt-minion service in deleted clients so that the client’s key is added to the Accepted list.
Unccepted¶
In this field, the keys of the clients on which the salt-minion service has been restarted after the SambaBox has been determined as the master are listed.
Rejected¶
Clients that are not desired to be contacted by SambaBox and that are rejected are listed here.
Keys in the list can be moved to the Accepted- list with the [Accept] button.
Keys in the list can be completely removed from the system and accepted again with the [Delete] button.
Blocked¶
SambaBox orchestration system lists the second incoming salt-minion request here, if the system receives a salt-minion request from two different IPs with the same network name at the same time.
Note
This happens when a minion has a duplicate ID, or when a minion regenerates or generates new keys and the previous key is not deleted from the Salt master.