Attempting to add new host fail on xoa and on server, worked on xcp-ng center
-
I'm not sure who to ping exactly
Maybe @Team-XAPI-Network with some experience on the cert issue? -
I see at least on a couple of instances that the pool join is being forced. Please don't do this unless you understand the checks being ignored.
What's the result of a pool join without the force option?
Do both hosts have tls verification enabled?
If not, runxe pool-enable-tls-verification. This will set up the certificates for pool communication correctly for the hosts in that pool and turn on TLS verification for pool communication.
If yes, runxe host-list --minimal | xargs -I _ xe host-param-get uuid=_ param-name=name-label | xargs -I _ xe host-refresh-server-certificate host=_. This will reset the certificates for all the hosts in the pool.Try running the normal join command after doing these steps, and report whether it went well, or report the error.
-
@psafont Sorry was swamped with other things. As listed above I get the same error, forced or not, from xcp-ng center, xcp-ng host, or xoa.
tls verification has always been off, and in the past we have not had issue with adding new host to pool.I have taken no other actions since my last posting.
-
xe pool-enable-tls-verificationWas exactly what I needed, thanks! Worked after that.
