Hi guys,
this time i need a bit of help.
i have just set up a 2 node cluster (pve9) and wanted to add my pbs (4) node as qdevice for quorum.
when i try to do so i get the following output:
forum search yields nothing.
ssh-login with root from the pve nodes is working:
the bad permissions error is weird, but i havent played around with the key files or their permissions.
the pve nodes are not fresh installs though.
the main node has been running since pve 7 times and as has been upgraded whenever a new pve version was released.
i will be happy for any tips here.
this time i need a bit of help.
i have just set up a 2 node cluster (pve9) and wanted to add my pbs (4) node as qdevice for quorum.
when i try to do so i get the following output:
Code:
root@pve:~# pvecm qdevice setup 192.168.0.240 -f
/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/root/.ssh/id_rsa.pub"
/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@192.168.0.240's password: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0755 for '/root/.ssh/id_rsa' are too open.
It is required that your private key files are NOT accessible by others.
This private key will be ignored.
Load key "/root/.ssh/id_rsa": bad permissions
Number of key(s) added: 1
Now try logging into the machine, with: "ssh -i /root/.ssh/id_rsa 'root@192.168.0.240'"
and check to make sure that only the key(s) you wanted were added.
INFO: initializing qnetd server
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0755 for '/root/.ssh/id_rsa' are too open.
It is required that your private key files are NOT accessible by others.
This private key will be ignored.
Load key "/root/.ssh/id_rsa": bad permissions
root@192.168.0.240: Permission denied (publickey,password).
INFO: copying CA cert and initializing on all nodes
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0755 for '/root/.ssh/id_rsa' are too open.
It is required that your private key files are NOT accessible by others.
This private key will be ignored.
Load key "/root/.ssh/id_rsa": bad permissions
root@192.168.0.240: Permission denied (publickey,password).
scp: Connection closed
command 'scp -o 'BatchMode=yes' 'root@[192.168.0.240]:/etc/corosync/qnetd/nssdb/qnetd-cacert.crt' /etc/pve/qnetd-cacert.crt' failed: exit code 255forum search yields nothing.
ssh-login with root from the pve nodes is working:
Code:
root@pve:~# ssh root@192.168.0.240
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0755 for '/root/.ssh/id_rsa' are too open.
It is required that your private key files are NOT accessible by others.
This private key will be ignored.
Load key "/root/.ssh/id_rsa": bad permissions
root@192.168.0.240's password:
Linux pbs 6.17.1-1-pve #1 SMP PREEMPT_DYNAMIC PMX 6.17.1-1 (2025-10-06T16:20Z) x86_64
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Tue Nov 4 21:22:14 2025 from 192.168.0.117
root@pbs:~#the bad permissions error is weird, but i havent played around with the key files or their permissions.
the pve nodes are not fresh installs though.
the main node has been running since pve 7 times and as has been upgraded whenever a new pve version was released.
i will be happy for any tips here.
