ssh remote host identification has changed

[Jens Schleede]

Hello,
due to a mistake two of our cluster nodes got new ssh keys.
What's the best and easiest way to distribute these keys again in the cluster? Is there a pve* command for this?

 

[t.lamprecht]

You can issue a

pvecm updatecerts

command on the respective node, this ensures that all basic cluster files are correct and always adds itself to the authorized_keys file.
As long as you do not pass "--force" no new certificate will be generated.

Else you may also open "/etc/pve/priv/authorized_keys", and swap out the now invalid key with the new one in the respective line (backup the file before doing this!)