WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!

[tjarcoboerkoel]

Hi readers,

I have issues with some nodes. Some appear to have key-issues.

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
SHA256:OUhPxO9rQJiYF+G3kUjdl2A4NaRkeptZK0ec9Js6NuY.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending RSA key in /etc/ssh/ssh_known_hosts:6
  remove with:
  ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R "192.168.2.8"
RSA host key for 192.168.2.8 has changed and you have requested strict checking.
Host key verification failed.

I don't understand, if I fix one with IP and corresponding nodename

ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R 192.168.2.8
ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R node1

for example, the issue moves to another one. Fix it on that one and the the issues moves to the following node (and back). It's an infinite loop.

I've tried the

cd /root/.ssh
mv id_rsa id_rsa.old
mv id_rsa.pub id_rsa.pub.old
mv config config.old

with the

pvecm updatecerts

and with

systemctl restart pvedaemon pveproxy pve-cluster

commands on all nodes, and restarted in between and after, and resolved an apparent issue with ssh_known file that was an link

ssh_known_hosts.old-> /etc/pve/priv/known_hosts

If I take a look at all known_hosts files they all have the same content.
But I just don't get things straight. I have 4 nodes and are all up to date.

Does anyone have an idea??

[edit]
Funny thing is,
from node1 I can access shell of node1, but not the shell of node2 and node 3
but
from node 3 I can access the shell of node1 and node3, but not node2.

Best regards,