Recreating validator client?


#1

Hi,

We released last week using chef http://www.yap.tv. Pretty awesome technology, thanks!

I deleted the validator account by accident. How can I recreate the account without impacting my current nodes?


marius@yap.tv
CTO - Yap TV, Inc


#2

Your current nodes should be ok as the validator key is only used to when a
node checks in the first time. During this initial checkin an identity (key
pair) is generated for the node (private key is saved on the node). From
this point forward the node uses the client identity for authenticating all
requests.
http://wiki.opscode.com/display/chef/Anatomy+of+a+Chef+Run#AnatomyofaChefRun-RegisteringWithTheChefServer

So long story short ,you will only need your newly generated validator
keypair for registering new nodes.

-Seth


Opscode, Inc.
Seth Chisamore, Technical Evangelist
T: (404) 348-0505 E: schisamo@opscode.com
Twitter, IRC, Github: schisamo

On Mon, Oct 4, 2010 at 12:43 PM, Marius Seritan marius@yap.tv wrote:

Hi,

We released last week using chef http://www.yap.tv. Pretty awesome
technology, thanks!

I deleted the validator account by accident. How can I recreate the
account without impacting my current nodes?


marius@yap.tv
CTO - Yap TV, Inc


#3

That’s great!

How do I recreate the validator?

marius@yap.tv
CTO - Yap TV, Inc

On Oct 4, 2010, at 9:52 AM, Seth Chisamore wrote:

Your current nodes should be ok as the validator key is only used to when a node checks in the first time. During this initial checkin an identity (key pair) is generated for the node (private key is saved on the node). From this point forward the node uses the client identity for authenticating all requests.
http://wiki.opscode.com/display/chef/Anatomy+of+a+Chef+Run#AnatomyofaChefRun-RegisteringWithTheChefServer

So long story short ,you will only need your newly generated validator keypair for registering new nodes.

-Seth


Opscode, Inc.
Seth Chisamore, Technical Evangelist
T: (404) 348-0505 E: schisamo@opscode.com
Twitter, IRC, Github: schisamo

On Mon, Oct 4, 2010 at 12:43 PM, Marius Seritan marius@yap.tv wrote:
Hi,

We released last week using chef http://www.yap.tv. Pretty awesome technology, thanks!

I deleted the validator account by accident. How can I recreate the account without impacting my current nodes?


marius@yap.tv
CTO - Yap TV, Inc


#4

On Mon, Oct 4, 2010 at 10:56 AM, Marius Seritan marius@yap.tv wrote:

That’s great!
How do I recreate the validator?

If you haven’t already, delete or move the /etc/chef/validation.pem
key on your Chef server box and restart chef-server. Chef will check
if the client and private key exist when it starts and re-create them
if either is missing.


marius@yap.tv
CTO - Yap TV, Inc

Dan DeLeo


#5

Thanks Dan,

I am hosted on opscode.com.


marius@yap.tv
CTO - Yap TV, Inc

On Oct 4, 2010, at 10:59 AM, Daniel DeLeo wrote:

On Mon, Oct 4, 2010 at 10:56 AM, Marius Seritan marius@yap.tv wrote:

That’s great!
How do I recreate the validator?

If you haven’t already, delete or move the /etc/chef/validation.pem
key on your Chef server box and restart chef-server. Chef will check
if the client and private key exist when it starts and re-create them
if either is missing.


marius@yap.tv
CTO - Yap TV, Inc

Dan DeLeo


#6

On Mon, Oct 4, 2010 at 11:00 AM, Marius Seritan marius@yap.tv wrote:

Thanks Dan,

I am hosted on opscode.com.

Follow the instructions here:

http://help.opscode.com/faqs/account/creating-a-new-private-key-for-an-api-client

For the validation client.

Adam


Opscode, Inc.
Adam Jacob, CTO
T: (206) 508-7449 E: adam@opscode.com