Symptoms
An SSL certificate is necessary for more than just distributing the public key: if it is signed by a trusted third party, it verifies the identity of the server so clients know they aren’t sending their information (encrypted or not) to the wrong person. So what is a self-signed certificate? It is a certificate that is signed by itself rather than a trusted third party. This is not a good idea for most business use cases. You will rarely want to use a self-signed certificate on a public Web server that requires anonymous visitors to connect to your site because they could easily become a victim of a man-in-the-middle attack. There are a limited number of situations in which a self-signed certificate may prove adequate:
...
Execute the following command on both the target and source node and erase the ssh fingerprints:
| Panel | ||||||||
|---|---|---|---|---|---|---|---|---|
| ||||||||
| # sed -i '/OTHER-NODE-IP-ADDRESS/d' .ssh/known_hosts |
Next, to add a new set of fingerprints, type the following command:
| Panel | ||||||||
|---|---|---|---|---|---|---|---|---|
| ||||||||
| # ssh-keyscan OTHER-NODE-IP-ADDRESS >> .ssh/known_hosts |
...