This message was deleted.
# harvestera
adamant-kite-43734
02/06/2025, 10:35 AMThis message was deleted.
f
freezing-ability-583
02/06/2025, 10:40 AMcan i mount on my harvester node a file in the mount point
/home/rancher/.ssh/authorized_keysfreezing-ability-583
02/06/2025, 10:45 AMor how to accomplish with elemental-toolkit?
freezing-ability-583
02/06/2025, 10:51 AMsomething around this lines https://github.com/harvester/docs/blob/main/docs/host/host.md#cloud-native-node-configuration ?
b
bumpy-portugal-40754
02/06/2025, 12:35 PMYou can simply copy the keys to the nodes. They are not overwritten by the one in /oem/90_custom.yaml. But any key there is added again after a reboot, so you might replace it there too.
f
freezing-ability-583
02/07/2025, 8:49 AMif you simply copy the keys over, won't the node start a rollback because its not in the desired state?
b
bumpy-portugal-40754
02/07/2025, 2:22 PMHarvester (or MicroOS) does not behave like this. It's only reconceiling the state while booting. And unfortunately it is not consistent (and documented) which values from /oem/90_custom.yaml are reconceiled. Some are, and overwrite existing files or configs, others don't. The ssh key from 90_custom.yaml is simply added to the authorized_keys file of the rancher user. Other old keys stay there. You need to remove them manually, and also replace them in 90_custom.yaml, otherweise they are added after next boot again. Something similar to
yq -i '.stages.network.[0].authorized_keys.rancher.[0] = \"$(cat "ssh-key.pub")\"' /oem/90_custom.yaml👍 1
2 Views