fence_rhevm fails to fence a node with error "Peer's certificate issuer has been marked as not trusted by the user" or "No route to host" in RHEL 7

Solution Verified - Updated -

Issue

  • 'fence_rhevm' is unable to provide the status of a guest:
# fence_rhevm -a rhevm-IP -l rhevlogin@abc.xyz.com -p rhevm-password -z -n rhevm-guest-1 -o status --ssl
Peer's certificate issuer has been marked as not trusted by the user.
Connection timed out
  • I've created a stonith device with fence_rhevm using --ssl or ssl="1", and it fails to fence a node:
# stonith_admin --reboot node1.example.com
Command failed: No route to host

# pcs stonith fence node1.example.com
Error: unable to fence 'node1.example.com'
Command failed: No route to host

Environment

  • Red Hat Enterprise Linux 7 with the High Availability Add On
  • One or more stonith devices configured to use fence_rhevm
    • Device configured with --ssl or ssl="1"
    • RHEV-M host is using a self-signed certificate or a certificate whose authority has not been authenticated on the cluster nodes in question

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content