fence_rhevm fails to fence a node with error "Peer's certificate issuer has been marked as not trusted by the user" or "No route to host" in RHEL 7

Solution Verified - Updated -

Issue

  • 'fence_rhevm' is unable to provide the status of a guest:
# fence_rhevm -a rhevm-IP -l rhevlogin@abc.xyz.com -p rhevm-password -z -n rhevm-guest-1 -o status --ssl
Peer's certificate issuer has been marked as not trusted by the user.
Connection timed out
  • I've created a stonith device with fence_rhevm using --ssl or ssl="1", and it fails to fence a node:
# stonith_admin --reboot node1.example.com
Command failed: No route to host

# pcs stonith fence node1.example.com
Error: unable to fence 'node1.example.com'
Command failed: No route to host

Environment

  • Red Hat Enterprise Linux 7 with the High Availability Add On
  • One or more stonith devices configured to use fence_rhevm
    • Device configured with --ssl or ssl="1"
    • RHEV-M host is using a self-signed certificate or a certificate whose authority has not been authenticated on the cluster nodes in question

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.