GitHub user herrickaccuwebhosting added a comment to the discussion: [URGENT] Libvirt Certificates Expired
Great writeup, this will save people a ton of time! One thing worth adding for anyone else hitting this: expired libvirt/agent certs are usually a symptom of the cert validity period being left at the CloudStack default (90 days in older setups), so bumping ca.framework.cert.validity.period like you did is the right long term fix, but it's also worth setting a calendar reminder or monitoring check on cert expiry dates going forward since KVM hosts going dark from expired certs with no warning is a rough way to find out. We manage a good number of KVM/CloudStack hosts on the AccuWeb.Cloud side and cert expiry silently taking down agent connectivity is exactly the kind of thing that turns into a 2am page, so proactive expiry monitoring has saved us a few times. GitHub link: https://github.com/apache/cloudstack/discussions/13576#discussioncomment-17639524 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
