Minion Management¶

Minions are managed on the Salt Master via their client certificates. Manipulating these certificates provides or revokes access. See State Management for managing minion states.

Signing Cert Requests¶

A minion cannot connect and apply salt states until the certificate request is approved on the Salt Master. Globbing is supported.

Show all unaccepted certs and sign one (Salt Master).¶

salt-key -l unaccepted
salt-key -a {HOST}

Show all certs on Salt Master (Salt Master).¶

salt-key -L

Revoking Certs ¶

Disables Salt access for a specific minion, or removes unapproved certificates.

See Show all certs on Salt Master (Salt Master). for getting a certificate list.

Remove minion from salt server (Salt Master).¶

salt-key -d {HOST}

Salt will remove the key material automatically.

Minion Management¶

Signing Cert Requests¶

Revoking Certs¶

Revoking Certs ¶