Unable to add a Secondary QRadar Appliance to a HA cluster and receiving the error "Error installing ssh keys. (Is the secondary password correct?)".
This issue could be caused by an invalid iptables entry.
Resolving The Problem
To resolve this issue, add the IP address of the Primary HA host to the iptables of the Secondary HA Managed host. You can SSH from the Console to both the Primary High Availability (HA) Managed host and the Secondary HA Managed host.
Procedure to add the Primary HA Managed host to the iptables of the Secondary HA Managed host.
- Using an editor, modify the file /opt/qradar/conf/iptables.pre file.
- Add an entry for the IP address of the Primary HA Managed host similar to the one below.
-A INPUT -i eth0 -m state --state NEW -m tcp -p tcp --dport 22 -s
<IP address of Primary HA host>
- Run the update script to update and restart iptables.
- Then, add the Secondary HA host to the HA Cluster.
Where do you find more information?
Was this topic helpful?
16 June 2018