Multiple auth ids on the auth sets

Nir-Davidovitch · January 20, 2025, 1:05pm

Hey,
I recently noticed that my devices (mender clients) are getting another auth_set under the auth_sets key. (as can be seen in the picture)

Normally my logic was to accept the auth_set located at position 0 in the list.
But it seems that this do not work when there are multiple auth sets in the list.
What can cause such a behavior? I added a code to the client to reset the mender client service every 20 minutes, could it be related?

And in such cases what is the right approach - which auth set should be approved? last? first? Active?
Is there a command to delete the irrelevant auth sets?

Thanks in advance!

TheYoctoJester · January 22, 2025, 8:24am

Hi @Nir-Davidovitch,

New auth ids usually show up if the Mender Client creates a new key for whatever reason. So judging from your description, it sounds like something in your logic causes the client to do that.

So in a naive setup, the latest one would be the correct one, as it is the key that the Client tried to use last.

But this is definitely not a real solution, because whenever the Client repeats that, the device will go into “new request” state, the inventory and update mechanisms will stop working.
So you need to find out why it happens, client side.

Greetz,
Josef

Topic		Replies	Views
Excessive device authorization sets General Discussions beaglebone-black , hosted	25	1057	October 21, 2020
[Feature request] Show existing devices with pending authentification sets General Discussions ui , api-gateway	4	654	March 27, 2020
Verify device auth in custom server General Discussions	0	507	April 24, 2020
Devices showing in pending without pending device auth set General Discussions deviceauth	2	280	May 9, 2023
Cleaning up stuck devices General Discussions	0	230	March 24, 2020

Multiple auth ids on the auth sets

Related topics