Accidentally deleted RSA Machine key from one cluster member

Question

We accidentally deleted the key 4f692a7dc1b824e1f679f93fadd08a3b-[Machine-GUID] off a cluster member inside C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys. It wasn't protected by a backup, but this key is on all the other cluster members, and appears to be a well-known cluster key identifier, as it's on all of our clusters. We'd like to export the certificate with key from a different cluster member, but can't seem to find a certificate that corresponds to that key in any view (local computer, service\cluster, service\SMB Witness). At character # 40, the name of the key seems to be 'ClusterSecret-BLOB' We did successfully export and import the ClusInfraCert certificate with key, but this appears to be separate from that.

Answer 1

Hi,

I checked the folderC:\ProgramData\Microsoft\Crypto\RSA\MachineKeys in my cluster, it seems the key in each node is different. Below is the example in my lab.

Node 1:

Node 2:

If you worry about the missing key will cause corruption to the cluster, we may try to evict the node from the cluster then re-add it into the cluster, check if the certificate will be reissued.

Thanks for your time!
Best Regards,
Anne

-----------------------------

If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.