Werk #18276: Linux remote alert handlers: Duplicated SSH keys

Component Agent bakery
Title Linux remote alert handlers: Duplicated SSH keys
Date Jul 30, 2025
Level Trivial Change
Class Bug Fix
Compatibility Compatible - no manual interaction needed
Checkmk versions & editions
2.5.0b1
Not yet released
Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)
2.4.0p9 Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)

When copying an already created rule of the Remote alert handlers (Linux), the copy ends up with the same SSH key as the original.

While this situation is valid and no problem in itself, it finally can lead to the problem of duplicated SSH keys in the ~/.ssh/authorized_keys file of the target user(s) on the target system.
Since this is not allowed, all entries after the first one do get ignored.
This lead to nonfunctional alert handlers, showing Not executing disallowed remote alert handler. as the summary of the alert handler's execution in the events view.

We now fix this situation by merging the ruleset of one host with idential SSH key and target user, which results in only one SSH key entry per authorized_keys file.

To the list of all Werks