Salt grains empty when server is in accepted state, rev 2
Start by tracking this down in salt.
#7783 documented a problem with permissions accessing grains for the minion; the fix there seemed complete, but a different problem occurs on RHEL7 at least: some of the paths on the master along the way to /var/cache/salt/master/minions are missing the 'other' read/execute permissions:
# for p in /var /var/cache /var/cache/salt /var/cache/salt/master/ /var/cache/salt/master/minions/ ; do ls -ld $p; done drwxr-xr-x. 21 root root 4096 Jul 3 18:26 /var drwxr-xr-x. 8 root root 81 Jul 3 17:49 /var/cache drwxrwx--- 4 root root 32 Jul 3 17:57 /var/cache/salt drwxrwx--- 8 root root 118 Jul 3 18:26 /var/cache/salt/master/ drwxr-xr-x 6 root root 142 Jul 3 18:04 /var/cache/salt/master/minions/
It's not clear what controls this inside salt; it seems as though salt is merely creating the cache dirs on demand, and something somewhere has a different idea of what umask should be.