I'm trying to determine whether cephadm can use credential based login
for container images from private repositories. I don't see anything
obvious on the official documentation for cephadm to specify the
credentials to use. Can someone confirm whether this is supported?
The motivation for the question is to find a solution to lack of zabbix
support in the standard container images:
https://github.com/ceph/ceph-container/issues/1651
Our zabbix setup uses PSK for clients and we need to keep this confidential.
I see three approaches that may work:
#1 Extend the standard container image with the zabbix
software+configs and place the containers on a hosted private repo. This
is easy to maintain, but requires support in cephadm to pull the images
with credentials.
#2 Extend the standard container image with the software+configs
and host the containers on a self-hosted repo. More work to maintain the
repository, but does not require cephadm to log into the repo.
#3. Extend the standard container image with the software, hosted
on a public repo, and use
https://docs.ceph.com/en/latest/cephadm/services/#extra-container-arguments
to map in the config/psk files for zabbix.
I'm leaning toward solution #3, but it would be nice to know if
credential login is supported.
Thanks
Gary
--
Gary Molenkamp Science Technology Services
Systems Administrator University of Western Ontario
molenkam@xxxxxx http://sts.sci.uwo.ca
(519) 661-2111 x86882 (519) 661-3566
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
