Hi,
I've upgraded to the latest quincy release using cephadm on my test
cluster (Ubuntu jammy) and I'm running in a very peculiar issue
regarding user authentication:
-I have a pool called "cinder-replicated" for storing RBDs (application:
RBD)
-I have a user called cinder with the following authorization caps :
client.cinder
key: [redacted]
caps: [mgr] profile rbd
caps: [mon] profile rbd
caps: [osd] profile rbd pool=cinder-replicated, profile rbd
pool=nova-meta, profile rbd pool=glance-meta, profile rbd
pool=cinder-erasure, profile rbd pool=cinder-meta
-If I use the command "rbd -p cinder-replicated --id cinder -k
ceph.client.cinder.keyring ls" I get a list of RBDs in the pool, as you
would expect
-If I use the command "rbd create --id cinder -k
ceph.client.cinder.keyring --size 1024 cinder-replicated/test2", I get
"rbd: create error: (22) Invalid argument"
-If I use the command "rbd create --size 1024 cinder-replicated/test2"
which uses the admin user and keyring by default, I have no problem
creating the RBD.
The fact that it works with the admin user and not with the cinder user
makes me believe that it's an authentication issue. A possible cause
could be that my client is on version 17.2.0 and my cluster is on
17.2.5, but there doesn't seem to be official jammy packages for 17.2.5
yet. Also, the release notes don't indicate any change to ceph auth.
--
Jean-Philippe Méthot
Senior Openstack system administrator
Administrateur système Openstack sénior
PlanetHoster inc.
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
