Bug 1242325

Summary: [Docs] [Compute] Provide instructions on how to inject an admin password into an instance
Product: Red Hat OpenStack Reporter: Andrew Dahms <adahms>
Component: documentationAssignee: Deepti Navale <dnavale>
Status: CLOSED CURRENTRELEASE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 7.0 (Kilo)CC: yeylon
Target Milestone: gaKeywords: Documentation
Target Release: 7.0 (Kilo)   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-01-11 10:02:30 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1250289    
Attachments:
Description Flags
Set admin password in dashboard none

Description Andrew Dahms 2015-07-13 04:45:13 UTC 
Users can inject an admin (root) password into an instance on KVM via the following -

1. Edit - /etc/openstack-dashboard/local_settings
2. Change ''can_set_password': False,' to ''can_set_password': True,'
3. Edit - /etc/nova/nova.conf
4. Ensure 'inject_password=true' 
5. Restart nova

When you use the 'nova' boot instance to spin up a new instance, the output of the command displays 'adminPass', which you can use to log in to the instance as root.

Nova achieves this by overwriting the value in /etc/shadow for the 'root' user. This procedure can also be used to activate the root account for KVM guest images.
Comment 3 Andrew Dahms 2015-07-13 04:48:17 UTC 
Assigning to Deepti for review.

The above procedure works in OSP 7 and touches on your recent work on creating images. If users do this, they don't need to inject keypairs to log in to their instance; they can just use the password that has been set.

Apparently, the password is also displayed somewhere in the dashboard as well, but I haven't seen it yet.
Comment 4 Andrew Dahms 2015-07-14 02:32:42 UTC 
Created attachment 1051596 [details]
Set admin password in dashboard

So, it seems that users can also set a custom password from the dashboard by running 'systemctl restart httpd.service' to restart the dashboard after enabling can_set_password.

See the attached screen capture for the newly added admin password fields. These fields can be used when a user launches or rebuilds an instance.
Comment 6 Andrew Dahms 2015-07-20 09:06:47 UTC 
The requested content has been added.

Moving to VERIFIED.
Comment 7 Andrew Dahms 2016-01-11 10:02:30 UTC 
This content is live on the Customer Portal.

Closing.