Bug 1491606
| Summary: | [Doc] - ansible playbook needs to be run as ansible user | ||
|---|---|---|---|
| Product: | [Red Hat Storage] Red Hat Ceph Storage | Reporter: | Vasishta <vashastr> |
| Component: | Documentation | Assignee: | Erin Donnelly <edonnell> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | ceph-qe-bugs <ceph-qe-bugs> |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | 3.0 | CC: | asriram, edonnell, hnallurv, kdreyer, khartsoe |
| Target Milestone: | rc | ||
| Target Release: | 3.0 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2017-12-26 03:41:43 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1496210 | ||
Hi Erin, In 3.x Doc, We are suggesting user to create ssh key as admin@admin, but suggesting user to run playbook as user@admin, 1) Shall we follow a single convention ? I think it would increase the usability of the doc. 2) I had listed out some other scenarios in Description where the changes were needed, apart from cluster initialization. Can you please take a look at it ? Please let me know if there are any concerns. Regards, Vasishta Hi Erin, I VERIFIED changes in all above commits, Looks good to me, Thanks. Moving to VERIFIED state. Regards, Vasishta |
Description of problem: ansible-playbook must be run using ansible user as it has been suggested to copy ssh-key as ansible user. Running ansible-playbook as root user after copying ssh-key as ansible user will result in denial of permission. How reproducible: Always Steps to Reproduce: 1. Follow docs to configure ceph-ansible to set-up a cluster. 2. Run ansible-playbook as mentioned in Step 5 of 3.2.6 (example) Given - # ansible-playbook site.yml [-u <user_name>] Appropriate version - $ ansible-playbook site.yml [-u <user_name>] Actual results: TASK [check for python2] **************************************************************************************************************************************************** fatal: [magna097]: UNREACHABLE! => {"changed": false, "msg": "Failed to connect to the host via ssh: Warning: Permanently added 'magna097,10.8.128.97' (ECDSA) to the list of known hosts.\r\nPermission denied (publickey,gssapi-keyex,gssapi-with-mic,password).\r\n", "unreachable": true} Expected results: anisble-playbook must be able to reach all other nodes to carry on expected job. Additional info: Same change has to be made in all places where ansible-playbook is expected be used. Other examples - 1) step 5, Section 4.1 - Install doc 2) step 3, Section 6.3 - Install doc 3) step 6 in Procedure: Installing Red Hat Ceph Storage as a Container Image by Using Ansible section of 'Deploying Red Hat Ceph Storage 2 as a Container Image' 4) step 4, Section 6.1.2 - Admin doc 5) step 5, Section 6.3.2 - Admin doc