Bug 1887140

Summary: [VM import from RHV to CNV] RHV user access lock should be avoided
Product: Container Native Virtualization (CNV) Reporter: Amos Mastbaum <amastbau>
Component: V2VAssignee: Piotr Kliczewski <pkliczew>
Status: CLOSED WONTFIX QA Contact: Amos Mastbaum <amastbau>
Severity: medium Docs Contact:
Priority: medium    
Version: 2.5.0CC: cnv-qe-bugs, fdupont, oramraz
Target Milestone: ---   
Target Release: future   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-17 11:06:50 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Amos Mastbaum 2020-10-11 08:35:32 UTC 
Description of problem:

If user enter wrong rhv credentials, the retires might lock the RHV account. 


Version-Release number of selected component (if applicable):


How reproducible:
100% 
**The rhv account might not always be locked, it depends on the it's providers user lock policy.

Steps to Reproduce:

***see: https://bugzilla.redhat.com/show_bug.cgi?id=1854425#c9

Expected Behaviour:
Number of Retries/intervals/etc..should be set in a way it does not validate the rhv user lock policy.
Comment 1 Amos Mastbaum 2020-10-11 08:37:47 UTC 
rhv policy can probably be customized, better ask rhv than make it static.
Comment 2 Fabien Dupont 2020-11-17 11:06:50 UTC 
This requires modifying kubevirt-vmware container image, which is part of ManageIQ and acting as controller for Provider resources.
When moving VMIO under the Konveyor/MTV umbrella, we will refactor this to use the Konveyor controller for Provider.
The user should use a dedicated account for VM Import, so that only this account is locked. And once the password is entered correctly, it will work.

Marking this as WONTFIX.