Bug 2080820

Summary: [Doc] Configuring a different SSH user
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Ranjini M N <rmandyam>
Component: DocumentationAssignee: Akash Raj <akraj>
Documentation sub component: Install Guide QA Contact: Sayalee <saraut>
Status: CLOSED CURRENTRELEASE Docs Contact: Ranjini M N <rmandyam>
Severity: high    
Priority: high CC: akraj, msaini, saraut, sunnagar, vereddy
Version: 5.0   
Target Milestone: ---   
Target Release: 5.3z4   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-07-20 04:25:49 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ranjini M N 2022-05-02 05:02:57 UTC 
Describe the issue:

rh-ceph channel discussion: 

Bishoy Mikhael, Fri 4:54 AM
cephadm question, I've a customer who don't like that they have to use root-user and distribute SSH keys on all the nodes, is there a way to use cephadm with a non-privileged user?

Vikhyat Umrao, Fri 5:23 AM
I think it does please check https://docs.ceph.com/en/pacific/cephadm/install/#further-information-about-cephadm-bootstrap

cc @Adam King @Redouane Kachach Elhichou

Bishoy Mikhael, Fri 5:35 AM
The documentation is pointing to adding an SSH key to the root user, is there a workaround?

Vikhyat Umrao, Fri 5:36 AM
please read little bit ahead in the doc 🙂

I think this one

The --ssh-user *<user>* option makes it possible to choose which ssh user cephadm will use to connect to hosts. The associated ssh key will be added to /home/*<user>*/.ssh/authorized_keys. The user that you designate with this option must have passwordless sudo access.

Bishoy Mikhael, Fri 5:38 AM
Got it, sorry didn't see it 😀

Adam King, Fri 6:15 AM
yeah, that's correct @Vikhyat Umrao , it should just require having a user with passwordless sudo access and then supplying that user with --ssh-user during bootstrap (as outlined in the docs section you linked)

Redouane Kachach Elhichou, Fri 5:52 PM
more doc that could be helpful:

https://docs.ceph.com/en/octopus/cephadm/operations/#ssh-configuration

Michaela Lang, Fri 6:45 PM
https://access.redhat.com/articles/6603441

Describe the task you were trying to accomplish:

Suggestions for improvement: Good to have a section in RHCS 5 Installation of configuring another user instead of just operating as a root user. 

Document the following upstream content in the RHCS 5 Installation Guide: 

https://docs.ceph.com/en/octopus/cephadm/operations/#ssh-configuration

https://docs.ceph.com/en/pacific/cephadm/install/#further-information-about-cephadm-bootstrap


Document URL: https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/5/html-single/installation_guide/index

Chapter/Section Number and Title:

Product Version:

Environment Details:

Any other versions of this document that also needs this update:

Additional information:
Comment 1 RHEL Program Management 2022-05-02 05:03:03 UTC 
Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.