Bug 1082636
| Summary: | SSH injection via cloud-init UI goes to root instead of creating cloud-user | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Virtualization Manager | Reporter: | rhev-integ |
| Component: | ovirt-engine | Assignee: | Shahar Havivi <shavivi> |
| Status: | CLOSED ERRATA | QA Contact: | Pavel Novotny <pnovotny> |
| Severity: | medium | Docs Contact: | |
| Priority: | high | ||
| Version: | 3.3.0 | CC: | acathrow, adahms, dgregor, gklein, iheim, jgreguske, lpeer, mavital, michal.skrivanek, pnovotny, Rhev-m-bugs, sbonazzo, sgordon, shavivi, sherold, yeylon, zdover |
| Target Milestone: | --- | Keywords: | ZStream |
| Target Release: | 3.3.3 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | virt | ||
| Fixed In Version: | org.ovirt.engine-root-3.3.0-51 | Doc Type: | Bug Fix |
| Doc Text: |
Previously, users were asked to change the root password on virtual machines during their first run even if the root password had been set using the Cloud-Init feature. Users were prompted to log in to virtual machines as the root user to open SSH sessions to the virtual machine when the virtual machine had been initialized using Cloud-Init. Cloud-Init logic has been updated and users are no longer prompted to change the root password or to log in as root.
|
Story Points: | --- |
| Clone Of: | 1063518 | Environment: | |
| Last Closed: | 2014-05-27 09:07:47 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1063518 | ||
| Bug Blocks: | |||
|
Comment 1
Sandro Bonazzola
2014-04-09 12:56:22 UTC
Verified in rhevm-3.3.3-0.51.el6ev.noarch (is36). SSH public key authentication: Works fine now for the root user. In GUI, I put the client's (mine) public SSH key to the run once dialog, checked "Regenerate System SSH Keys" and started the guest. When the guest was up, I logged in via SSH: -~- $ ssh root.30.40 The authenticity of host '10.20.30.40 (10.20.30.40)' can't be established. ECDSA key fingerprint is 90:26:ac:f4:fa:5f:5d:35:d5:bb:46:1a:2c:c9:ea:02. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '10.20.30.40' (ECDSA) to the list of known hosts. Last login: Fri May 2 16:37:27 2014 [root@f19 ~]# -~- Resetting the password: Now there is no message which forces the root user to change the password. In GUI, I set the root password in the run once dialog and then started the guest. When the guest was up, I logged in via SSH: -~- $ ssh root.60.78 root.60.78's password: Last login: Fri May 2 16:38:07 2014 [root@f19 ~]# -~- Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-0547.html |