Description of problem: Client admin keyring file is getting copied to mds node even if copy_admin_key in mdss.yml is set to false Version-Release number of selected component (if applicable): ceph-ansible-3.0.0-0.1.rc4.el7cp.noarch How reproducible: Always (2/2) Steps to Reproduce: 1. Configure ceph-ansible to setup a cluster with one mds node. 2. Run ansible-playbook site-docker.yml 3. Observe admin keyring copied into /etc/ceph directory of mds node Actual results: Client admin keyring file is getting copied to mds node even if copy_admin_key in mdss.yml is set to false Expected results: Client admin keyring file must not be copied to mds node even if copy_admin_key in mdss.yml is set to false Additional info: $ cat group_vars/mdss.yml | grep admin ------------------------ #copy_admin_key: false
Created attachment 1331002 [details] File contains contents ansible-playbook log, inventory file snippet, osds.yml contents Hi Guillaume, I faced this issue even on OSD nodes along with mds nodes. Moving back to ASSIGNED state. $ rpm -qa|grep ceph-ansible ceph-ansible-3.0.0-0.1.rc11.el7cp.noarch Regards, Vasishta
Fixed upstream : https://github.com/ceph/ceph-ansible/commit/62770cd7de0f47cc0afc7eab2dcdadb5b1b356d2
Guillaume or Sébastien, would you please tag a new ceph-ansible version upstream with this change so we know to pull it downstream?
Ken, Sebastien has tagged v3.0.0rc14 upstream with this change.
Working fine, Moving to VERIFIED state. (ceph-ansible-3.0.0-0.1.rc19.el7cp.noarch)
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2017:3387