Bug 1656122 - The Ansible script in the upgrade documentation is missing the path to the cert file
Summary: The Ansible script in the upgrade documentation is missing the path to the ce...
Keywords:
Status: CLOSED EOL
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: documentation
Version: 12.0 (Pike)
Hardware: Unspecified
OS: Unspecified
unspecified
medium
Target Milestone: ---
: ---
Assignee: RHOS Documentation Team
QA Contact: RHOS Documentation Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-12-04 17:56 UTC by Udi
Modified: 2020-08-26 14:09 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2020-08-26 14:09:44 UTC
Target Upstream Version:


Attachments (Terms of Use)

Description Udi 2018-12-04 17:56:19 UTC
Description of problem:
In the upgrade instructions to OSP12 https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/12/html/upgrading_red_hat_openstack_platform/assembly-preparing_for_overcloud_upgrade

In section 4.8. "Preparing Access to the Undercloud’s Public API over SSL/TLS", step 2 of the procedure, there is an Ansible script to upload the undercloud's cert to the overcloud nodes. The script has these lines in it:

  tasks:
    - name: Copy undercloud CA
      copy:
        src: ca.crt.pem
        dest: /etc/pki/ca-trust/source/anchors/

The 'src' file would typically not exist in the user's home directory. I had to change the src to: /etc/pki/ca-trust/source/anchors/undercloud-cacert.pem. I think it's what most undercloud installations would have, but not really sure how this file is created.

Comment 1 Dan Macpherson 2020-08-26 14:09:44 UTC
Close this as EOL because:

1. OSP12 is EOL
2. OSP13 FFU is probably the only other guide affected, but it is using the default location [1].

[1] https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/13/html/fast_forward_upgrades/assembly-preparing_for_overcloud_upgrade#preparing_access_to_the_undercloud_public_api_over_SSL_TLS


Note You need to log in before you can comment on or make changes to this bug.