2004867 – Nova Host Manager role is missing from the undercloud service

Bug 2004867 - Nova Host Manager role is missing from the undercloud service

Summary: Nova Host Manager role is missing from the undercloud service

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	ansible-tripleo-ipa
Sub Component:
Version:	16.1 (Train)
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	z9
Target Release:	16.1 (Train on RHEL 8.2)
Assignee:	Ade Lee
QA Contact:	Jeremy Agee
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2021-09-16 10:06 UTC by David Sedgmen
Modified:	2023-02-16 14:52 UTC (History)
CC List:	3 users (show)
Fixed In Version:	ansible-tripleo-ipa-0.2.3-2.20220301185252.060a393.el8ost
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2023-02-16 14:52:26 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Launchpad	1943810	None	None	None	2021-09-16 10:08:35 UTC
OpenStack gerrit	809360	None	MERGED	Add_ipa_user.yml: Adds logical to concatenate services with role	2022-04-20 22:12:24 UTC
OpenStack gerrit	825747	None	MERGED	Add_ipa_user.yml: Adds logical to concatenate services with role	2022-04-20 22:14:18 UTC
Red Hat Issue Tracker	OSP-9652	None	None	None	2021-11-15 12:49:20 UTC

Description David Sedgmen 2021-09-16 10:06:58 UTC

Description of problem: scale is failing with the error

"response host_add: Insufficient access: Insufficient 'add' privilege to the 'userPassword' attribute"

This is because the role has gone missing from the IdM service for the director so it is no longer added to create the records for the new nodes

This because the ansible role `ipa_role` explicit sets privileges to the list of services provides instead of appending.

So when a second director is integrated to the IdM server it remove the role form the first directors service

How reproducible: everytime


Steps to Reproduce:
1. install undercloud with tripleo-ipa ingratiation 
2. install second undercloud with tripleo-ipa ingratiation 
3. try to deploy an overcloud with  tripleo-ipa ingratiation from first director

Actual results:

Only second overcloud is able to deploy with IdM intergations

Expected results:

For the Nova Host Manager role not to be remove from the first director

Additional info:

Note You need to log in before you can comment on or make changes to this bug.