Bug 2028335 - [RFE][cephadm] Allow the configuration of prometheus authentication using cephadm
Summary: [RFE][cephadm] Allow the configuration of prometheus authentication using cep...
Keywords:
Status: POST
Alias: None
Product: Red Hat Ceph Storage
Classification: Red Hat Storage
Component: Cephadm
Version: 5.1
Hardware: x86_64
OS: Linux
high
high
Target Milestone: ---
: 7.0
Assignee: Redouane Kachach Elhichou
QA Contact: Sunil Kumar Nagaraju
Karen Norteman
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-12-02 04:24 UTC by James Biao
Modified: 2023-08-15 13:52 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 1994251 1 high POST [RFE][GSS] Need ssl between node-exporter, Prometheus and mgr module 2023-08-15 13:50:40 UTC
Red Hat Bugzilla 2028173 1 unspecified NEW [cee/sd][ceph-dashboard][RFE] Allow the configuration of LDAP for authenticating users for Grafana dashboard. 2023-05-10 17:41:58 UTC
Red Hat Issue Tracker RHCEPH-2479 0 None None None 2021-12-02 04:25:04 UTC

Comment 1 Sebastian Wagner 2021-12-02 09:34:31 UTC 
Ok this gets complicated. 

cephadm doesn't support SSL at this point. See https://bugzilla.redhat.com/show_bug.cgi?id=1994251

cephadm doesn't support deploying additional files for existing daemon types. See https://prometheus.io/docs/guides/basic-auth/#creating-web-yml and 

---

For now you can manually deploy your own Prometheus and Grafana. Does this help?
Comment 2 Sebastian Wagner 2021-12-02 12:17:25 UTC 
relates to https://bugzilla.redhat.com/show_bug.cgi?id=2028173
Comment 13 Redouane Kachach Elhichou 2023-03-13 09:55:59 UTC 
Support for the first part (basic auth) has been add by the following upstream PR: https://github.com/ceph/ceph/pull/46601. More changes
are needed to make the authentication configurable.
Note You need to log in before you can comment on or make changes to this bug.