您好,我正在尝试在我的 ceph 集群中启用 cephx 我将这三行添加到/etc/ceph/ceph.conf
auth_cluster_required = cephx
auth_service_required = cephx
auth_client_required = cephx
我没有生成任何密钥环,因为 cephadm 已经为我生成了。问题是一段时间后这 3 行自动从 ceph.conf 中删除;
我正在尝试使用 ssl 证书安装 openstack 我能够运行 keystone(在端口 5000 上)但是当我尝试连接到 glance api(端口 9292)时它失败了它只能通过 http 而不是 https 访问我觉得 keystone 可以工作因为它在“/etc/apache2/site-enabled/keystone.conf”中有单独的配置文件,但 glance(和其他服务)有不同的故事,您通过 openstack cli (apache2) 创建端点并将此配置添加到 nginx.conf 的末尾
stream {
upstream glance-api {
server 127.0.0.1:9292;
}
server {
listen <public_ip>:9292 ssl;
proxy_pass glance-api;
}
ssl_certificate "/etc/letsencrypt/live/hoodadcloud.ir/fullchain.pem";
ssl_certificate_key "/etc/letsencrypt/live/hoodadcloud.ir/privkey.pem"; }
当我将它添加到配置时,它无法通过运行“journalctl -xeu nginx.service”来重新启动 nginx 服务,我得到
controller nginx[44254]: nginx: [emerg] bind() to <public_ip>:9292 failed (98: Unknown error)
controller nginx[44254]: nginx: [emerg] bind() to <public_ip>:9292 failed (98: Unknown error)
controller nginx[44254]: nginx: [emerg] bind() to <public_ip>:9292 failed (98: Unknown error)
controller nginx[44254]: nginx: [emerg] bind() to <public_ip>:9292 failed (98: Unknown error)
controller nginx[44254]: nginx: [emerg] bind() to <public_ip>:9292 failed (98: Unknown error)
controller nginx[44254]: nginx: [emerg] still could not bind()
controller systemd[1]: nginx.service:Control process exited, code=exited, status=1/FAILURE Subject: Unit process exited DefinedBy:systemd
我 90% 确定这是因为端口 9292 在 http 上工作,而不是在 https 上使用 ubuntu 服务器 22.04 LTS minimal
openstack 用户列表工作正常(keystone)
openstack 镜像列表(一目了然)
Failed to contact the endpoint at https://hoodadcloud.ir:9292 for discovery. Fallback to using that endpoint as the base url.
Failed to contact the endpoint at https://hoodadcloud.ir:9292 for discovery. Fallback to using that endpoint as the base url.
The image service for : exists but does not have any supported versions.
净状态-ntlp
tcp 0 0 0.0.0.0:9292 0.0.0.0:* LISTEN 292411/python3