[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Share ssh-key with other nodes during installation



It's look like you are connecting from your PC with a key-pair. Maybe you have the key added in your system, You can list with 'ssh-add -L'. 
The reason for the error "Permission denied (publickey,gssapi-keyex,gssapi-with-mic)." is that in your master you don't have the private-key that you have in your PC.

Regards.

2016-01-26 13:04 GMT+01:00 Lorenz Vanthillo <lorenz vanthillo outlook com>:
Fran,

I got
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
when I just try to ssh from my master to my clients.
In amazon I've chosen: (use existing key-pair). (I don't know much about this). But now I'm albe to ssh from my pc to my servers with ssh centos ec2




Date: Tue, 26 Jan 2016 21:02:20 +0900
Subject: Re: Share ssh-key with other nodes during installation
From: nakayamakenjiro gmail com
To: lorenz vanthillo outlook com
CC: users lists openshift redhat com


Oh, sorry. I should have read your previous comments carefully.
In your case, the workaround will not work...

Kenjiro

On Tue, Jan 26, 2016 at 8:46 PM, Lorenz Vanthillo <lorenz vanthillo outlook com> wrote:
Hi kenjiro,

Thanks for the help. I am performing the advanced installation.
But I'm in a test environment so I don't use a .pem and don't use a password to ssh.
Is it still possible to solve this issue by using your ansible-playbook command and without sharing the ssh-key?

thanks


Date: Tue, 26 Jan 2016 20:43:24 +0900
Subject: Re: Share ssh-key with other nodes during installation
From: nakayamakenjiro gmail com
To: lorenz vanthillo outlook com
CC: franbarrera6 gmail com; users lists openshift redhat com


If you will install openshift with ansible-playbook(advanced-installation), I think you can avoid the issue by ansible's function.

Here is the steps:

1. Set ansible_ssh_user in /etc/ansible/hosts

  [OSEv3:vars]
  ansible_ssh_user=root
  ...

2. Run ansible-playbook with -k option

  $ ansible-playbook /usr/share/ansible/openshift-ansible/playbooks/byo/config.yml -vvv -k | tee ~/ansible_install.log

3. After that you can input SSH password. (So, you don't need to exchange the ssh key beforehand.)

  SSH password:

Best,
Kenjiro



On Tue, Jan 26, 2016 at 8:18 PM, Lorenz Vanthillo <lorenz vanthillo outlook com> wrote:
Hi Fran,

I'm not sure how to interpret your answer.
First of all I can give this information:

I ssh from my PC to my instances with ssh centos ec2 (without .pem). (To all my instances)
On my master I perform: ssh-keygen and press enter. (I tried this as root and as centos-user).

After that I perform the loop. and the permission is denied. I ran the loop as root (and also once as centos-user).



Date: Tue, 26 Jan 2016 12:13:38 +0100
Subject: Re: Share ssh-key with other nodes during installation
From: franbarrera6 gmail com
To: lorenz vanthillo outlook com
CC: users lists openshift redhat com


Hi Lorenz,

Is the user you are trying to copy the ssh keys capable to connect with these machines via ssh? It seems like these machines only allow connection via ssh key.

Regards.

2016-01-26 11:31 GMT+01:00 Lorenz Vanthillo <lorenz vanthillo outlook com>:
I do not use a .pem-key to ssh to my instances. I'm performing this on a centos-instance of amazon ec2.


From: lorenz vanthillo outlook com
To: users lists openshift redhat com
Subject: Share ssh-key with other nodes during installation
Date: Tue, 26 Jan 2016 11:04:05 +0100


I've installed OpenShift origin 1.1 a few times. But I always have to copy the key manually from the master to it nodes.
But when I have to create a cluster with many nodes I want to automate this.
I saw:

# for host in master.example.com \
    node1.example.com \
    node2.example.com; \
    do ssh-copy-id -i ~/.ssh/id_rsa.pub $host; \
    done

Which looked very promissing but I always got:
/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
What's wrong with the permissions?

_______________________________________________
users mailing list
users lists openshift redhat com
http://lists.openshift.redhat.com/openshiftmm/listinfo/users



_______________________________________________
users mailing list
users lists openshift redhat com
http://lists.openshift.redhat.com/openshiftmm/listinfo/users




--
Kenjiro NAKAYAMA <nakayamakenjiro gmail com>
GPG Key fingerprint = ED8F 049D E67A 727D 9A44  8E25 F44B E208 C946 5EB9



--
Kenjiro NAKAYAMA <nakayamakenjiro gmail com>
GPG Key fingerprint = ED8F 049D E67A 727D 9A44  8E25 F44B E208 C946 5EB9

_______________________________________________
users mailing list
users lists openshift redhat com
http://lists.openshift.redhat.com/openshiftmm/listinfo/users



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]