Join Log in
Score:0
Hoodad Tabibi avatar Server

Enabling Cephx In cephadm depolyment

ly flag
Hoodad Tabibi

Hello i am trying to enable cephx in my ceph cluster i added this three lines to /etc/ceph/ceph.conf

 auth_cluster_required = cephx
 auth_service_required = cephx
 auth_client_required = cephx

i didn't don generate any keyring since cephadm did that for me already. the problem is after a while this 3 lines automatically gets removed from ceph.conf ;

76
1 + 1
us flag
eblock
Ceph evolved from using the ceph.conf to a [config database](https://docs.ceph.com/en/latest/rados/configuration/ceph-conf/#monitor-configuration-database). Usually, only a minimal ceph.conf required for all nodes and the rest is handled in the config database. The [docs](https://docs.ceph.com/en/quincy/cephadm/operations/#etc-ceph-ceph-conf) also cover how to distribute a copy of the conf file to hosts. So in theory (haven't tried that myself) you should be able to run it like this: `$ ceph config set global auth_client_required cephx` and respectively for the other config options.
0
Reply
Score:0
Hoodad Tabibi avatar Server
ly flag
Hoodad Tabibi 
 auth_cluster_required = cephx
 auth_service_required = cephx
 auth_client_required = cephx

this configs should be set on client side not on cluster nodes.

in cluster client config is

auth_client_required = cephx,none

i don't know a way to force cephx and deny none cephx :/

+ 0
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.