Did you fail the mgr after removing the keys? Or at least disable and
enable the dashboard? I just tested this again on a two-node (virtual
lab) Quincy cluster, removed the global crt/key and injected per mgr
cert and keys, and it works:
"mgr/dashboard/quincy-1.pcasdd/crt",
"mgr/dashboard/quincy-1.pcasdd/key",
"mgr/dashboard/quincy-2.mwrlmj/crt",
"mgr/dashboard/quincy-2.mwrlmj/key",
quincy-1:~ # ceph mgr services
{
"dashboard": "https://172.17.2.252:8443/";,
"prometheus": "http://172.17.2.252:9283/";
}
And I have access to the dashboard.
Zitat von lejeczek <peljasz@xxxxxxxxxxx>:
If I do:
-> $ ceph config-key rm mgr/dashboard/key
-> $ ceph config-key rm mgr/dashboard/crt
having per-mgr certs,
then there is no communication to mgrs' https at all.
and
-> $ ceph health detail
HEALTH_OK
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
