003c96b948
Add `openstack overcloud ceph user enable | disable`
command line option. As requested by those who wish to
disable cephadm and the user which supports it after
deployment. The SSH user and cephadm may be re-enabled
when it is necessary to administer the Ceph cluster.
This also allows the cephadm SSH user to be created
in a separate step.
Add --skip-user-create to 'openstack overcloud ceph deploy'
in case 'openstack overcloud ceph user enable' was used to
handle that step earlier.
Conflicts: tripleoclient/utils.py
Depends-On: I648cdf8c8920c120049f05f13f8b7b73513899f1
Change-Id: Ibd4513183f59ebb94d841a847ecfab0425ba8f5a
(cherry picked from commit 8ab4cc19b3)
17 lines
931 B
YAML
17 lines
931 B
YAML
---
|
|
features:
|
|
- |
|
|
Two new commands, "openstack overcloud ceph user enable" and
|
|
"openstack overcloud ceph user disable" are added. The "enable"
|
|
option will create the cephadm SSH user and distribute their
|
|
SSH keys to Ceph nodes in the overcloud. The "disable" option
|
|
may be run after "openstack overcloud ceph deploy" has been run
|
|
to disable cephadm so that it may not be used to administer the
|
|
Ceph cluster and no "ceph orch ..." CLI commands will function.
|
|
This will also prevent Ceph node overcloud scale operations though
|
|
the Ceph cluster will still be able to read/write data. The "ceph
|
|
user disable" option will also remove the public and private SSH
|
|
keys of the cephadm SSH user on overclouds which host Ceph. The
|
|
"ceph user enable" option may also be used to re-distribute the
|
|
public and private SSH keys of the cephadm SSH user and re-enable
|
|
the cephadm mgr module. |