89e35393db
Starting with Ceph Nautilus it is possible to enable on-wire encryption between daemons and clients. This change adds a setting to optionally configure Ceph with OTW encryption and a setting in scenario001-standalone to test it. Change-Id: I5d046b814a211aec9051f5278f98a3e81580057c
26 lines
1.1 KiB
YAML
26 lines
1.1 KiB
YAML
resource_registry:
|
|
OS::TripleO::Services::CephMgr: ../../deployment/ceph-ansible/ceph-mgr.yaml
|
|
OS::TripleO::Services::CephMon: ../../deployment/ceph-ansible/ceph-mon.yaml
|
|
OS::TripleO::Services::CephOSD: ../../deployment/ceph-ansible/ceph-osd.yaml
|
|
OS::TripleO::Services::CephClient: ../../deployment/ceph-ansible/ceph-client.yaml
|
|
|
|
parameter_defaults:
|
|
# Ensure that if user overrides CephAnsiblePlaybook via some env
|
|
# file, we go back to default when they stop passing their env file.
|
|
CephAnsiblePlaybook: ['default']
|
|
|
|
CinderEnableIscsiBackend: false
|
|
CinderEnableRbdBackend: true
|
|
CinderBackupBackend: ceph
|
|
NovaEnableRbdBackend: true
|
|
GlanceBackend: rbd
|
|
## Uncomment below if enabling legacy telemetry
|
|
# GnocchiBackend: rbd
|
|
|
|
## Set to enable on-wire encryption
|
|
## Using secure mode can cause a performance degradation with the storage cluster.
|
|
## The severity of the performance degradation can vary depending on several
|
|
## environmental factors.
|
|
## Test the performance impact in a non-production environment before implementing.
|
|
# CephMsgrSecureMode: true
|