openstack
/
tripleo-heat-templates
Code Issues Proposed changes
tripleo-heat-templates/extraconfig/services
History
Ade Lee 5eb01c517f Restart certmnonger after registering system with IPA 
If certmonger is not restarted when the server is registered with
IPA, then it may define the IPA CA as unreachable.  This results
in CA certs not being stored when cert requests are made with a -F
option.  Eventually, certmonger refreshes itself, but this can
take up to 8 hours.

We see this sometimes when doing brownfield deploys.  The ca cert
fails to be created for some requests, resulting in containers
being unable to load.

We fix this by simply restarting certmonger after enrollment, and
avoiding the whole confused state.

Closes-Bug: 1850647
Change-Id: Id968a2d5170af1485417e41318e0187d79cd4aae
(cherry picked from commit bf0bc85ef4)
 		2019-10-30 14:25:29 +00:00
..
README.rst Add readme for experimental extraconfig/services 2017-12-15 15:41:23 +00:00
ipaclient.yaml Restart certmnonger after registering system with IPA 2019-10-30 14:25:29 +00:00
ipsec.yaml Convert dynamic lookups to use colon notation 2018-11-12 21:21:49 -07:00
kubernetes-master.yaml Make ceph-ansible working dir owned by tripleo-admin 2019-02-12 09:13:15 +05:30
kubernetes-worker.yaml Convert dynamic lookups to use colon notation 2018-11-12 21:21:49 -07:00
openshift-cns.yaml Merge "Fix deployment of gluster with openshift AllInOne" 2019-02-07 06:48:09 +00:00
openshift-infra.yaml Set balance to source for openshift_router endpoints 2018-11-30 13:57:32 -05:00
openshift-master.yaml Merge "Introduce OpenShiftAnsiblePath parameter" 2019-03-13 17:43:41 +00:00
openshift-node.yaml Generate post-deployment openshift-ansible inventory 2019-01-23 11:42:26 +01:00
openshift-worker.yaml Let openshift-ansible configure the firewall 2018-10-12 16:36:20 +02:00
rhsm.yaml Force rhsm re-registration during upgrades. 2018-12-11 17:17:29 +01:00
skydive-agent.yaml skydive external_deploy_task migration 2018-06-22 12:12:36 +02:00
skydive-analyzer.yaml Fix skydive deployment not able to read ssh private key 2019-03-29 00:30:57 +01:00

README.rst

Externally Installed Services

The services in this directory and the Ansible hook they use (external_deploy_tasks) are currently considered experimental.