Ask Your Question
1

OpenStack Juno migration permission denied error

asked 2015-05-13 00:29:14 -0500

Aman gravatar image

updated 2015-05-13 01:00:44 -0500

SamYaple gravatar image

I have a Juno multinode setup( Controller node, Network node, 2 Compute nodes) and I am trying to migrate a VM from 1 compute host to the other. I have been facing an error from sometime regarding “Permission denied, please try again”. Also when I try to do SSH from 1 host to other it asks for password and after entering the password it gives a permission denied error.

I was having a “host key verification failed” error and I followed these steps to solve that :

  1. 1 Obtain a key pair (public key and private key). You can use the root key that is in the `/root/.ssh/id_rsa and /root/.ssh/id_ras.pub directories or you can generate a new key pair.
  2. Enable login abilities for the Nova user.

    usermod -s /bin/bash nova
    

    Now you can switch to the Nova account by using the following command.

    su nova
    
  3. Create the folder that is needed by ssh and place the private key that you obtained in step 1 into this folder.

    mkdir -p /var/lib/nova/.ssh
    cp <private key>  /var/lib/nova/.ssh/id_rsa
    cat<pub key> >> /var/lib/nova/.ssh/authorized_keys
    echo 'StrictHostKeyChecking no' >> /var/lib/nova/.ssh/config
    chmod 600 /var/lib/nova/.ssh/id_rsa /var/lib/nova/.ssh/authorized_keys
    
  4. Repeat steps 2-4 on each node.

  5. Ensure that the key is working properly.

    su - nova
    ssh node-another
    

After following these steps we have landed into an error “Permission denied, please try again” and also we are not able to SSH between nodes and it is asking for a password.

edit retag flag offensive close merge delete

Comments

You can get verbose information out of ssh with ssh -vvv node-another. Figure out if the otherside is rejecting the public key, or you are not sending it.

SamYaple gravatar imageSamYaple ( 2015-05-13 01:03:13 -0500 )edit

Running the command we are getting an error "Permission denied". We followed the steps and have same public and private keys for controller node and compute hosts. Kindly let us know how to proceed. We are not even able to ssh between nodes may be that is the reason why migration is not happening.

Aman gravatar imageAman ( 2015-05-13 05:33:24 -0500 )edit

1 answer

Sort by » oldest newest most voted
0

answered 2015-05-13 09:22:19 -0500

Sounds like a permissions issue can you make sure ssh directory and home dir for nova has 700 or more secure permissions.

If this file, the ~/.ssh directory, or the user's home directory are writable by other users, then the file could be modified or replaced by unauthorized users. In this case, sshd will not allow it to be used unless the StrictModes option has been set to “no”.

tail -f /var/log/auth.log (on the server) and monitor errors when you attempt to login

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2015-05-13 00:29:14 -0500

Seen: 509 times

Last updated: May 13 '15