Ask Your Question
0

easiest way to recover lost credentials

asked 2015-11-24 14:44:33 -0500

raphael-glon gravatar image

If a user has lost the ssh key he was using to connect to a virtual machine (data injected using metadata-server/cloudinit), is there some way to:

  • Update the ssh keys of a nova server for cloud-init to reinject it (or equivalently by making cloudinit inject it to the rescue instance) or
  • Inject the adminpass returned by nova rescue using cloudinit (assuming local hypervisor data injection is disabled)?

Otherwise this forces to rescue an instance with an image whose creds are known (or snapshot +download the snap and reinject)

Thank you

edit retag flag offensive close merge delete
add a comment

1 answer

Sort by ยป oldest newest most voted
0

answered 2015-11-25 03:09:21 -0500

raphael-glon gravatar image

updated 2015-11-25 04:49:02 -0500

curl -X GET http://169.254.169.254/openstack/latest/password (http://169.254.169.254/openstack/late...)

gives a password within the guest that is also available through nova api extension os-server-password. So by making sure some script within the guest sets the root password accordingly to this data, this would do the job

I'll use this one (note: any user can get the info with a simple curl request... so must be considered that a template with a password injected in such a way must be used for specific purposes like rescue only)

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2015-11-24 14:04:34 -0500

Seen: 685 times

Last updated: Nov 25 '15

Related questions

euca-allocate-address failed

Vlan mode switch setting

Project limits from REST

Docker missing from Icehouse

No valid host was found

RDO/Icehouse: error during instance resize

live-migration block-migrate broken

Nova instance boot fail with kernel panic. [closed]

How many nova services should appear in service list?

boot failed from centos7 iso [closed]