Ask Your Question
0

easiest way to recover lost credentials

asked 2015-11-24 14:44:33 -0500

raphael-glon gravatar image

If a user has lost the ssh key he was using to connect to a virtual machine (data injected using metadata-server/cloudinit), is there some way to:

  • Update the ssh keys of a nova server for cloud-init to reinject it (or equivalently by making cloudinit inject it to the rescue instance) or
  • Inject the adminpass returned by nova rescue using cloudinit (assuming local hypervisor data injection is disabled)?

Otherwise this forces to rescue an instance with an image whose creds are known (or snapshot +download the snap and reinject)

Thank you

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted
0

answered 2015-11-25 03:09:21 -0500

raphael-glon gravatar image

updated 2015-11-25 04:49:02 -0500

curl -X GET http://169.254.169.254/openstack/latest/password (http://169.254.169.254/openstack/late...)

gives a password within the guest that is also available through nova api extension os-server-password. So by making sure some script within the guest sets the root password accordingly to this data, this would do the job

I'll use this one (note: any user can get the info with a simple curl request... so must be considered that a template with a password injected in such a way must be used for specific purposes like rescue only)

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2015-11-24 14:04:34 -0500

Seen: 450 times

Last updated: Nov 25 '15