Ask Your Question
0

easiest way to recover lost credentials

asked 2015-11-24 14:44:33 -0500

raphael-glon gravatar image

If a user has lost the ssh key he was using to connect to a virtual machine (data injected using metadata-server/cloudinit), is there some way to:

  • Update the ssh keys of a nova server for cloud-init to reinject it (or equivalently by making cloudinit inject it to the rescue instance) or
  • Inject the adminpass returned by nova rescue using cloudinit (assuming local hypervisor data injection is disabled)?

Otherwise this forces to rescue an instance with an image whose creds are known (or snapshot +download the snap and reinject)

Thank you

edit retag flag offensive close merge delete
add a comment

1 answer

Sort by ยป oldest newest most voted
0

answered 2015-11-25 03:09:21 -0500

raphael-glon gravatar image

updated 2015-11-25 04:49:02 -0500

curl -X GET http://169.254.169.254/openstack/latest/password (http://169.254.169.254/openstack/late...)

gives a password within the guest that is also available through nova api extension os-server-password. So by making sure some script within the guest sets the root password accordingly to this data, this would do the job

I'll use this one (note: any user can get the info with a simple curl request... so must be considered that a template with a password injected in such a way must be used for specific purposes like rescue only)

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2015-11-24 14:04:34 -0500

Seen: 587 times

Last updated: Nov 25 '15

Related questions

Snapshot of Instances is Queued forever

nova-compute node stuck in down state

resize VM error

nova live-migrartion failed

Exception no valid host when try launch an instance

Which network to choose

Install nova on controller node

Can not create keypair

Cannot boot VM with a port that does not have an IP

Unauthorized via SHA1 but works with plain text