Scott Sullivan
2014-Feb-11 14:37 UTC
[libvirt-users] Can you verify currently defined libvirt secret provides valid Cephx auth?
As the subject suggests, I am wondering if its possible to verify if the currently defined libvirt secret provides valid authentication via Cephx to a Ceph cluster? I ask because ideally I would like to verify that the given cephx credentials in my libvirt secret are valid before I even attempt the virsh attach-device on the domain. I tried searching for a solution to this, but I can't seem to find a way to _just_ check if the currently defined libvirt secret provides valid authentication to the Ceph cluster or not. Is this possible?
Scott Sullivan
2014-Feb-11 17:08 UTC
Re: [libvirt-users] Can you verify currently defined libvirt secret provides valid Cephx auth?
I know I would still have to provide the Mon addresses and Cephx user to go with the secret UUID, that's fine. The primary goal is so I can just see if I can open a RADOS connection to the cluster before I try a virsh attach-device. On Tue, Feb 11, 2014 at 9:37 AM, Scott Sullivan < scottgregorysullivan@gmail.com> wrote:> As the subject suggests, I am wondering if its possible to verify if the > currently defined libvirt secret provides valid authentication via Cephx to > a Ceph cluster? > > I ask because ideally I would like to verify that the given cephx > credentials in my libvirt secret are valid before I even attempt the virsh > attach-device on the domain. > > I tried searching for a solution to this, but I can't seem to find a way > to _just_ check if the currently defined libvirt secret provides valid > authentication to the Ceph cluster or not. Is this possible? >
Josh Durgin
2014-Feb-12 21:28 UTC
Re: [libvirt-users] Can you verify currently defined libvirt secret provides valid Cephx auth?
libvirt itself doesn't connect to the cluster unless you're using a libvirt storage pool, so I don't think there's a way to do this without getting the secret from libvirt and running a ceph command line tool with it, e.g. KEY=$(virsh secret-get-value ...) ceph health --key $KEY Josh On 02/11/2014 09:08 AM, Scott Sullivan wrote:> I know I would still have to provide the Mon addresses and Cephx user to > go with the secret UUID, that's fine. The primary goal is so I can just > see if I can open a RADOS connection to the cluster before I try a virsh > attach-device. > > > On Tue, Feb 11, 2014 at 9:37 AM, Scott Sullivan > <scottgregorysullivan@gmail.com <mailto:scottgregorysullivan@gmail.com>> > wrote: > > As the subject suggests, I am wondering if its possible to verify if > the currently defined libvirt secret provides valid authentication > via Cephx to a Ceph cluster? > > I ask because ideally I would like to verify that the given cephx > credentials in my libvirt secret are valid before I even attempt the > virsh attach-device on the domain. > > I tried searching for a solution to this, but I can't seem to find a > way to _just_ check if the currently defined libvirt secret provides > valid authentication to the Ceph cluster or not. Is this possible?