MAAS

[feature] allow overriding ipmi credential creation policy

Bug #1761262 reported by Jason Hobbs
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
MAAS
Invalid
Undecided
Unassigned

Bug Description

In bug 1758760 and bug 1621175, MAAS IPMI credential creation failed because BMC password policy did not allow the policies MAAS created. In the future, it is likely there will be additional mismatches between BMC password policy and MAAS.

Rather than having to cut a new release of MAAS to fix each of those, MAAS could allow overriding credential creation policy.

One simple approach would be to add a MAAS config option that's a list of potential passwords to set during BMC credential creation. MAAS would start with the one in the top of the list, and if it failed, move to the next. This would allow one MAAS cluster to handle IPMI credential creation on multiple pieces of hardware with potentially conflicting password policies.

A slightly more complex approach would add the ability to dynamically generate passwords from a set of rules, similar to how password managers behave. The MAAS administrator could provide a set of rules for generating passwords (or a list of sets of rules to account for potentially conflicting password policies across different pieces of hardware).

Andres Rodriguez (andreserl)
summary: - allow overriding ipmi credential creation policy
+ [enhancement] allow overriding ipmi credential creation policy
Changed in maas:
status: New → Triaged
milestone: none → 2.4.x
milestone: 2.4.x → next
tags: added: wishlist
summary: - [enhancement] allow overriding ipmi credential creation policy
+ [feature] allow overriding ipmi credential creation policy
Revision history for this message
Adam Collard (adam-collard) wrote :

This bug has not seen any activity in the last 6 months, so it is being automatically closed.

If you are still experiencing this issue, please feel free to re-open.

MAAS Team

Changed in maas:
status: Triaged → Invalid
Jason Hobbs (jason-hobbs)
Changed in maas:
status: Invalid → New
Revision history for this message
Blake Rouse (blake-rouse) wrote :

Thanks for your feature request, please could you start a thread over on our Discourse (https://discourse.maas.io) to discuss the feature?

tags: removed: wishlist
Changed in maas:
status: New → Invalid
Björn Tillenius (bjornt)
Changed in maas:
milestone: next → none
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.