Certificate verify failed on a fresh MicroStack installation
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
MicroStack |
Triaged
|
Medium
|
Unassigned |
Bug Description
On a fresh MicroStack installation performed according to the documentation page:
https:/
When I get to the OpenStack dashboards and download the RC file, I face the following issue:
guardian@
#!/usr/bin/env bash
# To use an OpenStack cloud you need to authenticate against the Identity
# service named keystone, which returns a **Token** and **Service Catalog**.
# The catalog contains the endpoints for all services the user/tenant has
# access to - such as Compute, Image Service, Identity, Object Storage, Block
# Storage, and Networking (code-named nova, glance, keystone, swift,
# cinder, and neutron).
#
# *NOTE*: Using the 3 *Identity API* does not necessarily mean any other
# OpenStack API is version 3. For example, your cloud provider may implement
# Image API v1.1, Block Storage API v2, and Compute API v2.0. OS_AUTH_URL is
# only for the Identity API served through keystone.
export OS_AUTH_URL=https:/
# With the addition of Keystone we have standardized on the term **project**
# as the entity that owns the resources.
export OS_PROJECT_
export OS_PROJECT_
export OS_USER_
if [ -z "$OS_USER_
export OS_PROJECT_
if [ -z "$OS_PROJECT_
# unset v2.0 items in case set
unset OS_TENANT_ID
unset OS_TENANT_NAME
# In addition to the owning entity (tenant), OpenStack stores the entity
# performing the action as the **user**.
export OS_USERNAME="admin"
# With Keystone you pass the keystone password.
echo "Please enter your OpenStack Password for project $OS_PROJECT_NAME as user $OS_USERNAME: "
read -sr OS_PASSWORD_INPUT
export OS_PASSWORD=
# If your configuration has multiple regions, we set that information here.
# OS_REGION_NAME is optional and only valid in certain environments.
export OS_REGION_
# Don't leave a blank variable, unset it if it was empty
if [ -z "$OS_REGION_NAME" ]; then unset OS_REGION_NAME; fi
export OS_INTERFACE=public
export OS_IDENTITY_
guardian@
Please enter your OpenStack Password for project admin as user admin:
guardian@
Failed to discover available identity versions when contacting https:/
SSL exception connecting to https:/
I also get a certificate verification error when visiting the OpenStack dashboard.
Changed in microstack: | |
status: | New → Triaged |
importance: | Undecided → Medium |
Obviously, it works with the "--insecure" switch:
guardian@ Guardian- Inspiron: ~$ openstack catalog list --insecure -----+- ------- ---+--- ------- ------- ------- ------- ------- ------- ------- ------- ------- ------- ---+ -----+- ------- ---+--- ------- ------- ------- ------- ------- ------- ------- ------- ------- ------- ---+ /192.168. 1.111:8776/ v3/8b66ef72e1c1 4f22b62df430186 ddb24 | /192.168. 1.111:8776/ v3/8b66ef72e1c1 4f22b62df430186 ddb24 | /192.168. 1.111:8776/ v3/8b66ef72e1c1 4f22b62df430186 ddb24 | /192.168. 1.111:5000/ v3/ | /192.168. 1.111:5000/ v3/ | /192.168. 1.111:5000/ v3/ | /192.168. 1.111:8778 | /192.168. 1.111:8778 | /192.168. 1.111:8778 | /192.168. 1.111:8776/ v2/8b66ef72e1c1 4f22b62df430186 ddb24 | /192.168. 1.111:8776/ v2/8b66ef72e1c1 4f22b62df430186 ddb24 | /192.168. 1.111:8776/ v2/8b66ef72e1c1 4f22b62df430186 ddb24...
+------
| Name | Type | Endpoints |
+------
| cinderv3 | volumev3 | microstack |
| | | internal: https:/
| | | microstack |
| | | admin: https:/
| | | microstack |
| | | public: https:/
| | | |
| keystone | identity | microstack |
| | | internal: https:/
| | | microstack |
| | | public: https:/
| | | microstack |
| | | admin: https:/
| | | |
| placement | placement | microstack |
| | | public: https:/
| | | microstack |
| | | internal: https:/
| | | microstack |
| | | admin: https:/
| | | |
| cinderv2 | volumev2 | microstack |
| | | admin: https:/
| | | microstack |
| | | internal: https:/
| | | microstack |
| | | public: https:/