mgr commands reports EACCESS error
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ceph Monitor Charm |
New
|
Undecided
|
Unassigned |
Bug Description
We recently did some network changes, after which PG's recovered except for one. I'm trying to troubleshoot and find the exact reason, when I execute the following command from the active mon node,
# ceph pg ls incomplete
I receive the below error
Error EACCES: access denied: does your client key have mgr caps? See http://
Below is the output of mgr from #ceph auth ls
mgr.usashaz1acs
key: AQCQHFhenMBFFBA
caps: [mds] allow *
caps: [mon] allow profile mgr
caps: [osd] allow *
mgr.usashaz1acs
key: AQCPHFhepDvqERA
caps: [mds] allow *
caps: [mon] allow profile mgr
caps: [osd] allow *
mgr.usashaz1acs
key: AQClHFhePxXKOBA
caps: [mds] allow *
caps: [mon] allow profile mgr
caps: [osd] allow *
Even if i try do a # ceph telemetry show --> I receive the same error as above
OSD related commands like osd tree works fine
I doubt if the caps against mon should also be * instead of profile mgr.
Here are the details about the environment,
Ceph version : 14.2.4
Openstack : Queens
Ceph Stack - 3 Mon Nodes / 4 Rados Gateway Nodes / 18 OSD nodes
Juju version : 2.8.0-bionic-amd64
Regards
Radhakrishnan Sethuraman
Changed in charm-ceph-mon: | |
status: | Incomplete → New |
It looks like this is not a ceph-mon charm bug but a configuration bug with Ceph from the Cloud Archive? Could you clarify how you've deployed Ceph?