Comments from Andy Ning:
When sudo on any nodes of the subcloud, the system authentication will check against ldap as part of the process. ldap is running on system controller so there must be a route to reach the system controller.
Workaround is to add a route on worker nodes, example:
system host-route-add compute-0 mgmt0 fd01:1::0 64 fd01:2::1
Comments from Andy Ning:
When sudo on any nodes of the subcloud, the system authentication will check against ldap as part of the process. ldap is running on system controller so there must be a route to reach the system controller.
Workaround is to add a route on worker nodes, example:
system host-route-add compute-0 mgmt0 fd01:1::0 64 fd01:2::1