Re: [Openstack] Swift/Keystone authentication problem?

On 03/03/2014 02:24 PM, Adam Lawson wrote: Hola folks! I had a working Swift deployment (one proxy, 10 storage nodes) using tempauth/swauth and with that config everything works fine. Add/remove objects, list etc. I am now in the process of trying to integrate Keystone and getting confused

[Openstack] any suggestions on how to change the actions from drop to allow

ovs-dpctl dump-flows in_port(11),eth(src=00:1c:42:00:00:08,dst=00:1c:42:51:f1:eb),eth_type(0x0800),ipv4(src=10.211.55.2,dst=10.211.55.13,proto=6,tos=0x10,ttl=64,frag=no),tcp(src=62616,dst=22), packets:63, bytes:5646, used:0.004s, flags:P., actions:drop This machine drops the actions is there an

Re: [Openstack] issue when I using pki as the token provider

On 03/05/2014 08:58 PM, Li, Chen wrote: provider = keystone.token.providers.pki That needs to be the full path to the class. keystone.token.providers.pki.Provider ___ Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack Post

[Openstack] [OSSN] Live migration instructions recommend unsecured libvirt remote access

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Live migration instructions recommend unsecured libvirt remote access - --- ### Summary ### When using the KVM hypervisor with libvirt on OpenStack Compute nodes, live migration of instances from one Compute server to another requires that the

[Openstack] Need advice - changing DB schema (nova-network)

Hi folks, I am working on nova-network in Havana. I have a very unique use case where I need to add duplicate VLANs in nova-network. I am trying to add multiple networks in nova-network with same VLAN ID. The reason is as follows: The cluster that I have has an L3 backplane. We have been given

[Openstack] Icehouse-3 development milestone available

Hi everyone, The third (and last) milestone of the Icehouse development cycle, icehouse-3, is now available for Keystone, Glance, Nova, Horizon, Neutron, Cinder, Ceilometer, Heat, and Trove. You can see the full list of new features and fixed bugs, as well as tarball downloads, at:

Re: [Openstack] Progress bar for image create in python-glanceclient

Does the glanceclient expose any kind of 'status listener', something that is called every X bytes uploaded? My guess is the underlying client uses something like this to do its own progress bar, probably can just hook into that (if its exposed). If not, then could be a useful patch (and makes

Re: [Openstack] issue when I using PKI for token format

Where can I find these certificates ?? Thanks. -chen From: Miller, Mark M (EB SW Cloud - RD - Corvallis) [mailto:mark.m.mil...@hp.com] Sent: Friday, March 07, 2014 12:25 AM To: Li, Chen; openstack@lists.openstack.org Subject: RE: [Openstack] issue when I using PKI for token format PKI tokens

Re: [Openstack] issue when I using pki as the token provider

Thanks ! But, I still get error when I run command: keystone user-list Authorization Failed: Unable to sign token. (HTTP 500) Message in /var/log/keystone/keystone.log: 2014-03-07 09:09:39.659 20794 INFO keystone.common.environment [-] Environment configured as: eventlet 2014-03-07 09:09:39.929

Re: [Openstack] Error mounting disk with libguestfs (child process died unexpectedly)

1, In guestfs.py line 1417 libguestfsmode.add_driver(XXX, unicode(format), XXX) should be modified as: if format is not None: format = unicode(foramt) libguestfsmode.add_driver(XXX, format, XXX) 2, I use a compiling option to compile the libguestfs.so but I have forget it, you can find it by

[Openstack] [Rally] Met error when I try to create a deployment

Hi list, I have followed guide https://wiki.openstack.org/wiki/Rally/installation and https://wiki.openstack.org/wiki/Rally/HowTo While after I finished the installation and try to create a deployment, I get error when I run command : rally deployment create --filename=dummy_deployment.json

Re: [Openstack] issue when I using pki as the token provider

Can you send me the link at ask.openstack.org where you have replied ? Also, There is two place where have these files [ssl] and [signing], which one should I use ??? Thanks. -chen [ssl] #enable = True #certfile = /etc/keystone/pki/certs/ssl_cert.pem #keyfile =

Re: [Openstack] issue when I using pki as the token provider

[signing] #certfile = /etc/keystone/ssl/certs/signing_cert.pem #keyfile = /etc/keystone/ssl/private/signing_key.pem #ca_certs = /etc/keystone/ssl/certs/ca.pem These are the default configuration files location. Keystone-manage pki-setup would have generated those files at that location. Check

Re: [Openstack] issue when I using pki as the token provider

Certs in [ssl] section will be used to configured keystone to use https instead of http. PKI token configurations are under [signing] [signing] #certfile = /etc/keystone/pki/certs/signing_cert.pem #keyfile = /etc/keystone/pki/private/signing_key.pem #ca_certs =

Re: [Openstack] swift recon query

Hello Steve, My questions about swift recon are: Q1: what should be the curl command for recon? Q2. what arguments should I use with 'swift-recon' command to get the status about                    (i)      /proc/meminfo,                    (ii)    currently mounted file systems                

Re: [Openstack] issue when I using PKI for token format

Problem solved. Thanks a lot for all your help !!! -chen /etc/keystone/ssl/certs -rw-r--r-- 1 keystone keystone 4251 Mar 6 13:01 01.pem -rw-r- 1 keystone keystone 1679 Mar 6 13:01 cakey.pem -rw-r--r-- 1 keystone keystone 1277 Mar 6 13:01 ca.pem -rw-r- 1 keystone keystone 70 Mar 6

Re: [Openstack] [Rally] Met error when I try to create a deployment

I have solved it by: yum install gmp-devel pip install PyCrypto pip install pycrypto-on-pypi Thanks. -chen From: Li, Chen [mailto:chen...@intel.com] Sent: Friday, March 07, 2014 11:58 AM To: openstack@lists.openstack.org Subject: [Openstack] [Rally] Met error when I try to create a deployment

<    1   2   3