[one-users] econe server and sha1

Daniel Molina dmolina at opennebula.org
Thu Nov 13 07:27:12 PST 2014 

Hi Alejandro,

I cannot find out the problem:
[oneadmin at node1 ~]$ oneuser show | grep PASSWORD
PASSWORD        : 86f7e437faa5a7fce15d1ddcb9eaeaea
[oneadmin at node1 ~]$ econe-describe-instances --access-key oneadmin
--secret-key 86f7e437faa5a7fce15d
1ddcb9eaeaea
  instanceId       ImageId          State                 IP instanceType
  i-00000000                      pending
  i-00000001                      running

Let's check a few thins:
* Any relevant error in econe.log|error oned.log|error
* Could you try using -K and -S options instead of the verbose ones
* You can use the euc2ools to interact with the econe server, are you
getting the same error with this cli?

Cheers

On 12 November 2014 13:18, Alejandro Feijóo <alfeijoo at cesga.es> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> hi!
>
> #############################################################
> # Auth
> #############################################################
>
> # Authentication driver for incomming requests
> #   - ec2, default Acess key and Secret key scheme
> #   - x509, for x509 certificates based authentication
> :auth: ec2
>
> # Authentication driver to communicate with OpenNebula core
> #   - cipher, for symmetric cipher encryption of tokens
> #   - x509, for x509 certificate encryption of tokens
> :core_auth: cipher
>
>
>
> in sunstone-server we have:
> :auth: opennebula
>
> :core_auth: cipher
>
>
>
>
>
> El 11/11/14 15:02, Daniel Molina escribió:
> > Hi,
> >
> > What auth driver are you using in econe.conf?
> >
> > Cheers
> >
> > On 10 November 2014 09:17, Alejandro Feijóo <alfeijoo at cesga.es> wrote:
> >
> > Any idea where to touch... because still with the same error.
> >
> > [oneadmin at test11 ~]$ oneuser show 17
> > USER 17 INFORMATION
> > ID              : 17
> > NAME            : alfeijooec2
> > GROUP           : users
> > PASSWORD        : 30e3ef7255df9b52fa130697ef83348f7ed5
> > AUTH_DRIVER     : core
> > ENABLED         : Yes
> >
> > USER TEMPLATE
> > DEFAULT_VIEW="user"
> > TOKEN_PASSWORD="7aafcdf5de6b49c4bbc8e31787a674080c9c"
> >
> > RESOURCE USAGE & QUOTAS
> >
> > DATASTORE ID               IMAGES                SIZE
> >            1         1 /        -      40M /        -
> >
> > [oneadmin at test11 ~]$ econe-describe-images --access-key alfeijooec2
> > --secret-key 30e3ef7255df9b52fa130697ef83348f7ed5
> >
> > econe-describe-images: The username or password is not correct
> >
> > [oneadmin at test11 ~]$ econe-describe-images --access-key alfeijooec2
> > --secret-key 7aafcdf5de6b49c4bbc8e31787a674080c9c
> >
> > econe-describe-images: The username or password is not correct
> >
> >
> > pd. alfeijooec2 can instantiate mv through ONE and Sunstone.
> >
> > Thanks again :D
> >
> > El 06/11/14 09:27, Daniel Molina escribió:
> >>>> That's right, if you use alfeijooec2 through ec2 you don't have to
> change
> >>>> anything, just use the password returned by oneshow user show
> alfeijooec2
> >>>> as AWS_SECRET_KEY
> >>>>
> >>>> On 6 November 2014 09:23, Alejandro Feijóo <alfeijoo at cesga.es> wrote:
> >>>>
> >>>> Oh...
> >>>>
> >>>> I have that 2 users.
> >>>>
> >>>>   14 alfeijoo        users      ldap       1 /   -   1024M /       -
> >>>> 1.0 /   -
> >>>>   17 alfeijooec2     users      core             -                 -
> >>>>        -
> >>>>
> >>>> I understant that user 14 never work in these scenario?  but user 17
> may?
> >>>>
> >>>> Thanks :)
> >>>>
> >>>>
> >>>> El 06/11/14 08:56, Daniel Molina escribió:
> >>>>>>> Hi,
> >>>>>>>
> >>>>>>> LDAP authentication is not supported through ec2, at least using
> > regular
> >>>>>>> clients. If you want to use this kind of authentication you have to
> >>>> change
> >>>>>>> the auth method to opennebla in the econe.conf file and include the
> > Basic
> >>>>>>> Auth headers in every ec2 request
> >>>>>>>
> >>>>>>> Cheers
> >>>>>>>
> >>>>>>> On 6 November 2014 08:27, Alejandro Feijóo <alfeijoo at cesga.es>
> wrote:
> >>>>>>>
> >>>>>>> Hi sorry for the delay... i was on vacation...
> >>>>>>>
> >>>>>>> Yes that was one of the test that i did... but with the same error.
> >>>>>>>
> >>>>>>> its possible any kind of problems when use ldap?
> >>>>>>>
> >>>>>>> any random recomendation? :D
> >>>>>>>
> >>>>>>> Thanks in advance.
> >>>>>>>
> >>>>>>>
> >>>>>>> El 24/10/14 10:30, Daniel Molina escribió:
> >>>>>>>
> >>>>>>>
> >>>>>>>> _______________________________________________
> >>>>>>>> Users mailing list
> >>>>>>>> Users at lists.opennebula.org
> >>>>>>>> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
> >>>>>>>>
> >>>>>>>
> >>>>>>>
> >>>>>>>
> >>>>
> >>>>> _______________________________________________
> >>>>> Users mailing list
> >>>>> Users at lists.opennebula.org
> >>>>> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
> >>>>>
> >>>>
> >>>>
> >>>>
> >
> >>
> >
> >
> >
>
> - --
> Alejandro Feijóo Fraga
> Systems Technician
> CESGA
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
> Comment: GPGTools - https://gpgtools.org
>
> iQEcBAEBCgAGBQJUY1AwAAoJEKshAoM6XWq5LTIH/0vdyauqZcWr6MdemCEKPzM3
> i01ZBGMXkHdbvJLI2y2WN6kiseIMPJMzPvOEmvDVDEnfoMQ8TpLRKi7XL4lKFLs7
> YSACDWsz9Kq58fCsVKXr/WXs7HPiDdtN615UrUdRk0DbC78PRJ4vTbhLZMmUQ4Z1
> rTB3GJxJiGcfAt0AREOb7DRJXL2sQLpYfy0ejpHfpx69DT1cFbm7ntPbhN/D5KiO
> 60ErHu690Np7jdS2b4jyIvUwdCuBXa3lTEuBT/5qj14zYt6DI1ZrjltBHZhlM+80
> 87h01cME22tg1+fhTsS4+FDbvqg8xcfEAN+lJ43/1lGWErZT8tGdrgozH6gk2Hs=
> =7Frd
> -----END PGP SIGNATURE-----
>



-- 
--
Daniel Molina
Project Engineer
OpenNebula - Flexible Enterprise Cloud Made Simple
www.OpenNebula.org | dmolina at opennebula.org | @OpenNebula
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20141113/829111de/attachment.htm>

More information about the Users mailing list