<div dir="ltr">Hello Amier,<br><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, Oct 2, 2013 at 9:16 AM, Amier Anis <span dir="ltr"><<a href="mailto:mymabma@gmail.com" target="_blank">mymabma@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div style="font-size:small"><b>Hi Guys,</b></div>
<div style="font-size:small"><br></div><div style="font-size:small">I'm having issue with ssh password less login not function correctly.<br>
</div><div style="font-size:small">It's work with fresh install CentOS 6.4 before install opennebula. Once opennebula started, it doesn't work any more. The workers node can login with less password without any issue but management node can't login to worker nodes.</div>
</div></blockquote><div><br></div><div>I see you're using CentOS as OS. Have you installed OpenNebula from packages [1]? Have you configured SSH as</div><div>pointed in [1]. I mean the ~/.ssh/config part.</div><div><br>
</div><div>Another important aspect is SELINUX. Is it on or off? If it on check the /var/lib/one/.ssh context, it should have ssh_home_t as label.</div><div>You can accomplish that using chcon -R -t ssh_home_t /var/lib/one/.ssh as either oneadmin or root.</div>
<div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr">
<div style="font-size:small"><br></div><div style="font-size:small">At first attempt, I install opennebula then setup the ssh-keygen to oneadmin (created during installation) and I also hv tried to create oneadmin first then install opennebula but both failed</div>
</div></blockquote><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr">
<div style="font-size:small"><br></div><div style="font-size:small">If the mgmt server can ssh with password less to workers then the mgmt server can't ssh to itself as the mgmt server also have the vm.</div></div></blockquote>
<div><br></div><div>I suggest you install OpenNebula from packages and work your way up from there. Don't forget to check the SELINUX context of oneadmin's ~/.ssh and either SSH to<br></div><div>hosts in advance or configure SSH via ~/.ssh/config to allow connections without StrictHostKeyChecking.</div>
<div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr">
<div style="font-size:small"><br></div><div style="font-size:small"><b>My Setup</b></div><div style="font-size:small"><ol><li>I only export and share /var/lib/one/datastores to every workers</li>
<li>authorized_keys has been export to every wokers vice versa.<br></li><li>declared every hostname in /etc/hosts</li></ol></div><div style="font-size:small">Is there any issue or things that i need to look into it.</div>
<div><p>Thanks you.</p></div></div></blockquote><div>If you need more help in the future be sure to come back and ask for it :). Enjoy.</div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">
<div dir="ltr"><div><p><span class=""><font color="#888888"><br><br><br><b>.: Amier Anis :.</b><br><span style="font-size:x-small">Mobile: <a href="tel:%2B6012-260-0819" value="+60122600819" target="_blank">+6012-260-0819</a></span></font></span></p>
</div>
</div>
</blockquote></div><div class="gmail_extra"><br></div>[1]: <a href="http://opennebula.org/documentation:rel4.2:ignc#centos_platform_notes">http://opennebula.org/documentation:rel4.2:ignc#centos_platform_notes</a><br><br clear="all">
<div><br></div><div>Good Will,</div>-- <br><div dir="ltr">Valentin Bud<div><a href="http://databus.pro" target="_blank">http://databus.pro</a> | <a href="mailto:valentin@databus.pro" target="_blank">valentin@databus.pro</a></div>
</div>
</div></div>