Actions
Bug #47298
closedmgr/cephadm: keyrings are left behind after daemon removal
% Done:
0%
Source:
Development
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Description
keyrings are not removed by cephadm after a daemon removal, which can cause the number of created keyrings to grow after several iterations of an apply/rm service or daemon redeploy.
$ ceph auth ls | grep -A1 iscsi installed auth entries: client.iscsi.iscsi.host3.apzsdt key: AQARvlFfnhiLHBAAGjQE0alC4AUDxaGW90ZoSQ== caps: [mon] profile rbd, allow command "osd blocklist", allow command "config-key get" with "key" prefix "iscsi/" caps: [osd] allow rwx client.iscsi.iscsi.host3.emfkwq key: AQC3vlFf+Q+GABAALjOIp8x7bpq1h5qXxbvQLA== caps: [mon] profile rbd, allow command "osd blocklist", allow command "config-key get" with "key" prefix "iscsi/" caps: [osd] allow rwx
Updated by Sebastian Wagner over 3 years ago
- Status changed from New to Resolved
Updated by Michael Fritch over 3 years ago
- Is duplicate of Bug #44698: cephadm: removing daemons leaves auth keys behind added
Updated by Sebastian Wagner over 3 years ago
- Has duplicate Bug #44698: cephadm: removing daemons leaves auth keys behind added
Actions