[rdo-list] Installing Magnum on mitaka

Alfredo Moralejo Alonso amoralej at redhat.com
Wed May 25 14:24:46 UTC 2016 

Hi,

I'd recommend to deploy the environment from the scratch, redeploy OS
and packstack on top. Note that, if you need to re-run packstack for
any reason you must use the same answers file. I'm not sure, but that
could explain the messages you are getting.

Best regards,

Alfredo


On Wed, May 25, 2016 at 4:17 PM, Edward Ahern
<Edward.Ahern at tecnotree.com> wrote:
> Rebooted the vm
>
> Got a different error for first attempt
>
> [root at shos1 ~(keystone_admin)]# openstack server list
> Discovering versions from the identity service failed when creating the password plugin. Attempting to determine version from URL.
> Unable to establish connection to http://192.168.50.248:5000/v2.0/tokens
>
> Above url doesn't exist, from the debug:
>
> Making authentication request to http://192.168.50.248:5000/v2.0/tokens
> Resetting dropped connection: 192.168.50.248
> "POST /v2.0/tokens HTTP/1.1" 401 114
> Request returned failure status: 401
>
> Can the url be created?
>
>
>
> Ran it in debug mode, see below
>
> [root at shos1 ~(keystone_admin)]# openstack server list --debug
> START with options: ['server', 'list', '--debug']
> options: Namespace(access_token_endpoint='', auth_type='', auth_url='http://192.168.50.248:5000/v2.0', cacert='', client_id='', client_secret='***', cloud='', debug=True, default_domain='default', deferred_help=False, domain_id='', domain_name='', endpoint='', identity_provider='', identity_provider_url='', insecure=None, interface='', log_file=None, os_compute_api_version='', os_data_processing_api_version='1.1', os_data_processing_url='', os_identity_api_version='', os_image_api_version='', os_key_manager_api_version='1', os_network_api_version='', os_object_api_version='', os_orchestration_api_version='1', os_project_id=None, os_project_name=None, os_volume_api_version='', password='***', profile=None, project_domain_id='', project_domain_name='', project_id='', project_name='admin', protocol='', region_name='RegionOne', scope='', service_provider_endpoint='', timing=False, token='***', trust_id='', url='', user_domain_id='', user_domain_name='', user_id='', username='admin', verbose_level=3, verify=None)
> defaults: {u'auth_type': 'password', u'compute_api_version': u'2', 'key': None, u'database_api_version': u'1.0', 'api_timeout': None, u'baremetal_api_version': u'1', u'image_api_version': u'2', 'cacert': None, u'image_api_use_tasks': False, u'floating_ip_source': u'neutron', u'orchestration_api_version': u'1', u'interface': None, u'network_api_version': u'2', u'image_format': u'qcow2', u'key_manager_api_version': u'v1', u'metering_api_version': u'2', 'verify': True, u'identity_api_version': u'2.0', u'volume_api_version': u'2', 'cert': None, u'secgroup_source': u'neutron', u'container_api_version': u'1', u'dns_api_version': u'2', u'object_store_api_version': u'1', u'disable_vendor_agent': {}}
> cloud cfg: {'auth_type': 'password', u'compute_api_version': u'2', 'key': None, u'database_api_version': u'1.0', 'data_processing_api_version': '1.1', u'network_api_version': u'2', u'image_format': u'qcow2', u'image_api_version': u'2', 'verify': True, u'dns_api_version': u'2', u'object_store_api_version': u'1', 'verbose_level': 3, 'region_name': 'RegionOne', 'api_timeout': None, u'baremetal_api_version': u'1', 'auth': {'username': 'admin', 'project_name': 'admin', 'password': '***', 'auth_url': 'http://192.168.50.248:5000/v2.0'}, 'default_domain': 'default', u'container_api_version': u'1', u'image_api_use_tasks': False, u'floating_ip_source': u'neutron', u'orchestration_api_version': '1', 'timing': False, 'cacert': None, u'key_manager_api_version': '1', u'metering_api_version': u'2', 'deferred_help': False, u'identity_api_version': u'2.0', u'volume_api_version': u'2', 'cert': None, u'secgroup_source': u'neutron', 'debug': True, u'interface': None, u'disable_vendor_agent': {}}
> compute API version 2, cmd group openstack.compute.v2
> network API version 2, cmd group openstack.network.v2
> image API version 2, cmd group openstack.image.v2
> volume API version 2, cmd group openstack.volume.v2
> identity API version 2.0, cmd group openstack.identity.v2
> object_store API version 1, cmd group openstack.object_store.v1
> orchestration API version 1, cmd group openstack.orchestration.v1
> data_processing API version 1.1, cmd group openstack.data_processing.v1
> key_manager API version 1, cmd group openstack.key_manager.v1
> command: server list -> openstackclient.compute.v2.server.ListServer
> Auth plugin password selected
> auth_type: password
> Using auth plugin: password
> Using parameters {'username': 'admin', 'password': '***', 'project_name': 'admin', 'auth_url': 'http://192.168.50.248:5000/v2.0'}
> Get auth_ref
> REQ: curl -g -i -X GET http://192.168.50.248:5000/v2.0 -H "Accept: application/json" -H "User-Agent: python-openstackclient keystoneauth1/2.3.0 python-requests/2.9.1 CPython/2.7.5"
> Starting new HTTP connection (1): 192.168.50.248
> "GET /v2.0 HTTP/1.1" 200 231
> RESP: [200] Content-Length: 231 Content-Encoding: gzip Vary: X-Auth-Token,Accept-Encoding Server: Apache/2.4.6 (Red Hat Enterprise Linux) Connection: close Date: Wed, 25 May 2016 15:52:52 GMT Content-Type: application/json x-openstack-request-id: req-18d1ce74-e55c-4900-a8d5-f48baf8b75d1
> RESP BODY: {"version": {"status": "stable", "updated": "2014-04-17T00:00:00Z", "media-types": [{"base": "application/json", "type": "application/vnd.openstack.identity-v2.0+json"}], "id": "v2.0", "links": [{"href": "http://192.168.50.248:5000/v2.0/", "rel": "self"}, {"href": "http://docs.openstack.org/", "type": "text/html", "rel": "describedby"}]}}
>
> Making authentication request to http://192.168.50.248:5000/v2.0/tokens
> Resetting dropped connection: 192.168.50.248
> "POST /v2.0/tokens HTTP/1.1" 401 114
> Request returned failure status: 401
> The request you have made requires authentication. (HTTP 401) (Request-ID: req-e7e52f69-f30f-4273-ac1e-9be26a54c18d)
> Traceback (most recent call last):
>   File "/usr/lib/python2.7/site-packages/cliff/app.py", line 339, in run_subcommand
>     self.prepare_to_run_command(cmd)
>   File "/usr/lib/python2.7/site-packages/openstackclient/shell.py", line 411, in prepare_to_run_command
>     self.client_manager.auth_ref
>   File "/usr/lib/python2.7/site-packages/openstackclient/common/clientmanager.py", line 210, in auth_ref
>     self._auth_ref = self.auth.get_auth_ref(self.session)
>   File "/usr/lib/python2.7/site-packages/keystoneclient/auth/identity/generic/base.py", line 186, in get_auth_ref
>     return self._plugin.get_auth_ref(session, **kwargs)
>   File "/usr/lib/python2.7/site-packages/keystoneclient/auth/identity/v2.py", line 89, in get_auth_ref
>     authenticated=False, log=False)
>   File "/usr/lib/python2.7/site-packages/keystoneauth1/session.py", line 572, in post
>     return self.request(url, 'POST', **kwargs)
>   File "/usr/lib/python2.7/site-packages/openstackclient/common/session.py", line 40, in request
>     resp = super(TimingSession, self).request(url, method, **kwargs)
>   File "/usr/lib/python2.7/site-packages/positional/__init__.py", line 94, in inner
>     return func(*args, **kwargs)
>   File "/usr/lib/python2.7/site-packages/keystoneauth1/session.py", line 467, in request
>     raise exceptions.from_response(resp, method, url)
> Unauthorized: The request you have made requires authentication. (HTTP 401) (Request-ID: req-e7e52f69-f30f-4273-ac1e-9be26a54c18d)
> clean_up ListServer: The request you have made requires authentication. (HTTP 401) (Request-ID: req-e7e52f69-f30f-4273-ac1e-9be26a54c18d)
> Traceback (most recent call last):
>   File "/usr/lib/python2.7/site-packages/openstackclient/shell.py", line 118, in run
>     ret_val = super(OpenStackShell, self).run(argv)
>   File "/usr/lib/python2.7/site-packages/cliff/app.py", line 226, in run
>     result = self.run_subcommand(remainder)
>   File "/usr/lib/python2.7/site-packages/openstackclient/shell.py", line 153, in run_subcommand
>     ret_value = super(OpenStackShell, self).run_subcommand(argv)
>   File "/usr/lib/python2.7/site-packages/cliff/app.py", line 339, in run_subcommand
>     self.prepare_to_run_command(cmd)
>   File "/usr/lib/python2.7/site-packages/openstackclient/shell.py", line 411, in prepare_to_run_command
>     self.client_manager.auth_ref
>   File "/usr/lib/python2.7/site-packages/openstackclient/common/clientmanager.py", line 210, in auth_ref
>     self._auth_ref = self.auth.get_auth_ref(self.session)
>   File "/usr/lib/python2.7/site-packages/keystoneclient/auth/identity/generic/base.py", line 186, in get_auth_ref
>     return self._plugin.get_auth_ref(session, **kwargs)
>   File "/usr/lib/python2.7/site-packages/keystoneclient/auth/identity/v2.py", line 89, in get_auth_ref
>     authenticated=False, log=False)
>   File "/usr/lib/python2.7/site-packages/keystoneauth1/session.py", line 572, in post
>     return self.request(url, 'POST', **kwargs)
>   File "/usr/lib/python2.7/site-packages/openstackclient/common/session.py", line 40, in request
>     resp = super(TimingSession, self).request(url, method, **kwargs)
>   File "/usr/lib/python2.7/site-packages/positional/__init__.py", line 94, in inner
>     return func(*args, **kwargs)
>   File "/usr/lib/python2.7/site-packages/keystoneauth1/session.py", line 467, in request
>     raise exceptions.from_response(resp, method, url)
> Unauthorized: The request you have made requires authentication. (HTTP 401) (Request-ID: req-e7e52f69-f30f-4273-ac1e-9be26a54c18d)
>
> END return value: 1
>
>
> -----Original Message-----
> From: rdo-list-bounces at redhat.com [mailto:rdo-list-bounces at redhat.com] On Behalf Of Edward Ahern
> Sent: 25 May 2016 12:04
> To: Alfredo Moralejo Alonso <amoralej at redhat.com>
> Cc: rdo-list at redhat.com
> Subject: Re: [rdo-list] Installing Magnum on mitaka
>
> Just to follow up on the below error and its shooting in the dark.....tailing some logs
>
> keystone_wsgi_main_access.log:
>
> 192.168.50.248 - - [25/May/2016:12:00:14 +0100] "GET /v2.0 HTTP/1.1" 200 231 "-" "python-openstackclient keystoneauth1/2.3.0 python-requests/2.9.1 CPython/2.7.5"
> 192.168.50.248 - - [25/May/2016:12:00:14 +0100] "POST /v2.0/tokens HTTP/1.1" 401 114 "-" "python-openstackclient keystoneauth1/2.3.0 python-requests/2.9.1 CPython/2.7.5"
>
> -----Original Message-----
> From: rdo-list-bounces at redhat.com [mailto:rdo-list-bounces at redhat.com] On Behalf Of Edward Ahern
> Sent: 25 May 2016 11:40
> To: Alfredo Moralejo Alonso <amoralej at redhat.com>
> Cc: rdo-list at redhat.com
> Subject: Re: [rdo-list] Installing Magnum on mitaka
>
>
> [root at shos1 ~]# source keystonerc_admin
> [root at shos1 ~(keystone_admin)]# openstack server list The request you have made requires authentication. (HTTP 401) (Request-ID: req-cb5a1775-d6d5-4c99-8495-deb52df55f53)
> [root at shos1 ~(keystone_admin)]#
>
>
>
> -----Original Message-----
> From: Alfredo Moralejo Alonso [mailto:amoralej at redhat.com]
> Sent: 25 May 2016 10:55
> To: Edward Ahern <Edward.Ahern at tecnotree.com>
> Cc: rdo-list at redhat.com
> Subject: Re: [rdo-list] Installing Magnum on mitaka
>
> The issue seems to be with the admin user credentials or role assignment, could you try a non-admin command as:
>
> openstack server list
>
>
>
> On Wed, May 25, 2016 at 11:37 AM, Edward Ahern <Edward.Ahern at tecnotree.com> wrote:
>> Has anyone got further ideas or could point me towards a procedure to debug the issue?
>>
>>
>> -----Original Message-----
>> From: rdo-list-bounces at redhat.com [mailto:rdo-list-bounces at redhat.com]
>> On Behalf Of Edward Ahern
>> Sent: 23 May 2016 20:28
>> To: Christopher Brown <cbrown2 at ocf.co.uk>; amoralej at redhat.com
>> Cc: rdo-list at redhat.com
>> Subject: Re: [rdo-list] Installing Magnum on mitaka
>>
>> No problem...correct...I have obfuscated the URL...in my keystonerc_admin file, it's like so:
>>
>> http://192.168.101.20:5000/v2.0
>>
>>
>> -----Original Message-----
>> From: Christopher Brown [mailto:cbrown2 at ocf.co.uk]
>> Sent: 23 May 2016 19:56
>> To: amoralej at redhat.com; Edward Ahern <Edward.Ahern at tecnotree.com>
>> Cc: rdo-list at redhat.com
>> Subject: Re: [rdo-list] Installing Magnum on mitaka
>>
>> Forgive me for asking but I have to be absolutely clear that when you have posted the contents of your keystonerc_admin file, you are obfuscating the URL when you post to this list?
>>
>> ie. the URL is not _actually_ :
>>
>> http://<ipaddr>:5000/v2.0
>>
>> but is http://192.0.2.6:5000/v2.0 or whatever is appropriate to your install.
>>
>> I have seen packstack installs generate a bad keystonerc_admin file hence my reason for asking.
>>
>> On Mon, 2016-05-23 at 17:34 +0100, Edward Ahern wrote:
>>> Not working unfortunately:
>>>
>>> [root at shos1 ~]# source keystonerc_admin
>>> [root at shos1 ~(keystone_admin)]# openstack user create --password
>>> temporal magnum The request you have made requires authentication.
>>> (HTTP 401)
>>> (Request-ID: req-575696b7-008e-4d86-9ae5-59c963ab8e40)
>>> [root at shos1 ~(keystone_admin)]#
>>>
>>> I get the same response for project list:
>>> [root at shos1 ~(keystone_admin)]# openstack project list The request
>>> you have made requires authentication. (HTTP 401)
>>> (Request-ID: req-7696788c-2d0d-49c8-a654-c7f71c0b3576)
>>>
>>>
>>>
>>> From: Alfredo Moralejo Alonso [mailto:amoralej at redhat.com]
>>> Sent: 23 May 2016 16:18
>>> To: Edward Ahern <Edward.Ahern at tecnotree.com>
>>> Cc: rdo-list <rdo-list at redhat.com>
>>> Subject: Re: [rdo-list] Installing Magnum on mitaka
>>>
>>>
>>> With that keystonerc file, following command should work:
>>>
>>> openstack user create --password temporal magnum
>>>
>>> Does other commands as "openstack project list" work?
>>>
>>>
>>> On Mon, May 23, 2016 at 5:03 PM, Edward Ahern <Edward.Ahern at tecnotree
>>> .com> wrote:
>>> Hi Alfredo,
>>>
>>> Yes I am sourcing it
>>> Details below, ip address removed re URL
>>>
>>> Note I’m running the command as root user. The openstack installation
>>> was completed via packstack, which I wasn’t involved in….
>>>
>>> Regards,
>>>
>>> Ed
>>>
>>> # more keystonerc_admin
>>> unset OS_SERVICE_TOKEN
>>> export OS_USERNAME=admin
>>> export OS_PASSWORD=2d0050bd38df4a0e
>>> export OS_AUTH_URL=http://<ipaddr>:5000/v2.0
>>> export PS1='[\u@\h \W(keystone_admin)]\$ '
>>>
>>> export OS_TENANT_NAME=admin
>>> export OS_REGION_NAME=RegionOne
>>>
>>> From: Alfredo Moralejo Alonso [mailto:amoralej at redhat.com]
>>> Sent: 23 May 2016 16:00
>>> To: Edward Ahern <Edward.Ahern at tecnotree.com>
>>> Cc: rdo-list <rdo-list at redhat.com>
>>> Subject: Re: [rdo-list] Installing Magnum on mitaka
>>>
>>>
>>>
>>> On Mon, May 23, 2016 at 4:03 PM, Edward Ahern <Edward.Ahern at tecnotree
>>> .com> wrote:
>>> Hi,
>>>
>>> Is there a proven procedure to install magnum on mitaka?
>>> I’m trying to work off this procedure which is written for liberty.
>>> I’m blocked at step “Create Magnum user at keystone”
>>> I get the following error:
>>> “# openstack user create --os-username magnum --password temporal --
>>> os-auth-url http://<ipddr>:35357/v2.0/ Could not determine a suitable
>>> URL for the plugin”
>>>
>>>
>>> Are you sourcing your keystonerc_admin file?, if so, what variables
>>> are you declaring on it?
>>>
>>>
>>> # openstack --version
>>> openstack 2.2.0
>>>
>>> Regards,
>>>
>>> Ed
>>>
>>>
>>>
>>> _______________________________________________
>>> rdo-list mailing list
>>> rdo-list at redhat.com
>>> https://www.redhat.com/mailman/listinfo/rdo-list
>>>
>>> To unsubscribe: rdo-list-unsubscribe at redhat.com
>>>
>>>
>> --
>> Regards,
>>
>> Christopher Brown
>> OpenStack Engineer
>> OCF plc
>>
>> Tel: +44 (0)114 257 2200
>> Web: www.ocf.co.uk
>> Blog: blog.ocf.co.uk
>> Twitter: @ocfplc
>>
>> Please note, any emails relating to an OCF Support request must always be sent to support at ocf.co.uk for a ticket number to be generated or existing support ticket to be updated. Should this not be done then OCF cannot be held responsible for requests not dealt with in a timely manner.
>>
>> OCF plc is a company registered in England and Wales. Registered
>> number 4132533, VAT number GB 780 6803 14. Registered office address:
>> OCF plc,
>> 5 Rotunda Business Centre, Thorncliffe Park, Chapeltown, Sheffield S35 2PG.
>>
>> This message is private and confidential. If you have received this message in error, please notify us immediately and remove it from your system.
>>
>> _______________________________________________
>> rdo-list mailing list
>> rdo-list at redhat.com
>> https://www.redhat.com/mailman/listinfo/rdo-list
>>
>> To unsubscribe: rdo-list-unsubscribe at redhat.com
>
> _______________________________________________
> rdo-list mailing list
> rdo-list at redhat.com
> https://www.redhat.com/mailman/listinfo/rdo-list
>
> To unsubscribe: rdo-list-unsubscribe at redhat.com
>
> _______________________________________________
> rdo-list mailing list
> rdo-list at redhat.com
> https://www.redhat.com/mailman/listinfo/rdo-list
>
> To unsubscribe: rdo-list-unsubscribe at redhat.com

More information about the rdo-list mailing list