openstack team mailing list archive
-
openstack team
-
Mailing list archive
-
Message #21701
Re: grizzly on ubuntu precise: auth error using glance index
-
To:
openstack@xxxxxxxxxxxxxxxxxxx
-
From:
Heiko Krämer <kraemer@xxxxxxxxxx>
-
Date:
Fri, 08 Mar 2013 14:55:58 +0100
-
In-reply-to:
<CAOo=kQVrz1jLW9dbwrgZrOrw1p1CtajFD166BJNrrmv2ixgu+w@mail.gmail.com>
-
Organization:
Avarteq GmbH
-
User-agent:
Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130221 Thunderbird/17.0.3
Hi Oliver,
think this will solve your problem
In /etc/keystone/keystone.conf
[signing]
token_format = UUID
#certfile = /etc/keystone/ssl/certs/signing_cert.pem
#keyfile = /etc/keystone/ssl/private/signing_key.pem
#ca_certs = /etc/keystone/ssl/certs/ca.pem
#key_size = 1024
#valid_days = 3650
#ca_password = None
and restart Keystone.
Greetings
Heiko
Am 08.03.2013 14:50, schrieb Olivier Archer:
> Hi,
> From the documentation here :
> http://docs.openstack.org/trunk/openstack-compute/install/apt/content/ap_installinggrizzlyubuntuprecise.html
>
> I've got problems with 'glance index' :
> # glance index
> Authorization Failed: Unable to communicate with identity service:
> {"error": {"message": "An unexpected error prevented the server from
> fulfilling your request. Command 'openssl' returned non-zero exit
> status 3", "code": 500, "title": "Internal Server Error"}}. (HTTP 500)
>
> /var/log/keystone/keystone.log give:
> ERROR [keystone.common.cms] Signing error: Error opening signer
> certificate /etc/keystone/ssl/certs/signing_cert.pem
>
> So I've run
> # sudo keystone keystone-manage pki-setup
>
> to create certs file.
>
> But now, 'glance index' give me:
>
> Request returned failure status.
> Invalid OpenStack Identity credentials.
>
> and keystone.log give:
> WARNING [keystone.common.wsgi] Authorization failed. The request you
> have made requires authentication.
>
> my configuration is like the one in the doc:
>
> creds:
> export SERVICE_TOKEN=admin
> export OS_TENANT_NAME=admin
> export OS_USERNAME=admin
> export OS_PASSWORD=openstack
> export OS_AUTH_URL=http://100.10.10.115:5000/v2.0/
> export SERVICE_ENDPOINT=http://100.10.10.115:35357/v2.0/
>
> i've reinstalled everything from the begining from a fresh installed
> server, and i'm still stuck in this error...
>
>
>
>
--
B. Sc. Informatik
Heiko Krämer
CIO/Administrator
Twitter: @railshoster
Avarteq GmbH
Zweigstelle:
Prinzessinnenstr. 20, 10969 Berlin
----
Geschäftsführer: Alexander Faißt, Dipl.-Inf.(FH) Julian Fischer
Handelsregister: AG Saarbrücken HRB 17413, Ust-IdNr.: DE262633168
Sitz:
Science Park 2
66123 Saarbrücken
Tel: +49 (0)681 / 309 64 190
Fax: +49 (0)681 / 309 64 191
Visit:
http://www.enterprise-rails.de/
begin:vcard
fn;quoted-printable:Heiko Kr=C3=A4mer
n;quoted-printable:Kr=C3=A4mer;Heiko
org:Avarteq GmbH;Hosting
adr:;;Prinzessinnenstr. 20;Berlin;Berlin;10969 ;Germany
email;internet:kraemer@xxxxxxxxxx
title:CIO
url:http://enterprise-rails.com/
version:2.1
end:vcard
Follow ups
References
