Differences

This shows you the differences between two versions of the page.

--- testnodeaccess [2019/07/10 19:19]
djgalloway
+++ testnodeaccess [2025/01/16 20:31] (current)
djgalloway
@@ Line 8: / Line 8: @@
 Most developers schedule suites from the ''teuthology.front.sepia.ceph.com'' VM which automatically locks/unlocks machines.
-However, if you wish to run ''teuthology'' commands from your workstation, see http://docs.ceph.com/teuthology/docs/INSTALL.html#installation-and-setup.
+However, if you wish to run ''teuthology'' commands from your workstation, see https://docs.ceph.com/projects/teuthology/en/latest/INSTALL.html#installation-and-setup.
 Once you've got ''teuthology'' added to your workstation path, make sure you copy the current ''/etc/teuthology.yaml'' from ''teuthology.front.sepia.ceph.com'' to your **local** workstation's ''~/.teuthology.yaml''.
@@ Line 30: / Line 30: @@
         IdentityFile ~/.ssh/id_rsa # (This should be the private key matching the public key you provided in your user access ticket)
         ForwardAgent yes # <- This is the important part
+host smithi* mira* gibba*
+        StrictHostKeyChecking no
+        UserKnownHostsFile=/dev/null
 </code>
 This will allow you to SSH from your workstation -> teuthology machine -> all testnodes
+Your SSH config on ''teuthology.front.sepia.ceph.com'' should have this:
+<code>
+Host *
+  StrictHostKeyChecking no
+  UserKnownHostsFile=/dev/null
+</code>
 ===== VPSes =====
@@ Line 53: / Line 65: @@
 Host *
   StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
 Host vpm*
@@ Line 64: / Line 77: @@
 </code>
-  - If you're using a static key file on ''teuthology.front.sepia.ceph.com'', make sure its permissions are ''0600''
+  - If you're using a static key file (as in you have a ''~/.ssh/id_rsa'' file) on ''teuthology.front.sepia.ceph.com'', make sure its permissions are ''0600''
   - The SSH key can NOT have a passphrase (unless you're doing SSH Agent Forwarding?)
-  - Ask dgalloway to capture new FOG images that include your public SSH key.
+  - The SSH key can NOT have been generated using OpenSSH version >= 7.8p1-1 (''[dpkg -l|rpm -qa] | grep openssh'' to find out)
+    - Either generate your SSH key from ''teuthology.front.sepia.ceph.com'' or try ''ssh-keygen -t rsa -m PEM''
+  - ''rm -f ~/.ssh/known_hosts'' and add ''UserKnownHostsFile /dev/null'' to your SSH config.
+  - Ask Adam Kraitman or Dan Mick to capture new FOG images that include your public SSH key.
+  - You **must** have ''ForwardAgent yes'' set for ''teuthology.front.sepia.ceph.com'' in your workstation's ''~/.ssh/config'' file.
+The newest version of paramiko doesn't support SSH keys that have ''BEGIN OPENSSH PRIVATE KEY'' in them.  See https://github.com/paramiko/paramiko/issues/1015.
 -----
@@ Line 78: / Line 97: @@
 Baremetal testnodes are accessible via out-of-band (OOB) management controllers, or BMCs.  If you're unable to reach a host via ssh on its front.sepia.ceph.com address, you can try accessing it using [[services:conserver]] and power cycle via ''ipmitool''.
-**Power Cycle Example**
+==== Power Cycle Example ====
 <code>
 ipmitool -I lanplus -U inktank -P XXXXX -H testnode123.ipmi.sepia.ceph.com chassis power cycle

Sepia Lab Wiki

User Tools

Site Tools

Differences

Page Tools