Greetings Ali, I'm really glad to hear the reader role fixed things up for you. That really sounds like a bug or a defect since at that point with Kolla Yoga release. My understanding is that when an admin user was created as part keystone deployment, the "member" and "reader" permission roles were also automatically added. It might be kolla did something different or hadn't adopted the newer RBAC model yet.. If you haven't already done so, double check that your user *also* has the "member" role. Ironic's access model is graduated by access level as a result of the community Secure RBAC effort. Anyhow, for this issue you're encountering, I highly suspect this is because you're attempting to use the redfish-virtual-media boot interface driver, which was originally modeled to upload artifacts to swift, but it can also be set to just store the artifacts locally for a self-hosted http server. My guess is that your Kolla configuration lacks swift and the associated object-store endpoint configuration. You can test my theory and solution by going to ironic.conf's "[redfish]" configuration section, and try setting the "use_swift" setting to "false". If you then send the ironic-conductor a HUP signal, it will reload the configuration and your next deploy attempt will likely get further. Have a great day, and let us know! -Julia On Sun, Sep 29, 2024 at 12:38 AM Ali Hussain <alihussain448@gmail.com> wrote:
Hi Kolla and Ironic folks,
While playing with stable/kolla release to fix the No VIF found error. Looks like adding Readers role to ironic user fixed it. But run into Missing Auth plugin [2] issue while image is being deployed to ironic node. Openstack endpoint list command [1] shows the correct IP of the controller.
My question is:
1. Kolla-Ansible needs explicite Ironic keystone configuration in Ironic.conf? Following this link <https://docs.openstack.org/kolla-ansible/yoga/reference/bare-metal/ironic-guide.html> which does not seems to need any keystone configurations. This issue is observed when
1. --boot-interface redfish-virtual-media 2. --deploy-interface ramdisk 3. --driver-info deploy_iso= 4. -instance-info kernel & ramdisk
2. My passwords.yaml has
1. ironic_database_password: 2. ironic_inspector_database_password: 3. ironic_inspector_keystone_password: 4. ironic_keystone_password:
Any suggestions please.
Thank you.
Ali
[1] openstack endpoint list | grep ironic | <ID> | <Region> | ironic-inspector | baremetal-introspection | True | internal | http://<IP>:5050 | | <ID> | <Region> | ironic | baremetal | True | public | http://<IP>:6385 | | <ID> | <Region> | ironic-inspector | baremetal-introspection | True | public | http://<IP>:5050 | | <ID> | <Region> | ironic | baremetal | True | internal | http://<IP>:6385
[2] *Error: *Detected change in error condition on node Node1. Deploy step deploy.deploy failed with MissingAuthPlugin: An auth plugin is required to determine endpoint URL.. An unhandled exception was encountered while aborting. More information may be found in the log file.