[Openstack-operators] Root password injection stops working

Abel Lopez alopgeek at gmail.com
Fri May 29 15:53:01 UTC 2015


You can get admin_pass from the openstack metadata directory in config drive, and use a boot-time script to set the password accordingly.
This example assumes the dhcp style metadata, but you can see how you could simply change it to read the fail instead
https://gist.github.com/vishvananda/4008762 <https://gist.github.com/vishvananda/4008762>

> On May 29, 2015, at 4:51 AM, Miguel A Diaz Corchero <miguelangel.diaz at externos.ciemat.es> wrote:
> 
> Hi all,
> 
> I need a bit help with this issue in Icehouse. The root password injection of libvirt, which worked pretty well, stops working after configuring the force_config_drive. And now, the config drive is working perfectly used by the cloud-init which mounts the /dev/sr0, takes metadata, sets users, and so. The problem is that the admin password set in Horizon is not included inside the instance, instead, the root password of /etc/shadow changes in every instance.
> 
> Any idea to force the injection of admin/root password (through Horizon) and the config_drive at the same time?
> 
> Could cloud_init overwrite the /etc/shadow when instance is booting?
> 
> Miguel.
> 
> 
> 
> --
> Miguel Angel Díaz Corchero
> System Administrator / Researcher
> c/ Sola nº 1; 10200 TRUJILLO, SPAIN
> Tel: +34 927 65 93 17 Fax: +34 927 32 32 37
> <image001.png> <http://www.ceta-ciemat.es/>
> 
> ----------------------------
> Confidencialidad:
> Este mensaje y sus ficheros adjuntos se dirige exclusivamente a su destinatario y puede contener información privilegiada o
> confidencial. Si no es vd. el destinatario indicado, queda notificado de que la utilización, divulgación y/o copia sin autorización está
> prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique
> inmediatamente respondiendo al mensaje y proceda a su destrucción.
> 
> Disclaimer:
> This message and its attached files is intended exclusively for its recipients and may contain confidential information. If you received
> this e-mail in error you are hereby notified that any dissemination, copy or disclosure of this communication is strictly prohibited and
> may be unlawful. In this case, please notify us by a reply and delete this email and its contents immediately.
> ----------------------------
> 
> _______________________________________________
> OpenStack-operators mailing list
> OpenStack-operators at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-operators

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-operators/attachments/20150529/abe94e86/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.openstack.org/pipermail/openstack-operators/attachments/20150529/abe94e86/attachment.pgp>


More information about the OpenStack-operators mailing list