Comments (11)
[root@localhost ~]# ssh [email protected]
Warning: Permanently added 'bastion.ocp.alberttwong.com' (ECDSA) to the list of known hosts.
channel 0: open failed: administratively prohibited: open failed
ssh_exchange_identification: Connection closed by remote host
[root@localhost ~]# ssh [email protected]
The authenticity of host '35.160.172.216 (35.160.172.216)' can't be established.
ECDSA key fingerprint is 06:35:3b:37:90:8e:50:32:4c:c0:67:d2:0e:54:79:0c.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '35.160.172.216' (ECDSA) to the list of known hosts.
Last login: Wed Oct 19 23:26:20 2016 from cpe-75-83-58-118.socal.res.rr.com
[ec2-user@ip-10-20-1-145 ~]$ exit
logout
Connection to 35.160.172.216 closed.
[root@localhost ~]# ssh [email protected]
channel 0: open failed: administratively prohibited: open failed
ssh_exchange_identification: Connection closed by remote host
from openshift-ansible-contrib.
This is an expected result as you have logged into the bastion on your previous install. Remove the entries in ~/.ssh/known_hosts
If you want to pick up where you left off fill in your vars and run the following
ansible-playbook -i inventory/aws/hosts -e 'public_hosted_zone=ocp.alberttwong.com wildcard_zone=apps. ocp.alberttwong.com console_port=443 deployment_type=openshift-enterprise rhsm_user= rhsm_password= rhsm_pool="Employee SKU" region=us-east-1 s3_username=openshift-s3-docker-registry byo_bastion=no' playbooks/openshift-install.yaml
from openshift-ansible-contrib.
I actually deleted all my known_hosts entries... so I don't know why this issue appears.
from openshift-ansible-contrib.
I can reprovision again... but I don't think that's the issue. I'm going to take a time out. I'll try this again tomorrow.
from openshift-ansible-contrib.
@cooktheryan probably want to use an ansible.cfg file that sets host_key_checking=no
from openshift-ansible-contrib.
@detiber we have that param but it seems like it still hangs up on the whole known_host file. The param definitely stops from having to answer yes/no in regards to first login
from openshift-ansible-contrib.
@alberttwong feel free to shoot me your ~/.ssh/config before you kick off. Id be happy to take a look
from openshift-ansible-contrib.
[root@localhost ~]# cat ~/.ssh/config
Host bastion
Hostname bastion.ocp.alberttwong.com
user ec2-user
StrictHostKeyChecking no
ProxyCommand none
CheckHostIP no
ForwardAgent yes
IdentityFile /root/.ssh/id_rsa
Host *.ocp.alberttwong.com
ProxyCommand ssh ec2-user@bastion -W %h:%p
user ec2-user
IdentityFile /root/.ssh/id_rsa
from openshift-ansible-contrib.
I'd say this is a not as high priority as the other ticket. This is more of a interesting case if I want to log into the instances (hopefully I'll never have to do this).
from openshift-ansible-contrib.
@alberttwong if you have time today/this week I'd love to setup a bluejeans session to work this out. It would help to allow me to see if there is a large issue in the installation scripts.
reach out to me [email protected]
from openshift-ansible-contrib.
This looks to be related to DNS entry setup in Route53. The new subdomain DNS NS entry needs to copied to the main domain.
from openshift-ansible-contrib.
Related Issues (20)
- vpc dhcp option not considering different regions HOT 1
- FEATURE REQUEST - AWS Ref Arch 3.9 Specifying AMI
- jq required but not found HOT 1
- AWS 3.9 sample inventory file HOT 2
- Change project name when importing resources. Support export/import and the same cluster. HOT 2
- Support firewalld in backup_master_node.sh HOT 1
- Import in different project name HOT 4
- OpenShift Origin HA Installation on AWS HOT 7
- vmw-3.10 branch missing inventory310 file HOT 4
- project_export.sh fails in Openshift v3.10 HOT 2
- Make pvs configurable for vmware-ansible etcd-storage role HOT 4
- Make disk and memory sizes configurable for vmware-ansible create-vm-prod-ose role HOT 4
- Backup export and import v3.10 with day2ops scripts HOT 5
- Export Cronjob interprete asterisks by mistake HOT 5
- cp: cannot stat ‘/etc/pki/ca-trust/source/anchors/*’: No such file or directory HOT 1
- Openshift install with VMware NSX-T HOT 8
- No route to service with nsx-t HOT 6
- Issue on ocp36-sat6.py HOT 6
- OpenShift Github org will begin enforcing 2FA
- docker file gets excluded in backup_master_node.sh HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openshift-ansible-contrib.