Giter VIP home page Giter VIP logo

Comments (11)

alberttwong avatar alberttwong commented on June 20, 2024 
[root@localhost ~]# ssh [email protected]
Warning: Permanently added 'bastion.ocp.alberttwong.com' (ECDSA) to the list of known hosts.
channel 0: open failed: administratively prohibited: open failed
ssh_exchange_identification: Connection closed by remote host
[root@localhost ~]# ssh [email protected]
The authenticity of host '35.160.172.216 (35.160.172.216)' can't be established.
ECDSA key fingerprint is 06:35:3b:37:90:8e:50:32:4c:c0:67:d2:0e:54:79:0c.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '35.160.172.216' (ECDSA) to the list of known hosts.
Last login: Wed Oct 19 23:26:20 2016 from cpe-75-83-58-118.socal.res.rr.com
[ec2-user@ip-10-20-1-145 ~]$ exit
logout
Connection to 35.160.172.216 closed.
[root@localhost ~]# ssh [email protected]
channel 0: open failed: administratively prohibited: open failed
ssh_exchange_identification: Connection closed by remote host

from openshift-ansible-contrib.

cooktheryan avatar cooktheryan commented on June 20, 2024

This is an expected result as you have logged into the bastion on your previous install. Remove the entries in ~/.ssh/known_hosts

If you want to pick up where you left off fill in your vars and run the following

ansible-playbook -i inventory/aws/hosts -e 'public_hosted_zone=ocp.alberttwong.com wildcard_zone=apps. ocp.alberttwong.com console_port=443 deployment_type=openshift-enterprise rhsm_user= rhsm_password= rhsm_pool="Employee SKU" region=us-east-1 s3_username=openshift-s3-docker-registry byo_bastion=no' playbooks/openshift-install.yaml

from openshift-ansible-contrib.

alberttwong avatar alberttwong commented on June 20, 2024

I actually deleted all my known_hosts entries... so I don't know why this issue appears.

from openshift-ansible-contrib.

alberttwong avatar alberttwong commented on June 20, 2024

I can reprovision again... but I don't think that's the issue. I'm going to take a time out. I'll try this again tomorrow.

from openshift-ansible-contrib.

detiber avatar detiber commented on June 20, 2024

@cooktheryan probably want to use an ansible.cfg file that sets host_key_checking=no

from openshift-ansible-contrib.

cooktheryan avatar cooktheryan commented on June 20, 2024

@detiber we have that param but it seems like it still hangs up on the whole known_host file. The param definitely stops from having to answer yes/no in regards to first login

from openshift-ansible-contrib.

cooktheryan avatar cooktheryan commented on June 20, 2024

@alberttwong feel free to shoot me your ~/.ssh/config before you kick off. Id be happy to take a look

from openshift-ansible-contrib.

alberttwong avatar alberttwong commented on June 20, 2024 
[root@localhost ~]# cat ~/.ssh/config
Host bastion
     Hostname                 bastion.ocp.alberttwong.com
     user                       ec2-user
     StrictHostKeyChecking      no
     ProxyCommand               none
     CheckHostIP                no
     ForwardAgent               yes
     IdentityFile               /root/.ssh/id_rsa

Host *.ocp.alberttwong.com
     ProxyCommand               ssh ec2-user@bastion -W %h:%p
     user                       ec2-user
     IdentityFile               /root/.ssh/id_rsa

from openshift-ansible-contrib.

alberttwong avatar alberttwong commented on June 20, 2024

I'd say this is a not as high priority as the other ticket. This is more of a interesting case if I want to log into the instances (hopefully I'll never have to do this).

from openshift-ansible-contrib.

cooktheryan avatar cooktheryan commented on June 20, 2024

@alberttwong if you have time today/this week I'd love to setup a bluejeans session to work this out. It would help to allow me to see if there is a large issue in the installation scripts.

reach out to me [email protected]

from openshift-ansible-contrib.

alberttwong avatar alberttwong commented on June 20, 2024

This looks to be related to DNS entry setup in Route53. The new subdomain DNS NS entry needs to copied to the main domain.

from openshift-ansible-contrib.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.