Thanks for the response Greg.
Unfortunately, I appear to be missing something. If I use my cephfs key
with these perms:
client.cephfs
key: redacted
caps: [mds] allow rwx
caps: [mon] allow r
caps: [osd] allow rwx pool=data
This is what happens when I mount:
# ceph-fuse -k
Hrm, I don't remember. Let me know which permutation works and we can
dig into it.
-Greg
Software Engineer #42 @ http://inktank.com | http://ceph.com
On Wed, Apr 2, 2014 at 9:00 AM, Travis Rhoden trho...@gmail.com wrote:
Thanks for the response Greg.
Unfortunately, I appear to be missing
Ah, I figured it out. My original key worked, but I needed to use the --id
option with ceph-fuse to tell it to use the cephfs user rather than the
admin user. Tailing the log on my monitor pointed out that it was logging
in with client.admin, but providing the key for client.cephfs.
So, final
At present, the only security permission on the MDS is allowed to do
stuff, so rwx and * are synonymous. In general * means is an
admin, though, so you'll be happier in the future if you use rwx.
You may also want a more restrictive set of monitor capabilities as
somebody else recently pointed
