Hello,
Not sure if I have made something weird, however I am getting errors which are
explicitly related to selecting Network ID or errors indicates that.
I am using the following YAML:
name: simple-vm3
location: openstack
services:
- type: brooklyn.entity.basic.EmptySoftwareProcess
name: VM
provisioning.properties:
minRam: 512
minCores: 1
minDisk: 10
networks:
- network: private
Brooklyn properties:
brooklyn.location.named.openstack=jclouds:openstack-nova:http://IP_ADDR:5000/v2.0
brooklyn.location.named.openstack.identity=admin:admin
brooklyn.location.named.openstack.credential=********
brooklyn.location.named.openstack.imageId=RegionOne/d5163d69-4b2c-4269-99ad-88506973037f
brooklyn.location.named.openstack.keyPair=admin
brooklyn.location.named.openstack.securityGroups=default
brooklyn.location.named.openstack.loginUser.privateKeyFile=/opt/brooklyn/admin.pem
brooklyn.location.named.openstack.loginUser=fedora
brooklyn.location.named.openstack.hardwareId=RegionOne/24b24f68-535a-4c73-a052-52022240a2e3
brooklyn.location.named.openstack.networkName=private
I have attempted to add network definition to the example YAML from Brooklyn
web page. It did not help.
OpenStack is set up to have 2 networks: private and external shared, from where
Floating IP's are to be assigned. I am able to start instances with admin and
non admin user on OpenStack and networking seems to be working.
When setting Brooklyn to use normal tenant user, application fails with:
Failure running task invoking start[locations] on 1 node (aBM5rC8q):
org.jclouds.compute.RunNodesException: error running 1 node
group(brooklyn-wnok-simple-vm3-nkqw-vm-bsuf) location(RegionOne)
image(d5163d69-4b2c-4269-99ad-88506973037f)
size(24b24f68-535a-4c73-a052-52022240a2e3) options({loginUser=fedora,
loginPrivateKeyPresent=true, scriptPresent=true,
userMetadata={Name=brooklyn-wnok-simple-vm3-nkqw-vm-bsuf-UcLq},
autoAssignFloatingIp=false, securityGroupNames=[default], keyPairName=brooklyn,
configDrive=false}) Execution failures: 1) ExecutionException on
brooklyn-wnok-simple-vm3-nkqw-vm-bsuf-390:
java.util.concurrent.ExecutionException:
org.jclouds.rest.AuthorizationException: {"forbidden": {"message": "It is not
allowed to create an interface on external network
83aa077e-0742-4aaa-8774-6ccdc3fd7800", "code": 403}}
According to some knowledge bases this happens when explicit network id is not
specified in request and shared external network is attempted to be used.
Request fails as _Member_ user is not allowed to modify external net.
If I select to use admin user it fails a litle further and more explicitly.
Failure running task invoking start[locations] on 1 node (bGa2UU8o):
org.jclouds.compute.RunNodesException: error running 1 node
group(brooklyn-gdqq-simple-vm2-eo7v-vm-sswy) location(RegionOne)
image(d5163d69-4b2c-4269-99ad-88506973037f)
size(24b24f68-535a-4c73-a052-52022240a2e3) options({loginUser=fedora,
loginPrivateKeyPresent=true, scriptPresent=true,
userMetadata={Name=brooklyn-gdqq-simple-vm2-eo7v-vm-sswy-Q526},
autoAssignFloatingIp=false, securityGroupNames=[default], keyPairName=admin,
configDrive=false}) Execution failures: 1) ExecutionException on
brooklyn-gdqq-simple-vm2-eo7v-vm-sswy-639:
java.util.concurrent.ExecutionException:
org.jclouds.http.HttpResponseException: command: POST
http://10.12.208.5:8774/v2/7053442c99914d4f8a64c6bc51a96d25/servers HTTP/1.1
failed with response: HTTP/1.1 400 null; content: [{"badRequest": {"message":
"Multiple possible networks found, use a Network ID to be more specific.",
"code": 400}}] at
com.google.common.util.concurrent.AbstractFuture$Sync.getValue(AbstractFuture.java:299)
at
Any ideas how to specify Network ID? Or am I doing everything wrong way?
Thank you
_________________________________________
Elvinas Piliponis
Studentų g. 59-B707, LT-51365, Kaunas | Lietuva
Email: [email protected] | Mobile: +370 69807947
The information contained in this electronic mail transmission may be
privileged and confidential, and therefore, protected from disclosure. If you
have received this communication in error, please notify us immediately by
replying to this message and deleting the email and its attachments from all
computers without copying or disclosing it.
