Hi,
While using rbd kernel client with cephx , admin user without admin
keyring was not able to map the rbd image to a block device and this
should be the work flow.
But issue is once I unmap rbd image without admin keyring it is allowing
to unmap the image and as per my understanding it
Unmapping is an operation local to the host and doesn't communicate
with the cluster at all (at least, in the kernel you're running...in
very new code it might involve doing an unwatch, which will require
communication). That means there's no need for a keyring, since its
purpose is to validate