Hi Joshua, Could you try setting the following Global setting value ca.plugin.root.auth.strictness to false and restart the services.
Thanks, Pearl ________________________________ From: Joshua Schaeffer <jschaef...@harmonywave.com> Sent: Friday, September 11, 2020 8:24 PM To: users@cloudstack.apache.org <users@cloudstack.apache.org> Subject: Re: Unable to build first zone On 9/10/20 9:29 AM, David Jumani wrote: > Glad to hear it! > > The reason for the next error could be when bridges are not configured on the > host. Could you check the bridge config as mentioned here : > http://docs.cloudstack.apache.org/projects/cloudstack-installation/en/4.11/hypervisor/kvm.html > > > Thanks, > David > ________________________________ > Thanks David for all your help, my bridge configurations on the compute host were incorrect. I think I've fixed those. I am getting an SSL error now when trying to connect to to the management server: 2020-09-11 14:43:22,606 INFO [utils.nio.NioClient] (main:null) (logid:) Connecting to 10.2.88.3:8250 2020-09-11 14:43:22,618 INFO [utils.nio.Link] (main:null) (logid:) Conf file found: /etc/cloudstack/agent/agent.properties 2020-09-11 14:43:22,730 WARN [utils.nio.Link] (main:null) (logid:) Failed to load keystore, using trust all manager 2020-09-11 14:43:23,577 ERROR [utils.nio.Link] (main:null) (logid:) SSL error caught during unwrap data: Received fatal alert: bad_certificate, for local address=/10.2.20.129:58948, remote address=/10.2.88.3:8250. The client may have invalid ca-certificates. 2020-09-11 14:43:23,581 ERROR [utils.nio.NioClient] (main:null) (logid:) SSL Handshake failed while connecting to host: 10.2.88.3 port: 8250 2020-09-11 14:43:23,585 ERROR [utils.nio.NioConnection] (main:null) (logid:) Unable to initialize the threads. java.io.IOException: SSL Handshake failed while connecting to host: 10.2.88.3 port: 8250 at com.cloud.utils.nio.NioClient.init(NioClient.java:67) at com.cloud.utils.nio.NioConnection.start(NioConnection.java:95) at com.cloud.agent.Agent.start(Agent.java:282) at com.cloud.agent.AgentShell.launchNewAgent(AgentShell.java:455) at com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:422) at com.cloud.agent.AgentShell.launchAgent(AgentShell.java:406) at com.cloud.agent.AgentShell.start(AgentShell.java:512) at com.cloud.agent.AgentShell.main(AgentShell.java:547) 2020-09-11 14:43:23,595 WARN [cloud.agent.Agent] (main:null) (logid:) NIO Connection Exception com.cloud.utils.exception.NioConnectionException: SSL Handshake failed while connecting to host: 10.2.88.3 port: 8250 2020-09-11 14:43:23,595 INFO [cloud.agent.Agent] (main:null) (logid:) Attempted to connect to the server, but received an unexpected exception, trying again... I can see that my management server is listening on port 8250, but I don't see any keystores under /etc/cloudstack/management on the management server or /etc/cloudstack/agent on the compute host. I reviewed the docs here [1] which talks about running the keystore-setup and keystore-cert-import scripts. Should I be configuring my own certificate chain before trying to connect hosts or should this have been setup automatically? [1] https://docs.cloudstack.apache.org/en/4.14.0.0/adminguide/hosts.html#security -- Thanks, Joshua Schaeffer pearl.dsi...@shapeblue.comĀ www.shapeblue.com 3 London Bridge Street, 3rd floor, News Building, London SE1 9SGUK @shapeblue
