-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Encrypting disks #2
Comments
Could you describe how you get the key, system__cmkid? |
I created a key inside of key management service and used the ID. |
I can't really duplicate. I can get something similar but not identical with a bad or missing __system__cmkid. In order to debug, I would need all of your terraform code (so *.tf in current directory), and any input variable definitions you are using (or .tfvars file if you are using that). |
have emailed you. |
How is the code different from this? |
Its basically the same, you do a few extras which seem to be
* Ssd disks
* System volume
* Depends_on field
Otherwise the same, my code is relatively simple.
From: Gary Xia [mailto:[email protected]]
Sent: Tuesday, November 21, 2017 8:32 AM
To: gator1/terraform-provider-opentelekomcloud <[email protected]>
Cc: Mann, Tom <[email protected]>; Author <[email protected]>
Subject: Re: [gator1/terraform-provider-opentelekomcloud] Encrypting disks (#2)
How is the code different from this?
https://github.com/weihj1999/tfexample/blob/master/grid-engine.tf
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub<#2 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgRPmXv1qaUW1TKNQ0Qxl32st8IBKjecks5s4nxigaJpZM4QkY3X>.
|
I couldn't reproduce. The support people couldn't either. You need to provide the full code including your credentials for me to be able to debug, code snippet like this won't be enough. |
My guess is that you either get a wrong key, you don't have privilege to use the key, or the dependency was not set up. But I need your full code to debug further. |
Morning Gary,
I suspect the issue revolves around being able to Create Xrole, when I manually create a machine and try to attach an encrypted disk it asks me to Create Xrole which generates no error when I click it but likewise does nothing, this is probably permission based and once resolved I assume all will work.
Sorry that this turns out on my side.
Cheers
Tom.
From: Gary Xia [mailto:[email protected]]
Sent: Wednesday, November 22, 2017 3:05 AM
To: gator1/terraform-provider-opentelekomcloud <[email protected]>
Cc: Mann, Tom <[email protected]>; Author <[email protected]>
Subject: Re: [gator1/terraform-provider-opentelekomcloud] Encrypting disks (#2)
My guess is that you either get a wrong key, you don't have privilege to use the key, or the dependency was not set up. But I need your full code to debug further.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub<#2 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgRPmbC5Vw_hWCjGGOlY1BH_gmJozUHbks5s44FhgaJpZM4QkY3X>.
|
Morning all,
I can confirm this was the issue once I was given admin permission I could create the xrole and attach a key to the machine manually via portal, now running the terraform code it completes fine. I should note that it threw no exception or error when the Create XRole hadn’t been created, I believe this is on a tenancy so going forward its not an issue but for new users of T-Systems with no errors being thrown this is probably something others will hit.
Cheers
Tom
From: Mann, Tom
Sent: Wednesday, November 22, 2017 10:23 AM
To: 'gator1/terraform-provider-opentelekomcloud' <[email protected]>; gator1/terraform-provider-opentelekomcloud <[email protected]>
Cc: Author <[email protected]>
Subject: RE: [gator1/terraform-provider-opentelekomcloud] Encrypting disks (#2)
Morning Gary,
I suspect the issue revolves around being able to Create Xrole, when I manually create a machine and try to attach an encrypted disk it asks me to Create Xrole which generates no error when I click it but likewise does nothing, this is probably permission based and once resolved I assume all will work.
Sorry that this turns out on my side.
Cheers
Tom.
From: Gary Xia [mailto:[email protected]]
Sent: Wednesday, November 22, 2017 3:05 AM
To: gator1/terraform-provider-opentelekomcloud <[email protected]<mailto:[email protected]>>
Cc: Mann, Tom <[email protected]<mailto:[email protected]>>; Author <[email protected]<mailto:[email protected]>>
Subject: Re: [gator1/terraform-provider-opentelekomcloud] Encrypting disks (#2)
My guess is that you either get a wrong key, you don't have privilege to use the key, or the dependency was not set up. But I need your full code to debug further.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub<#2 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgRPmbC5Vw_hWCjGGOlY1BH_gmJozUHbks5s44FhgaJpZM4QkY3X>.
|
Hi there,
Thank you for opening an issue. Please note that we try to keep the Terraform issue tracker reserved for bug reports and feature requests. For general usage questions, please see: https://www.terraform.io/community.html.
Terraform Version
Run
terraform -v
to show the version. If you are not running the latest version of Terraform, please upgrade because your issue may have already been fixed.v.0.10.8
Affected Resource(s)
Please list the resources as a list, for example:
If this issue appears to affect multiple resources, it may be an issue with Terraform's core, so please mention this.
Terraform Configuration Files
#a command to attach the relevant data volume to the machine
resource "opentelekomcloud_compute_volume_attach_v2" "volumeData_attach" {
count = "${var.diskData_size_gb > 0 ? var.vm_engine_count : 0}"
instance_id = "${element(opentelekomcloud_compute_instance_v2.engine_node..id, count.index)}"
volume_id = "${element(opentelekomcloud_blockstorage_volume_v2.volumeData..id, count.index)}"
}
#Create the Data volume
resource "opentelekomcloud_blockstorage_volume_v2" "volumeData" {
count = "${var.diskData_size_gb > 0 ? var.vm_engine_count : 0}"
name = "ComputeNode_dsgr_${format("%02d", count.index+1)}.${var.Environment}.TSystems-Datadisk${format("%02d", count.index+1)}"
size = "${var.diskData_size_gb}"
metadata = {
"__system__encrypted" = 1
"__system__cmkid" = "9ef7e21c-8a9c-4f46-be5f-41bec99c54be"
}
}
Debug Output
Please provider a link to a GitHub Gist containing the complete debug output: https://www.terraform.io/docs/internals/debugging.html. Please do NOT paste the debug output in the issue; just paste a link to the Gist.
terraform completes fine,
Panic Output
If Terraform produced a panic, please provide a link to a GitHub Gist containing the output of the
crash.log
.Expected Behavior
encrypted disk is attached to server
Actual Behavior
terraform completed fine, viewing the machine you could see 2 drives one system and one encrypted data, however the volume screen showed the device was in state attaching, after around 10 minutes this timed out and the drive was removed from the machine info.
Steps to Reproduce
Please list the steps required to reproduce the issue, for example:
terraform apply
Important Factoids
Are there anything atypical about your accounts that we should know? For example: Which version of OpenTelekomCloud? Tight ACLs?
References
Are there any other GitHub issues (open or closed) or Pull Requests that should be linked here? For example:
The text was updated successfully, but these errors were encountered: