search

digitalis-io / k3s-on-prem-production

Playbooks needed to set up an on-premises K3s cluster and securize it
Apache License 2.0
157 stars 45 forks source link

fails at [hardening : Wait for system to become reachable] #7

Closed divramod closed 1 year ago

divramod commented 2 years ago

some idea on what i did wrong? i used centos-stream-8 as image?

worker-02 was failing earlier with the same error message

TASK [hardening : Wait for system to become reachable] ********************************************************************************
fatal: [worker-03]: FAILED! => {"changed": false, "elapsed": 301, "msg": "timed out waiting for ping module test: Failed to connect to the host via ssh: #################################################################################\n#                            Welcom
e to worker-03\n#           Authorized uses only. All activity may be monitored and reported.\n#              Disconnect IMMEDIATELY if you are not an authorized user!\n#################################################################################\nroot@<MYIP>
5: Permission denied (publickey,password)."}
fatal: [worker-01]: FAILED! => {"changed": false, "elapsed": 301, "msg": "timed out waiting for ping module test: Failed to connect to the host via ssh: #################################################################################\n#                            Welcom
e to worker-01\n#           Authorized uses only. All activity may be monitored and reported.\n#              Disconnect IMMEDIATELY if you are not an authorized user!\n#################################################################################\nroot@<MYIP>
: Permission denied (publickey,password)."}
fatal: [master-02]: FAILED! => {"changed": false, "elapsed": 301, "msg": "timed out waiting for ping module test: Failed to connect to the host via ssh: #################################################################################\n#                            Welcom
e to master-02\n#           Authorized uses only. All activity may be monitored and reported.\n#              Disconnect IMMEDIATELY if you are not an authorized user!\n#################################################################################\nroot@<MYIP>:
Permission denied (publickey,password)."}
fatal: [master-03]: FAILED! => {"changed": false, "elapsed": 302, "msg": "timed out waiting for ping module test: Failed to connect to the host via ssh: #################################################################################\n#                            Welcom
e to master-03\n#           Authorized uses only. All activity may be monitored and reported.\n#              Disconnect IMMEDIATELY if you are not an authorized user!\n#################################################################################\nroot@<MYIP>
: Permission denied (publickey,password)."}
fatal: [master-01]: FAILED! => {"changed": false, "elapsed": 302, "msg": "timed out waiting for ping module test: Failed to connect to the host via ssh: #################################################################################\n#                            Welcom
e to master-01\n#           Authorized uses only. All activity may be monitored and reported.\n#              Disconnect IMMEDIATELY if you are not an authorized user!\n#################################################################################\nroot@<MYIP>:
Permission denied (publickey,password)."}

NO MORE HOSTS LEFT ********************************************************************************************************************

NO MORE HOSTS LEFT ********************************************************************************************************************

PLAY RECAP ****************************************************************************************************************************
master-01                  : ok=78   changed=55   unreachable=0    failed=1    skipped=4    rescued=0    ignored=0
master-02                  : ok=78   changed=55   unreachable=0    failed=1    skipped=4    rescued=0    ignored=0
master-03                  : ok=78   changed=55   unreachable=0    failed=1    skipped=4    rescued=0    ignored=0
worker-01                  : ok=78   changed=55   unreachable=0    failed=1    skipped=4    rescued=0    ignored=0
worker-02                  : ok=59   changed=43   unreachable=1    failed=0    skipped=1    rescued=0    ignored=0
worker-03                  : ok=78   changed=55   unreachable=0    failed=1    skipped=4    rescued=0    ignored=0
89luca89 commented 2 years ago

Hi @divramod Permission denied (publickey,password). indicates that there are problems performing ssh on the machines, can you access them manually performing ssh?

The hardening will enforce the use of private/public keys over password