Closed tommyknows closed 3 years ago
Have you created the secret as described in https://github.com/nutanix/csi-plugin/blob/master/example/ABS/ntnx-secret.yaml ? Please decode the secret data and check prism-ip, port, user and password. Also confirm that user/password work with Prism UI.
Already did, the secret is perfectly fine. I also tried the UI (which works) and curl, which works too.
I had this issue once before on a different project with the https://github.com/nutanix/docker-machine driver, which seems to use the v0.8
API which is disabled or something on our Cluster. There I got a 401 too when trying to connect. I fixed it by updating the API that is being used to v3, which also enabled me to use PC instead of the cluster.
BTW: would it be possible to open-source the CSI Plugin? (instead of just open-sourcing the deployment manifests)
It would make it easier to debug issues like that ourselves 🙂
Here are the things that you can do.
You can reach out to nutanix support for faster resolution of the issue.
You can try looking at /home/nutanix/data/logs/prism_gateway.log for clues on all CVMs of nutanix cluster.
Try https://www.base64encode.org/ for base64 encoding. linux command line may have trouble handling special chars in password.
The issue was within our cluster - we didn't allow "Local" users to log in. Interestingly, it's still possible to log in to the v3
API nonetheless, the provisioner just seems to use v1
.
I'm trying to get the CSI plugin working on our Rancher-launched cluster on Nutanix.
The first issue I had was https://github.com/nutanix/csi-plugin/issues/22, and according to this, I need to connect to the cluster instead of prism central. However, when trying to connect to the cluster, I get a 401 (with the exact same credentials, that are passed through to the cluster).
Further, I can verify with curl that my credentials indeed work -
curl <url>/api/nutanix/v3/vms/<some uuid> --user <user>:<password>
works fine on both cluster and prism central.Excerpt from the logs:
When trying to connect to Prism Central, I get the same issue as described in #22.