Comments (12)
Hi,
fab will try to use ssh public key authentication to connect to your
cluster nodes.
The user that you use to connect to the nodes needs sudo (without password
prompt).
p.s.
ssh user@host1 -vvv
can be quite helpful to debug ssh pubkey issues :)
Cheers,
Tommaso
2014-06-11 20:55 GMT+02:00 Chris Love [email protected]:
Hi all
I am looking for better documentation on how to just use ssh keys, and no
password. I am getting an error from fabric that sudo requires a password.
Do I need to setup sudo on the remote boxes to all to run the backup w/o
password?Thanks
Chris
—
Reply to this email directly or view it on GitHub
#21.
from cassandra_snapshotter.
Still having issues with this ...
I am running
cassandra-snapshotter -v --aws-access-key-id=redacted --aws-secret-access-key=redacted --s3-bucket-name=redacted --s3-bucket-region=redacted --s3-ssenc --s3-base-path=redacted backup --hosts=host1,host2,host3 --sshport=redacted
and I am getting this error:
Fatal error: Needed to prompt for a connection or sudo password (host: host1), but input would be ambiguous in parallel mode
ssh works w/o password with user
sudo for cassandra-snapshooter, cassandra-snapshotter-agent, and nodetool add work w/o password
I am able to run the command with a different user, with their password and username.
The problem seems to be with Frabic. Do you have an example of sudo setup?
from cassandra_snapshotter.
That's odd; what happens if you provide the user to cassandra-snapshotter
command explicitly? (--user=username)
2014-06-16 20:36 GMT+02:00 Chris Love [email protected]:
Still having issues with this ...
I am running
cassandra-snapshotter -v --aws-access-key-id=redacted --aws-secret-access-key=redacted --s3-bucket-name=redacted --s3-bucket-region=redacted --s3-ssenc --s3-base-path=redacted backup --hosts=host1,host2,host3 --sshport=redacted
and I am getting this error:
Fatal error: Needed to prompt for a connection or sudo password (host: host1), but input would be ambiguous in parallel mode
ssh works w/o password with user
sudo for cassandra-snapshooter, cassandra-snapshotter-agent, and nodetool
add work w/o passwordI am able to run the command with a different user, with their password
and username.—
Reply to this email directly or view it on GitHub
#21 (comment)
.
from cassandra_snapshotter.
same ... also tried:
with settings(sudo_prefix="sudo "):
with show('debug'):
sudo(cmd, shell=False)
With no luck.
I am encountering a callback to handle_prompt_abort in the frabric source code itself. I am not sure if it is a problem with sudo or ssh.
from cassandra_snapshotter.
perhaps a very old fabric version?
another thing you can try is changing one sudo command to normal run; this
way you should understand if its ssh having trouble connecting or if its a
sudo thing.
I also had trouble with fabric not playing well with ssh-agent but thats
something should be resolved in recent versions of fabric.
2014-06-16 22:00 GMT+02:00 Chris Love [email protected]:
same ... also tried:
with settings(sudo_prefix="sudo "):
with show('debug'):
sudo(cmd, shell=False)With no luck.
I am encountering a callback to handle_prompt_abort in the frabric source
code itself. I am not sure if it is a problem with sudo or ssh.—
Reply to this email directly or view it on GitHub
#21 (comment)
.
from cassandra_snapshotter.
I used pip to install fabric, so that should be fine. It is the ssh connection, using run does not help. I am using ecdsa keys ... so that might be the problem. I have set the key name by hand with no luck. Paramiko debug is not telling me if I am connected. May see if I can turn on more debug via sshd.... Oh fun fun fun
from cassandra_snapshotter.
Hi Chris,
did you manage to get the snapshotter working in the end?
Tommaso
2014-06-16 22:57 GMT+02:00 Chris Love [email protected]:
I used pip to install fabric, so that should be fine. It is the ssh
connection, using run does not help. I am using ecdsa keys ... so that
might be the problem. I have set the key name by hand with no luck.
Paramiko debug is not telling me if I am connected. May see if I can turn
on more debug via sshd.... Oh fun fun fun—
Reply to this email directly or view it on GitHub
#21 (comment)
.
from cassandra_snapshotter.
It is in my todo list :) I need to try just using rsa keys instead of esdsa
from cassandra_snapshotter.
Major edit on the comment. I used a previous version where I was not using sudo, and had less issues.
Crazy question. Do we need to use sudo? Most likely this will run w/o sudo, and is probably more secure, since you cannot overwrite files.
Thanks
Chris
from cassandra_snapshotter.
It's ALIVE!!
sudoers file:
backupuser ALL=(ALL) NOPASSWD:/bin/bash -l -c /usr/bin/nodetool *
backupuser ALL=(ALL) NOPASSWD: /bin/bash -l -c cassandra-snapshotter-agent *
Do we need any other commands?
from cassandra_snapshotter.
I agree, you should not use sudo unless necessary; on the other hand I believe running without sudo would make the use of this tool way more complex for lot of people.
from cassandra_snapshotter.
I am also facing this issue. Running the following command from my local machine
cassandra-snapshotter --s3-bucket-name=<masked> \
--s3-bucket-region=us-east-1 \
--s3-base-path=<masked> \
--aws-access-key-id=<masked> \
--aws-secret-access-key=<masked> \
backup \
--hosts=<masked> \
--user=ubuntu
Here is the error message:
[XX.XX.XX.XX] Executing task 'node_start_backup'
Fatal error: Needed to prompt for a connection or sudo password (host: XX.XX.XX.XX), but input would be ambiguous in parallel mode
Aborting.
Fatal error: One or more hosts failed while executing task 'node_start_backup'
Aborting.
[XX.XX.XX.XX] Executing task 'clear_node_snapshot'
[XX.XX.XX.XX] run: /usr/bin/nodetool clearsnapshot -t "20160331101830"
Fatal error: Needed to prompt for a connection or sudo password (host: XX.XX.XX.XX), but input would be ambiguous in parallel mode
Aborting.
Fatal error: One or more hosts failed while executing task 'clear_node_snapshot'
Aborting.
And have the correct ssh_config setup. Any idea what I might be doing wrong ?
from cassandra_snapshotter.
Related Issues (20)
- undefined symbol: _PyErr_ReplaceException when snapshotting HOT 1
- schema backup fails if cassandra rpc_address is not localhost
- Issues with us-west-2 region for s3 HOT 1
- add support for s3 SIA storage class when uploading to s3
- snapshotter aborting while taking snapshot from a 5 TB 3 node cluster HOT 5
- Outdated README
- issue on ubuntu docker - ImportError: No module named 'fabric.api' HOT 8
- Cassandra incremental backups
- Release Latest Version to PyPI
- us-east-2 region fails
- Failure to backup 30GB keyspace HOT 1
- Is there a way to use the tool without ssh ?
- Is there a way to backup a single datacenter HOT 1
- cassandra_snapshotter fails with ImportError: No module named pkg_resources HOT 3
- Add option to use a tarball folder structure
- KeyError: 'data_file_directories'
- Getting Certificate error when trying to take a backup using cassandra-snapshotter
- i want to use the restore feature, cassandra_snapshotter v1.2.0 available to install ??
- Minio support ?
- AWS Keyspace support
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cassandra_snapshotter.