OAT 添加服务器报错 Permission denied

wangsm · 2024 年1 月 25 日 15:51

【使用环境】测试环境
【 OB or 其他组件】
【使用版本】4.2企业版
【问题描述】在OAT 中添加三台服务器，这三台服务器之前已经做好了免密登录，添加服务器是，凭据种类选择的是“已配置免密”，用户类型是“root用户”，提交的时候，报错“Permission denied (publickey,gssapi-keyex,gssapi-with-mic).”
【附件及日志】

[pid: 256|app: 0|req: 7/78] 172.16.16.140 () {46 vars in 947 bytes} [Thu Jan 25 15:35:16 2024] POST /api/v2/servers/batchCreate => generated 457 bytes in 106 msecs (HTTP/1.1 400) 10 headers in 325 bytes (1 switches on core 0)
INFO [2024-01-25 15:35:17,846] [c7114e0cb3b54f5fa56422ae8e0c4b8f] [trace_id.py:42] trace: POST /api/v2/servers/batchCreate with <QueryDict: {}>, {'initTag': ['observer', 'obproduct'], 'adminUser': 'oceanbase', 'adminPassword': 'oceanbase', 'dockerRootDir': '/data/lib_docker', 'adminUidGid': '500:500', 'clockSync': False, 'clockMinpoll': 4, 'clockMaxpoll': 6, 'clockMaxslewrate': 500, 'asChronyServer': False, 'ipList': ['172.16.16.150', '172.16.16.151', '172.16.16.152'], 'sshPort': 22, 'idc': 1, 'credential': 6, 'clockAllow': 'all'}
INFO [2024-01-25 15:35:17,865] [] [shared_conf.py:475] trace: execute command on 172.16.16.150:
a=$(cat /sys/class/dmi/id/product_uuid | awk '{print $1"-OIO"}'| sha1sum | awk '{print $1}'); b=$(cat /etc/.oio_secret); [[ $a = $b && $a != '' ]] && exit 50 || exit 60
INFO [2024-01-25 15:35:17,865] [] [shared_conf.py:475] trace: execute command on 172.16.16.151:
a=$(cat /sys/class/dmi/id/product_uuid | awk '{print $1"-OIO"}'| sha1sum | awk '{print $1}'); b=$(cat /etc/.oio_secret); [[ $a = $b && $a != '' ]] && exit 50 || exit 60
INFO [2024-01-25 15:35:17,866] [] [shared_conf.py:475] trace: execute command on 172.16.16.152:
a=$(cat /sys/class/dmi/id/product_uuid | awk '{print $1"-OIO"}'| sha1sum | awk '{print $1}'); b=$(cat /etc/.oio_secret); [[ $a = $b && $a != '' ]] && exit 50 || exit 60
ERROR [2024-01-25 15:35:17,946] [] [shared_conf.py:417] trace: root@172.16.16.150: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ERROR [2024-01-25 15:35:17,946] [c7114e0cb3b54f5fa56422ae8e0c4b8f] [server.py:586] trace: root@172.16.16.150: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).

ERROR [2024-01-25 15:35:17,947] [] [shared_conf.py:417] trace: root@172.16.16.151: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ERROR [2024-01-25 15:35:17,947] [c7114e0cb3b54f5fa56422ae8e0c4b8f] [server.py:586] trace: root@172.16.16.151: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).

ERROR [2024-01-25 15:35:17,948] [] [shared_conf.py:417] trace: root@172.16.16.152: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ERROR [2024-01-25 15:35:17,949] [c7114e0cb3b54f5fa56422ae8e0c4b8f] [server.py:586] trace: root@172.16.16.152: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).

王利博 · 2024 年1 月 25 日 15:52

你好，你提的这个技术问题牵涉到OceanBase企业版范围内的功能细节。建议你通过以下方式寻求帮助：
1.如你所在的企业客户已签署OceanBase企业版销售合同，请你联系客户经理；
2.如你所在的企业客户尚未签署OceanBase企业版销售合同，你可通过OceanBase官网商务咨询页面留下你的联系方式，OceanBase企业版的业务顾问会在一个工作日内与你联系。
OceanBase官网商务咨询

obpilot · 2024 年1 月 25 日 17:53

看 oat 容器里程序是跑在哪个用户下，打通那个用户到目标服务器的 ssh 信任关系。
然后命令行下测试一下免密登录。
再到 oat 里添加服务器。