From: Sage Weil Date: Wed, 31 Jul 2019 10:10:50 +0000 (-0500) Subject: doc/rados/operations/health-checks: document AUTH_BAD_CAPS X-Git-Tag: v15.1.0~1877^2~5 X-Git-Url: http://git-server-git.apps.pok.os.sepia.ceph.com/?a=commitdiff_plain;h=0eba993fad850ca1666ee138675c4fc459b80404;p=ceph.git doc/rados/operations/health-checks: document AUTH_BAD_CAPS Signed-off-by: Sage Weil --- diff --git a/doc/rados/operations/health-checks.rst b/doc/rados/operations/health-checks.rst index 4238abb9378c..cffc9b4a283b 100644 --- a/doc/rados/operations/health-checks.rst +++ b/doc/rados/operations/health-checks.rst @@ -1054,3 +1054,28 @@ To re-enable telemetry (and make this warning go away),:: To disable telemetry (and make this warning go away),:: ceph telemetry off + +AUTH_BAD_CAPS +_____________ + +One or more auth users has capabilities that cannot be parsed by the +monitor. This generally indicates that the user will not be +authorized to perform any action with one or more daemon types. + +This error is mostly likely to occur after an upgrade if the +capabilities were set with an older version of Ceph that did not +properly validate their syntax, or if the syntax of the capabilities +has changed. + +The user in question can be removed with:: + + ceph auth rm + +(This will resolve the health alert, but obviously clients will not be +able to authenticate as that user.) + +Alternatively, the capabilities for the user can be updated with:: + + ceph auth [ ...] + +For more information about auth capabilities, see :ref:`user-management`.