Hi,
to me it seems like it's not available yet. Looking at [0], there is a
section to update the exporter:
security_enabled, _, _ = self.mgr._get_security_config()
if security_enabled:
exporter_config.update({'https_enabled': True})
tls_creds = self.get_certificates(daemon_spec)
exporter_config['files'] = {
'ceph-exporter.crt': tls_creds.cert,
'ceph-exporter.key': tls_creds.key
}
But I don't see this section neither in current Tentacle [1] nor in
current Squid [2]. Tentacle does already support setting a cert and
key file, but apparently not enabling https:
tentacle:~ # ceph config ls | grep exporter
exporter_sock_dir
exporter_addr
exporter_http_port
exporter_cert_file
exporter_key_file
exporter_prio_limit
exporter_stats_period
exporter_sort_metrics
But I'm not a dev, so take that with a grain of salt.
Regards,
Eugen
[0]
https://github.com/ceph/ceph/blob/1ef2745047383fbb712b9494e125b2a312fa2f39/src/pybind/mgr/cephadm/services/cephadmservice.py#L1733
[1]
https://github.com/ceph/ceph/blob/v20.2.0/src/pybind/mgr/cephadm/services/cephadmservice.py
[2]
https://github.com/ceph/ceph/blob/v19.2.3/src/pybind/mgr/cephadm/services/cephadmservice.py
Zitat von "Maintz, Thomas via ceph-users" <[email protected]>:
Hello everyone,
We deployed the monitoring stack with Grafana and Prometheus via
cephadm and set “mgr/cephadm/secure_monitoring_stack true.”
To get the OSD latencies into the dashboard, we deployed the
ceph-exporter on the hosts.
However, due to the secure_monitoring_stack, Prometheus tries to
access the Ceph Exporter via https, as the schema has been set to
https by cephadm.
The Ceph exporter can be accessed locally via http with curl, but
not via https.
If I manually configure the schema for the Ceph exporter to http in
prometheus.yml and restart the service, I get the data correctly.
However, a redeploy overwrites my change.
Can someone tell me how to either configure the Ceph-exporter to
respond to https or tell Prometheus to only access the Ceph exporter
via http? Unfortunately, there is no documentation on this.
Best regards and many thanks in advance.
Thomas Maintz
---------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------
Forschungszentrum Jülich GmbH
52425 Jülich
Sitz der Gesellschaft: Jülich
Eingetragen im Handelsregister des Amtsgerichts Düren Nr. HR B 3498
Vorsitzender des Aufsichtsrats: MinDir Stefan Müller
Geschäftsführung: Prof. Dr. Astrid Lambrecht (Vorsitzende),
Dr. Stephanie Bauer (stellvertretende Vorsitzende),
Prof. Dr. Ir. Pieter Jansens, Prof. Dr. Laurens Kuipers
---------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------
_______________________________________________
ceph-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
