It is possible to run a ceph cluster over a WAN if you have reliable
enough WAN with sites close enough for low-ish latency. The OSiRIS
project is architected that way with Ceph services spread evenly
across three university sites in Michigan. There's more information
and contact on their website
You can setup a custom SELinux module to enable access. We use the
following snippet to allow sshd to access authorized keys in home
directories on CephFS:
module local-ceph-ssh-auth 1.0;
require {
type cephfs_t;
type sshd_t;
class file { read getattr open };
}
#
We have had success using Foreman to deploy OS in various roles across
multiple sites. It can also spin up VM on various infrastructure as
part of that process. Foreman essentially generates whatever type of
'kickstart' your OS requires on the fly and boots nodes via the
network. It's a fairly
Hi Oliver,
The ceph-osd RPM packages include a config in
/etc/sudoers.d/ceph-osd-smartctl that looks something like this:
ceph ALL=NOPASSWD: /usr/sbin/smartctl -a --json /dev/*
ceph ALL=NOPASSWD: /usr/sbin/nvme * smart-log-add --json /dev/*
If you are using SElinux you will have to adjust capabil
