Cluster join with 2FA (oath)

R

roosei

Renowned Member
Nov 3, 2016
12
0
66
43
Prague, Czech Republic
www.nux.cz
Hello,

is any way how to add node to cluster, if root account is secured with 2FA?

Code: 
pvecm add 172.16.0.1 -ring0_addr node2-corosync
...
401 401 authentication failure

In log:

Code: 
node1 pvedaemon[26149]: authentication failure; rhost=172.16.0.254 user=root@pam msg=missing one time password for two-factor authentication 'oath'
 
Last edited:
Great, it works. Now it hangs during adding on "waiting for quorum..." message, with

Code: 
May 29 16:38:01 node5 pvesr[8476]: error with cfs lock 'file-replication_cfg': no quorum!

but it's probably different issue.

Thank you!
 
hi there,
I'm trying the same, cluster root accounts secured with 2FA, on GUI when I try to join cluster with another node I get error that 2FA enabled unable to join.
I can see the work around in this post, but was the issue described by @roosei independent or related to the 2FA?

Don't wanna start the process without been sure no issue will occur.

Thank you
 
ok, tried via CLI using pvecm add <target ip> -link0 <source ip>
Worked perfectly.
 
You must log in or register to reply here.
Top Bottom