What is the best practice for CephFS in VMs?

darin755

New Member
Apr 18, 2024
9
1
3
I am looking to let Proxmox manage Ceph so that I can mount CephFS in a bunch of VM's. However, I don't know what the best practice is for authorization. I would like to follow least privilege so that a VM only has r/w access to CephFS.

How would I generate a key that only has access to one FS? Is there anything I should keep in mind?

I am mostly looking to do this to learn ceph.
 
How would I generate a key that only has access to one FS? Is there anything I should keep in mind?
https://docs.ceph.com/en/latest/rados/operations/user-management/

read, understand, and you'll have all the tools to do what you're after. The only pointer I can give you is unrelated to auth, but networking- make sure to deploy your cluster with seperate public and private networks, and use a vmbr for the public networks (at least for nodes service your virtual machines.)
 
  • Like
Reactions: LnxBil