客户日志:
10.41.11.3 Authorization Error:
10.41.11.3 --------------------
10.41.11.3 Your validation client is not authorized to create the client for this node (HTTP 403).
10.41.11.3
10.41.11.3 Possible Causes:
10.41.11.3 ----------------
10.41.11.3 * There may already be a client named "chef02"
10.41.11.3 * Your validation client (chef1-validator) may have misconfigured authorization permissions.
10.41.11.3 [2014-10-24T10:02:50+08:00] FATAL: Stacktrace dumped to /var/chef/cac
he/chef-stacktrace.out
10.41.11.3 Chef Client failed. 0 resources updated in 0.739747653 seconds
10.41.11.3 [2014-10-24T10:02:50+08:00] ERROR: 403 "Forbidden"
10.41.11.3 [2014-10-24T10:02:50+08:00] FATAL: Chef::Exceptions::ChildConvergeErr
or: Chef run process exited unsuccessfully (exit code 1)
我已确认没有名为" chef02"存在,但我仍然坚持可能需要解决的授权权限。
答案 0 :(得分:0)
当Chef 12引入ACL时,客户端(https://github.com/chef/chef-server/issues/63)可能会遇到一些问题:
我遇到同样的问题,我用这个命令解决了这个问题:
knife acl bulk add group clients nodes '.*' update,read
(https://github.com/chef/chef-server/issues/63#issuecomment-137766205)
首先通过issue命令安装knife acl插件:
chef gem install knife-acl