Atom feed of this document
  

 调试签名密钥文件错误

如果在打开签名密钥文件时发生了错误,它有可能是运行keystone-manage pki_setup命令来生成证书和密钥的用户不是正确的用户。当你运行命令keystone-manage pki_setup时,身份在/etc/keystone/ssl*中生成一组证书和密钥,它们的属主是 root:root 。

这可以说明一个问题,那就是当你在keystone用户账户下(nologin)运行的身份服务守护进程时,你尝试运行PKI。除非你运行命令 chown 满足了文件属主是 keystone:keystone ,否则运行带有参数--keystone-user--keystone-groupkeystone-manage pki_setup命令,你会得到如下错误:

2012-07-31 11:10:53 ERROR [keystone.common.cms] Error opening signing key file
/etc/keystone/ssl/private/signing_key.pem
140380567730016:error:0200100D:system library:fopen:Permission
denied:bss_file.c:398:fopen('/etc/keystone/ssl/private/signing_key.pem','r')
140380567730016:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:400:
unable to load signing key file
Questions? Discuss on ask.openstack.org
Found an error? Report a bug against this page


loading table of contents...