Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-1425

Support additional NTP servers in install-config for bare metal

XMLWordPrintable

    • Icon: Feature Feature
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • None
    • False
    • Hide

      None

      Show
      None
    • False
    • 50% To Do, 50% In Progress, 0% Done
    • 0
    • 0
    • Program Call

      Feature Overview

      As a user deploying OpenShift on bare metal I want the installer to use the NTP servers that I specify at install time.

      Problem

      When the Ironic pre-provisioning image containing IPA is running, there is no way to sync the clocks to a custom NTP server. This causes issues with certificates - IPA generates a certificate for itself to be valid starting 1 hour in the past (see OCPBUGSM-21571), so if the hardware clock is more than 1 hour ahead of the real time then the certificate will be rejected by Ironic.

      A new field is required in install-config.yaml where the user can specify additional NTP servers that can then be used to set up a chrony config in the IPA ISO. (Potentially this could also be used to automatically generate the MachineConfig manifests to add the same config to the cluster.)

      See initial discussion here: OCPBUGS-22957

       

            racedoro@redhat.com Ramon Acedo
            racedoro@redhat.com Ramon Acedo
            Pedro Jose Amoedo Martinez Pedro Jose Amoedo Martinez
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated: