7cd7022f6e
- Added lock file exclusions for pnpm in .gitignore. - Removed obsolete package-lock.json from the api and portal directories. - Enhanced Cloudflare adapter with additional interfaces for zones and tunnels. - Improved Proxmox adapter error handling and logging for API requests. - Updated Proxmox VM parameters with validation rules in the API schema. - Enhanced documentation for Proxmox VM specifications and examples.
3.8 KiB
3.8 KiB
Proxmox Credentials Verification Status
Date: 2025-12-09
Status: ⚠️ Verification Incomplete
Summary
Proxmox credentials are configured in .env file, but automated verification is encountering authentication failures. Manual verification is recommended.
Configuration Status
Environment Variables
- ✅
.envfile exists - ✅
PROXMOX_ROOT_PASSis set - ✅
PROXMOX_1_PASSis set (derived from PROXMOX_ROOT_PASS) - ✅
PROXMOX_2_PASSis set (derived from PROXMOX_ROOT_PASS) - ⚠️ Default API URLs and usernames used (not explicitly set)
Connectivity
- ✅ Site 1 (192.168.11.10:8006): Reachable
- ✅ Site 2 (192.168.11.11:8006): Reachable
Authentication
- ❌ Site 1: Authentication failing
- ❌ Site 2: Authentication failing
- ⚠️ Error: "authentication failure"
Verification Results
Automated Tests
- API Endpoint Connectivity: ✅ Both sites reachable
- Password Authentication: ❌ Failing for both sites
- Username Formats Tested:
root- Failedroot@pam- Failedroot@pve- Not tested
Possible Causes
- Incorrect Password: Password in
.envmay not match actual Proxmox password - Username Format: May require specific realm format
- Special Characters: Password contains
@which may need encoding - API Restrictions: API access may be restricted or require tokens
- 2FA Enabled: Two-factor authentication may be required
Recommended Actions
Option 1: Manual Verification via Web UI
- Access Proxmox Web UI: https://192.168.11.10:8006
- Log in with credentials from
.env - Verify login works
- Check Datacenter → Summary for resources
- Document findings
Option 2: Use API Tokens
- Log into Proxmox Web UI
- Navigate to: Datacenter → Permissions → API Tokens
- Create new token:
- Token ID:
crossplane-site1 - User:
root@pam - Expiration: Set as needed
- Token ID:
- Copy token secret
- Update
.env:PROXMOX_1_API_TOKEN=your-token-secret PROXMOX_1_API_TOKEN_ID=crossplane-site1@root@pam!crossplane-site1
Option 3: Use SSH Access
If SSH is available:
# Test SSH
ssh root@192.168.11.10 "pvesh get /nodes/ml110-01/status"
# Get resource info
ssh root@192.168.11.10 "nproc && free -g && pvesm status"
Option 4: Verify Password Correctness
- Test password via Web UI login
- If password is incorrect, update
.envfile - Re-run verification script
Next Steps
Immediate
-
Manual Verification: Log into Proxmox Web UI and verify:
- Password is correct
- Resources are available
- API access is enabled
-
Choose Authentication Method:
- Fix password authentication
- Switch to API tokens
- Use SSH-based scripts
-
Update Configuration:
- Fix
.envfile if needed - Or create API tokens
- Test authentication again
- Fix
For Deployment
Once authentication is working:
- Re-run resource quota check
- Verify resources meet requirements
- Proceed with deployment
Resource Requirements Reminder
Total Required
- CPU: 72 cores
- RAM: 140 GiB
- Disk: 278 GiB
Manual Check Template
When verifying via Web UI, check:
- Total CPU cores available
- Total RAM available
- Storage pool space (local-lvm, ceph-fs, ceph-rbd)
- Current VM resource usage
Troubleshooting
If Password Authentication Fails
- Verify password via Web UI
- Check for 2FA requirements
- Try API tokens instead
If API Tokens Don't Work
- Verify token permissions
- Check token expiration
- Verify token ID format
If SSH Doesn't Work
- Verify SSH access is enabled
- Check SSH key or password
- Verify network connectivity
Last Updated: 2025-12-09
Action Required: Manual verification of Proxmox credentials and resources