|
|
用普通用户创建port时报错:
6 e, F2 g4 y2 h# q2 u. m* dHttpException: 403: Client Error for url: http://10.11.53.253:9696/v2.0/ports, (rule:create_port and (rule:create_port:fixed_ips and (rule:create_port:fixed_ips:subnet_id and rule:create_port:fixed_ips:ip_address))) is disallowed by policy
9 |) Y+ ^1 |1 ^+ N% @9 [1 b/ c# ~- c3 ]& Z% i
解决办法,使用admin用户的sh文件 source " e: l* j# w5 S; U2 D
创建普通用户需要的网卡,加--project 即可:/ |/ w) r ^- r" [' g
' H4 i, }+ B+ d+ u! u( E[root@controller1 ~]# openstack port create --network 852eb9f2-6541-4fe2-b925-1e26972988c0 ' ' --fixed-ip subnet=391ef077-8613-4f90-add3-73598b9b718b,ip-address=10.11.54.45 --project b9dfdbbca47a45d79b604e409429ed88
9 m" v; f7 D+ r# ~" b9 _. {7 \+-------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------+. a" L4 b" C: f% p; L! L( e7 I
| Field | Value |2 {# l: P% D. e% p2 n
+-------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------+& V: z& d4 B5 u
| admin_state_up | UP |$ p9 d T& W4 p* s5 [2 h, |
| allowed_address_pairs | |
p1 Z8 f" O' D& f( m7 w! Q# e| binding_host_id | |
, c7 S2 x" Y6 ?% M; D| binding_profile | |' C4 ?3 D$ ^* x1 Z/ A/ B+ h" V' v
| binding_vif_details | |
5 }; A/ a8 v* h* F3 @| binding_vif_type | unbound |
' O% z4 H8 ], p/ }/ H- v' [3 o8 n| binding_vnic_type | normal |
. l/ }& u% t% y7 p1 e2 U) {| created_at | 2021-12-03T07:31:14Z |
5 I* G" X, ^+ t$ ^# q& [+ [ u4 t| data_plane_status | None |
/ j1 p! P# b5 f$ F| description | |% U2 n6 y7 E5 e! L4 z, z
| device_id | |3 x/ A& L$ ], ]1 h, ]7 l+ {
| device_owner | |" t7 W& f3 u" R$ y7 E, D
| dns_assignment | None |/ o; {. z; ?) X" j6 m# J" z) \
| dns_domain | None |
: h8 s3 b/ i- |' u# D! a| dns_name | None |
3 |1 C' n: l9 x, _; I, s" S| extra_dhcp_opts | |
% ~- ~- F$ w- r' H4 F| fixed_ips | ip_address='10.11.54.45', subnet_id='391ef077-8613-4f90-add3-73598b9b718b' |" K+ Z8 x$ t3 `+ m% n* B
| id | 05a711c3-1be2-4dcd-ab02-e8e56dcda224 |
$ n" k$ f& {' J| ip_allocation | None |
3 _% F% q% f; T0 |* I: W" {: r| location | cloud='', project.domain_id=, project.domain_name=, project.id='b9dfdbbca47a45d79b604e409429ed88', project.name=, region_name='RegionOne', zone= |0 p t5 h8 I, n$ y y
| mac_address | fa:16:3e:3e:3c:5a |6 t: x1 @3 e5 E9 m# q" q
| name | |& \: E$ S( T& a
| network_id | 852eb9f2-6541-4fe2-b925-1e26972988c0 |1 i0 a: c, R r; P. s! e3 U; X7 [
| port_security_enabled | True |) L9 w; Y8 [! L8 A: P& y* P
| project_id | b9dfdbbca47a45d79b604e409429ed88 |
6 C7 f0 r' J: n- u| propagate_uplink_status | None |8 F* K) I; \; ~( g( P5 y
| qos_network_policy_id | None |( Z4 J- X3 l/ K5 t+ o7 Z& O
| qos_policy_id | None |$ s7 A" y* ^$ \/ }0 Z7 d/ B
| resource_request | None |5 n0 {8 q& k6 x3 {* t1 T8 A+ b
| revision_number | 6 |: `; j9 |' F1 R2 I
| security_group_ids | 99ae289f-b141-4b07-8f64-925edea1c97c |
8 i: Y% x! R) H- o6 y# s# o| status | DOWN |
8 ], I& v4 p# L, O: e6 u% c5 X' N| tags | |
+ m! a# f4 T0 E' S" a| trunk_details | None |
( R+ [/ [3 x: f- S; L| updated_at | 2021-12-03T07:31:14Z |
8 a( _0 h8 G' A4 b: ~, \7 p+-------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------+
2 z% K* q9 y+ f9 S, u; o5 q; F# U# E7 W- R
4 j$ J( C) U4 l |
|
发表于 2021-12-3 15:33:58