pcs fails with "Error: Unable to authenticate against the local pcsd" when run by a non-root user who has been granted Pacemaker ACLs

Solution Verified - Updated -

Issue

  • I gave a user account read permissions to the CIB via Pacemaker ACLs. But when they try to run pcs status, they get the error shown below.
# pcs acl
ACLs are enabled

User: testuser3
  Roles: read-only
Role: read-only
  Description: Read access to cluster
  Permission: read xpath /cib (read-only-read)

# su - testuser3
Last login: Thu Mar  4 11:47:44 PST 2021 on pts/0
[testuser3@fastvm-rhel-8-0-23 ~]$ pcs status
Warning: Unable to read the known-hosts file: No such file or directory: '/home/testuser3/.pcs/known-hosts'
Error: Unable to authenticate against the local pcsd. Run the same command as root or authenticate yourself to the local pcsd using command 'pcs client local-auth'

Environment

  • Red Hat Enterprise Linux 8 (with the High Availability Add-on)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content