Manualshelf

Managing Systems and Workgroups: A Guide for HP-UX System Administrators

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU
161162163164165166167168169170
Configuring a System
Using Distributed Systems Administration Utilities
Chapter 3 161
2. The appropriate cfengine public/private keys are created for the
new member and placed in the members
/var/opt/dsau/cfengine/ppkeys directory. The new keys for
this member are also distributed to the
/var/opt/dsau/cfengine/ppkeys directories on the other
cluster members.
3. The new member’s /var/opt/dsau/cfengine/inputs directory
is populated.
4. cfservd is started on the new member.
5. The package files are copied to /etc/cmcluster/csync/ on the
new member.
6. A cfagent synchronization run is performed on the master to
populate the master’s /var/opt/dsau/cfengine/inputs
directory.
7. A cfagent synchronization run is performed on the remote
client.
When deleting a member from a cluster, the public key of the deleted
member is deleted from the /var/opt/dsau/cfengine/ppkeys
directory clusterwide.
Note that the administrator can define cfengine groups or classes that
enumerate all the members of a particular Serviceguard cluster. These
class definitions will not be updated automatically and the administrator
must manually update the cfagent.conf and related files for cluster
membership changes.
Configuring a Synchronization Client You can use the
Configuration Synchronization Wizard to add managed clients to an
existing cfengine configuration. Run the wizard on the master server, not
the client system. When a Serviceguard cluster is the master server, run
the wizard on the adoptive node for the csync package. Note that adding
a new cluster member in a High Availability setup as a client is done
automatically. For more information, see the “Serviceguard Automation
Features” on page 160.
Also, in order to securely distribute cfengine keys, the client must be
configured for non-interactive ssh access by the root account of the
master server. The csshsetup tool (see csshsetup (1)) makes it easy to
configure ssh access to a remote system. That tool is used in the
examples below.