Managing Systems and Workgroups: A Guide for HP-UX System Administrators

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU

171

172

173

174

175

176

177

178

179

180

Conﬁguring a System

Using Distributed Systems Administration Utilities

Chapter 3172

identical across all cluster members. cfengine’s cfkey generates a

public/private key pair for the current system. cfkey creates the ﬁles

localhost.priv and localhost.pub.

cfengine expects keys to be named using the following convention:

username

IP address

.pub

For example:

root-10.0.0.3.pub

The administrator copies the localhost.pub key to the correct name

based on the system’s IP address. For the case of a cluster, the keys

for the current member are used to generate the keys cluster-wide

using the following steps:

1. Use cfkey to create the public and private key pair for this

cluster member:

# mkdir -p /var/opt/dsau/cfengine/ppkeys

# cd /var/opt/dsau/cfengine/ppkeys

# /opt/dsau/sbin/cfkey

This will create keys named localhost.priv and localhost.pub.

2. The public key, localhost.pub is then copied to root-

package

IP address

.pub. For example,

# cp localhost.pub root-10.116.9.74.pub

where 10.116.9.74 is the relocatable IP address of the csync

package.

3. This member’s localhost.pub is then used to create the

member-speciﬁc keys for each member:

# cp localhost.pub root-<member1 IP address>.pub

# cp localhost.pub root-<member2 IP address>.pub

# cp localhost.pub root-<member3 IP address>.pub

...

# cp localhost.pub root-<memberN IP address>.pub

4. Finally, all the keys are copied to each member.

# ccp * /var/opt/dsau/cfengine/ppkeys

Note: ccp, a command-fanout command, performs a cluster copy,

copying a command to all cluster members.