Managing Systems and Workgroups: A Guide for HP-UX System Administrators
Administering a System: Managing System Security
Configuring NFS Diskless Clusters for Trusted Systems
Chapter 8810
Configuring NFS Diskless Clusters for Trusted
Systems
NOTE NFS diskless is not supported in HP-UX 10.30 and later releases.
NFS diskless clusters on Trusted Systems come in two basic
configurations.
1. Each member of the cluster has its own private password database,
or
2. A single password database is shared across the entire cluster.
The choice of configuration is made when the first client is added to the
cluster.
Choice 1: Clusters with Private Password Databases
In this configuration, each member of the cluster behaves as if it was a
standalone system. Each member of the cluster can be either trusted or
nontrusted, independent of the state of the other members of the cluster.
Any security administration must be done on the cluster member where
the changes are desired. If it is desired to make a security administration
change to each member of the cluster, the change must be manually
repeated on each cluster member.
There are two possible routes that may be taken in creating a trusted
cluster. In the first case, you have an existing cluster of nontrusted
systems that you wish to convert to trusted status. In the second case,
you have an existing, trusted, standalone system and you wish to make a
cluster out of it.
Converting a Nontrusted Cluster to a Trusted Cluster
You must convert each cluster node individually. The procedure must be
performed on the specific node that is to be converted. You can convert
using SAM. To use SAM, select Auditing and Security at the top level
menu and then select any choice in the second level menu. You will then
be asked if you wish to convert the system to trusted status. Answer yes.