Veritas Storage Foundation 5.1 SP1 Cluster File System Installation Guide (5900-1510, April 2011)
start_broker=false
enable_pbx=false
4
Back up these input files that you created for the authentication broker on
each node in the cluster.
Note that for security purposes, the command to create the output file for
the encrypted file deletes the input file.
5
For each node in the cluster, create the output file for the encrypted file from
the root broker system using the following command:
RootBroker> # vssat createpkg \
--in /path/to/blob/input/file.txt \
--out /path/to/encrypted/blob/file.txt \
--host_ctx AB-hostname
For example:
venus> # vssat createpkg --in /tmp/galaxy.blob.in \
--out /tmp/galaxy.blob.out --host_ctx galaxy
Note that this command creates an encrypted file even if you provide wrong
password for "password=" entry. But such an encrypted file with wrong
password fails to install on authentication broker node.
6
After you complete creating the output files for the encrypted file, you must
copy these encrypted BLOB files for each node in the cluster.
Preparing the installation system for the security infrastructure
The VCS administrator must gather the required information and prepare the
installation system to configure a cluster in secure mode.
To prepare the installation system for the security infrastructure
◆
Depending on the configuration mode you decided to use, do one of the
following:
Do the following:
■ Gather the root broker system name from the AT
administrator.
■ During SFCFS configuration, choose the configuration option
1 when the installsfcfs prompts.
Automatic mode
81Preparing to configure SFCFS
Preparing to configure the clusters in secure mode