How To Configure SSH for a RAC Installation [ID 300548.1]
来源:互联网 发布:js 定时移动鼠标 编辑:程序博客网 时间:2024/05/18 22:40
How To Configure SSH for a RAC Installation [ID 300548.1]
In this Document
Goal
Solution
Scalability RAC Community
References
Applies to:
Oracle Server - Enterprise Edition - Version: 10.1.0.2 to 11.2.0.1.0 - Release: 10.1 to 11.2Oracle Server - Enterprise Edition - Version: 10.1.0.2 to 11.2.0.1.0 [Release: 10.1 to 11.2]
Information in this document applies to any platform.
Reviewed 22-Oct-2008
Goal
This document will explain how to configure SSH, which is required to run a RAC installation. Following the instructions in the installation guide are also correct, but sometimes this will not work, although the reason for that isn't clear. Therefore after some investigation it seems to be that the steps below will work too.
Starting with 11gR2 the Oracle Universal Installer the ssh setup can be done by using the 'SSH Connectivity' button.
Solution
To configure SSH you need to perform the following steps on each node in the cluster.
$ cd $HOME
$ mkdir .ssh
$ chmod 700 .ssh
$ cd .ssh
$ ssh-keygen -t rsa
Now accept the default location for the key file
Enter and confirm a passphrase. (you can also press enter twice).
$ ssh-keygen -t dsa
Now accept the default location for the key file
Enter and confirm a passphrase. (you can also press enter twice).
$ cat *.pub >> authorized_keys.<nodeX> (nodeX could be the nodename to differentiate files later)
Now do the same steps on the other nodes in the cluster.
When all those steps are done on the other nodes, start to copy the authorized_keys.<nodeX> to all the nodes into $HOME/.ssh/
For example if you have 4 nodes you will have after the copy in the .ssh 4 files with the name authorized_keys.<nodeX>
Then on EACH node continue the configuration of SSH by doing the following:
$ cd $HOME/.ssh
$ cat *.node* >> authorized_keys
$ chmod 600 authorized_keys
NOTE: ALL public keys must appear in ALL authorized_keys files, INCLUDING the LOCAL public key for each node.
To test that everything is working correct now execute the commands
$ ssh <hostnameX> date
So on example in a 4 node environment:
$ ssh node1 date
$ ssh node2 date
$ ssh node3 date
$ ssh node4 date
Repeat this 4 times on each node, including ssh back to the node itself. The nodeX is the hostname of the node.
The first time you will be asked to add the node to a file called 'known_hosts' this is correct and answer the question with 'yes'. After that when correctly configured you must be able to get the date returned and you will not be prompted for a password.
Note: the above will work if during RSA and DSA configuration no password was provided. If you provide a password then you need to do 2 addition steps.
$ exec /usr/bin/ssh-agent $SHELL
$ /usr/bin/ssh-add
These statements will inform the ssh agent to add the keys to the shell used. So when a new shell is started you need to repeat the last to statements to make sure ssh is working properly.
ssh will not allow passwordless access if permissions on the home directory of the account you are using allow write access for everyone.
You will also see permission denied error when the permissions on $HOME are 777 or 775.
Disable banner (/etc/banner) on all cluster nodes when you
- run clusterverify (cluvfy, runcluvfy)
- install software
- patch the system
Please work with your System Administrator or contact your Operating System support in case you still have problems setting up ssh.
Scalability RAC Community
To discuss this topic further with Oracle experts and industry peers, we encourage you to review, join or start a discussion in the My Oracle Support Scalability RAC Community.References
NOTE:264063.1 - Public node is not available and PRKC-1044 Reported by OUI Cluster Configuration- How To Configure SSH for a RAC Installation [ID 300548.1]
- HOW TO configure a website for HTTPS?
- How to cleanup ASM installation (RAC and Non-RAC) [ID 311350.1]
- How to use ASMCA in silent mode to configure ASM for a stand-alone server [ID 1068788.1]
- How to cleanup ASM installation (RAC and Non-RAC)
- How to configure XDB for using ftp and http protocols with ASM [ID 357714.1]
- How to configure XDB for using ftp and http protocols with ASM [ID 357714.1]
- Linux: How to Configure the DNS Server for 11gR2 SCAN [ID 1107295.1]
- Linux: How to Configure the DNS Server for 11gR2 SCAN (Doc ID 1107295.1)
- How To Configure Client Failover For Dataguard Connections Using Database Services (Doc ID 1429223.1
- What is a Flash Recovery Area and how to configure it ? (文档 ID 305648.1)
- What is a Flash Recovery Area and how to configure it ? (文档 ID 305648.1)
- How to configure IPMI to work with Oracle RAC
- How to Validate Network and Name Resolution Setup for the Clusterware and RAC (Doc ID 1054902.1)
- How to manage DB Control 11.x for RAC Database with emca (文档 ID 578011.1)
- How to Change ASM Home on a Node in RAC [ID 558508.1]
- How to configure the network for Linux
- How to Configure Eclipse for Python
- expdp直接导出文件到NFS共享的挂载目录,报错ORA-27086: unable to lock file - already in use
- extjs表格grid功能详解
- Project 2013新报表功能
- Android测试教程
- 用mysql+redis实现微博feed架构上需要注意哪些问题
- How To Configure SSH for a RAC Installation [ID 300548.1]
- dlna简介
- IE9的奋起反击
- ISE中如何将自己的verilog源代码.v或VHDL源代码.vhd封装打包成IP核?
- nyoj 349&poj 1094 Sorting It All Out(拓扑排序)
- Android应用程序与SurfaceFlinger服务的关系概述和学习计划
- (转)VC++ 外壳扩展编程之windows右键菜单
- Eclipse快捷键大全
- UIImagePickerController Class