No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Building Trust Relationship between Active and Standby Node for CBP

Publication Date:  2012-07-25 Views:  68 Downloads:  0
Issue Description
Completed pre-installation and on each server blades, which consist of active and standby node for each CBP involved the system.

Problem:
Active node and Standby node is limited access into each environment unless, username and password is provided if user want to access standby node server from active node server.
Alarm Information
NIL
Handling Process
NIL
Root Cause
Trust Relationship is not added in active and standby nodes.
Suggestions

To installed Trust Relationship on the server, the following steps is follwed:

1. Create SSH key on active node
     # ssh-keygen -t dsa

2. Change file permission on active node
     # chmod 755 ~/.ssh

3. Copy the id_dsa.pub file content on the local host to $HOME/.ssh/authorized_keys2.
     # cd $HOME/.ssh
     # cp id_dsa.pub $HOME/.ssh/authorized_keys2 ---### executed in active node

4. Create SSH key on standbay node
     #  ssh-keygen -t dsa

5. copy authorized_keys2 to standbay node---execute in active node
     # scp authorized_keys2 root@10.9.160.100:$HOME/.ssh
                                                             <standby ip>
6. copy content in id_dsa.pub to authorized_keys2--in standby node
     #cd $HOME/.ssh
     # cat id_dsa.pub >> $HOME/.ssh/authorized_keys2
     # vi authorized_keys2

7. copy authorized_keys2 to active node--- exe in sytandby node
     # scp authorized_keys2 root@10.9.160.99:$HOME/.ssh
                                                              <active ip>
8. Add the passphrase to the memory of the active and standby nodes
    # exec /usr/bin/ssh-agent $SHELL

9. Add passphrase to the memory of active and standby node
   # ssh-add

10. The following information is displayed:
       Identity added: /root/.ssh/id_dsa (/root/.ssh/id_dsa)

11. Check whether the trust relationship is built. if the below command not ask password is mean the trust relationship is success.ssh-add
      #ssh <server name>
      #ssh <server name>


 


END