No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Building Trust Relationship between Active and Standby Node for CBP

Publication Date:  2012-07-25 Views:  217 Downloads:  0

Issue Description

Completed pre-installation and on each server blades, which consist of active and standby node for each CBP involved the system.

Active node and Standby node is limited access into each environment unless, username and password is provided if user want to access standby node server from active node server.

Alarm Information


Handling Process


Root Cause

Trust Relationship is not added in active and standby nodes.


To installed Trust Relationship on the server, the following steps is follwed:

1. Create SSH key on active node
     # ssh-keygen -t dsa

2. Change file permission on active node
     # chmod 755 ~/.ssh

3. Copy the file content on the local host to $HOME/.ssh/authorized_keys2.
     # cd $HOME/.ssh
     # cp $HOME/.ssh/authorized_keys2 ---### executed in active node

4. Create SSH key on standbay node
     #  ssh-keygen -t dsa

5. copy authorized_keys2 to standbay node---execute in active node
     # scp authorized_keys2 root@$HOME/.ssh
                                                             <standby ip>
6. copy content in to authorized_keys2--in standby node
     #cd $HOME/.ssh
     # cat >> $HOME/.ssh/authorized_keys2
     # vi authorized_keys2

7. copy authorized_keys2 to active node--- exe in sytandby node
     # scp authorized_keys2 root@$HOME/.ssh
                                                              <active ip>
8. Add the passphrase to the memory of the active and standby nodes
    # exec /usr/bin/ssh-agent $SHELL

9. Add passphrase to the memory of active and standby node
   # ssh-add

10. The following information is displayed:
       Identity added: /root/.ssh/id_dsa (/root/.ssh/id_dsa)

11. Check whether the trust relationship is built. if the below command not ask password is mean the trust relationship is success.ssh-add
      #ssh <server name>
      #ssh <server name>