[one-users] NFS datastore file system
Dmitri Chebotarov
dchebota at gmu.edu
Thu Dec 5 07:12:54 PST 2013
Hi
The host running ONED needs to ssh to all VM hosts using public key (passwordless).
ONED will use ‘oneadmin’ account to access all VM hosts.
B/c /var/lib/one is shared (using NFS) between ONED and all hosts you need to setup public key auth only once for user ‘oneadmin’.
Setup your NFS server/filer, login to ONED controller, mount /var/lib/one, su – oneadmin;
cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
Chmod 600 ~/.ssh/authorized_keys
Now, you can ssh to any host as user ‘oneadmin’ using public key.
Please note, that each host needs /var/lib/one mounted from the same location as other hosts and ONED server.
If you chose to only use NFS for your datastores (I.e. /var/lib/one/datastores/) then you need to add public key on ALL your hosts, not just one.
--
Thank you,
Dmitri Chebotarov
VCL Sys Eng, Engineering & Architectural Support, TSD - Ent Servers & Messaging
223 Aquia Building, Ffx, MSN: 1B5
Phone: (703) 993-6175 | Fax: (703) 993-3404
From: Neelaya Dhatchayani <neels.vani at gmail.com<mailto:neels.vani at gmail.com>>
Date: Tuesday, December 3, 2013 at 23:33
To: Jaime Melis <jmelis at c12g.com<mailto:jmelis at c12g.com>>, opennebula <users at lists.opennebula.org<mailto:users at lists.opennebula.org>>
Subject: Re: [one-users] NFS datastore file system
Hi Jaime,
Thanks......... My doubt is if my frontend is installed in a host called onedaemon, should i ve to ssh passwordless from onedaemon to onedaemon........ sorry if my question is silly..........
regards
neelaya
On Tue, Dec 3, 2013 at 5:23 PM, Jaime Melis <jmelis at c12g.com<mailto:jmelis at c12g.com>> wrote:
Hi,
Please reply to the mailing list as well.
Yes. It is a basic requirement that all the nodes (frontend + hypervisors) should have a oneadmin account, and they should be able to ssh passwordlessly from any node to any other node.
cheers,
Jaime
On Tue, Dec 3, 2013 at 12:39 PM, Neelaya Dhatchayani <neels.vani at gmail.com<mailto:neels.vani at gmail.com>> wrote:
Hi Jaime,
Thanks a lot for your reply. I have one more doubt. Should I have to ssh passwordless to the frontend if I am using ssh transfer manager. I know that it has to be done for the hosts.
neelaya
On Tue, Dec 3, 2013 at 4:51 PM, Jaime Melis <jmelis at c12g.com<mailto:jmelis at c12g.com>> wrote:
Hi Neelaya,
the frontend and the nodes must share /var/lib/one/datastores. Any node can export this share, preferably a NAS system, but if you don't have been, you can export it from the frontend.
cheers,
Jaime
On Tue, Dec 3, 2013 at 12:16 PM, Neelaya Dhatchayani <neels.vani at gmail.com<mailto:neels.vani at gmail.com>> wrote:
Hi
Can anyone tell me what has to be done on the frontend and hosts inorder to use shared transfer driver and with respect to NFS.
Thanks in advance
neelaya
_______________________________________________
Users mailing list
Users at lists.opennebula.org<mailto:Users at lists.opennebula.org>
http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
--
Jaime Melis
C12G Labs - Flexible Enterprise Cloud Made Simple
http://www.c12g.com | jmelis at c12g.com<mailto:jmelis at c12g.com>
--
Confidentiality Warning: The information contained in this e-mail and
any accompanying documents, unless otherwise expressly indicated, is
confidential and privileged, and is intended solely for the person
and/or entity to whom it is addressed (i.e. those identified in the
"To" and "cc" box). They are the property of C12G Labs S.L..
Unauthorized distribution, review, use, disclosure, or copying of this
communication, or any part thereof, is strictly prohibited and may be
unlawful. If you have received this e-mail in error, please notify us
immediately by e-mail at abuse at c12g.com<mailto:abuse at c12g.com> and delete the e-mail and
attachments and any copy from your system. C12G's thanks you for your
cooperation.
--
Jaime Melis
C12G Labs - Flexible Enterprise Cloud Made Simple
http://www.c12g.com | jmelis at c12g.com<mailto:jmelis at c12g.com>
--
Confidentiality Warning: The information contained in this e-mail and
any accompanying documents, unless otherwise expressly indicated, is
confidential and privileged, and is intended solely for the person
and/or entity to whom it is addressed (i.e. those identified in the
"To" and "cc" box). They are the property of C12G Labs S.L..
Unauthorized distribution, review, use, disclosure, or copying of this
communication, or any part thereof, is strictly prohibited and may be
unlawful. If you have received this e-mail in error, please notify us
immediately by e-mail at abuse at c12g.com<mailto:abuse at c12g.com> and delete the e-mail and
attachments and any copy from your system. C12G's thanks you for your
cooperation.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20131205/4f432c45/attachment-0002.htm>
More information about the Users
mailing list