<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252">
</head>
<body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif;">
<div>
<div>Hi</div>
<div><br>
</div>
<div>The host running ONED needs to ssh to all VM hosts using public key (passwordless).</div>
<div>ONED will use ‘oneadmin’ account to access all VM hosts.</div>
<div>B/c /var/lib/one is shared (using NFS) between ONED and all hosts you need to setup public key auth only once for user ‘oneadmin’.</div>
<div><br>
</div>
<div>Setup your NFS server/filer, login to ONED controller, mount /var/lib/one, su – oneadmin;</div>
<div><br>
</div>
<div>cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys</div>
<div>Chmod 600 ~/.ssh/authorized_keys</div>
<div><br>
</div>
<div>Now, you can ssh to any host as user ‘oneadmin’ using public key.</div>
<div>Please note, that each host needs /var/lib/one mounted from the same location as other hosts and ONED server.</div>
<div><br>
</div>
<div>If you chose to only use NFS for your datastores (I.e. /var/lib/one/datastores/) then you need to add public key on ALL your hosts, not just one.</div>
<div>--<br>
Thank you,<br>
<br>
Dmitri Chebotarov<br>
VCL Sys Eng, Engineering & Architectural Support, TSD - Ent Servers & Messaging<br>
223 Aquia Building, Ffx, MSN: 1B5<br>
Phone: (703) 993-6175 | Fax: (703) 993-3404<br style="font-family: Helvetica; font-size: medium; ">
<br style="font-family: Helvetica; font-size: medium; ">
</div>
</div>
<div><br>
</div>
<span id="OLK_SRC_BODY_SECTION">
<div style="font-family:Calibri; font-size:11pt; text-align:left; color:black; BORDER-BOTTOM: medium none; BORDER-LEFT: medium none; PADDING-BOTTOM: 0in; PADDING-LEFT: 0in; PADDING-RIGHT: 0in; BORDER-TOP: #b5c4df 1pt solid; BORDER-RIGHT: medium none; PADDING-TOP: 3pt">
<span style="font-weight:bold">From: </span>Neelaya Dhatchayani <<a href="mailto:neels.vani@gmail.com">neels.vani@gmail.com</a>><br>
<span style="font-weight:bold">Date: </span>Tuesday, December 3, 2013 at 23:33 <br>
<span style="font-weight:bold">To: </span>Jaime Melis <<a href="mailto:jmelis@c12g.com">jmelis@c12g.com</a>>, opennebula <<a href="mailto:users@lists.opennebula.org">users@lists.opennebula.org</a>><br>
<span style="font-weight:bold">Subject: </span>Re: [one-users] NFS datastore file system<br>
</div>
<div><br>
</div>
<div>
<div>
<div dir="ltr">
<div>
<div>
<div>Hi Jaime,<br>
<br>
</div>
Thanks......... My doubt is if my frontend is installed in a host called onedaemon, should i ve to ssh passwordless from onedaemon to onedaemon........ sorry if my question is silly..........<br>
<br>
</div>
regards<br>
</div>
neelaya<br>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Tue, Dec 3, 2013 at 5:23 PM, Jaime Melis <span dir="ltr">
<<a href="mailto:jmelis@c12g.com" target="_blank">jmelis@c12g.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">
<div>Hi,</div>
<div><br>
</div>
<div>Please reply to the mailing list as well.<br>
</div>
<div><br>
</div>
Yes. It is a basic requirement that all the nodes (frontend + hypervisors) should have a oneadmin account, and they should be able to ssh passwordlessly from any node to any other node.
<div><br>
</div>
<div>cheers,<br>
Jaime</div>
<div><br>
</div>
</div>
<div class="HOEnZb">
<div class="h5">
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Tue, Dec 3, 2013 at 12:39 PM, Neelaya Dhatchayani <span dir="ltr">
<<a href="mailto:neels.vani@gmail.com" target="_blank">neels.vani@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">
<div>
<div>Hi Jaime,<br>
<br>
</div>
Thanks a lot for your reply. I have one more doubt. Should I have to ssh passwordless to the frontend if I am using ssh transfer manager. I know that it has to be done for the hosts.<span><font color="#888888"><br>
<br>
</font></span></div>
<span><font color="#888888">neelaya<br>
<div><br>
<br>
</div>
</font></span></div>
<div>
<div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">On Tue, Dec 3, 2013 at 4:51 PM, Jaime Melis <span dir="ltr">
<<a href="mailto:jmelis@c12g.com" target="_blank">jmelis@c12g.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">Hi Neelaya,
<div><br>
</div>
<div>the frontend and the nodes must share /var/lib/one/datastores. Any node can export this share, preferably a NAS system, but if you don't have been, you can export it from the frontend.</div>
<div><br>
</div>
<div>cheers,<br>
Jaime</div>
</div>
<div class="gmail_extra"><br>
<br>
<div class="gmail_quote">
<div>
<div>On Tue, Dec 3, 2013 at 12:16 PM, Neelaya Dhatchayani <span dir="ltr"><<a href="mailto:neels.vani@gmail.com" target="_blank">neels.vani@gmail.com</a>></span> wrote:<br>
</div>
</div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
<div>
<div dir="ltr">
<div>
<div>
<div>Hi<br>
<br>
</div>
Can anyone tell me what has to be done on the frontend and hosts inorder to use shared transfer driver and with respect to NFS.
<br>
<br>
</div>
Thanks in advance<span><font color="#888888"><br>
</font></span></div>
<span><font color="#888888">neelaya<br>
</font></span></div>
<br>
</div>
</div>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opennebula.org" target="_blank">Users@lists.opennebula.org</a><br>
<a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>
<br>
</blockquote>
</div>
<br>
</div>
<br clear="all">
<div><br>
</div>
-- <br>
<div dir="ltr">Jaime Melis<br>
C12G Labs - Flexible Enterprise Cloud Made Simple<br>
<a href="http://www.c12g.com" target="_blank">http://www.c12g.com</a> | <a href="mailto:jmelis@c12g.com" target="_blank">
jmelis@c12g.com</a><br>
<div><br>
</div>
<div>--</div>
<div><br>
</div>
<div>Confidentiality Warning: The information contained in this e-mail and</div>
<div>any accompanying documents, unless otherwise expressly indicated, is</div>
<div>confidential and privileged, and is intended solely for the person</div>
<div>and/or entity to whom it is addressed (i.e. those identified in the</div>
<div>"To" and "cc" box). They are the property of C12G Labs S.L..</div>
<div>Unauthorized distribution, review, use, disclosure, or copying of this</div>
<div>communication, or any part thereof, is strictly prohibited and may be</div>
<div>unlawful. If you have received this e-mail in error, please notify us</div>
<div>immediately by e-mail at <a href="mailto:abuse@c12g.com" target="_blank">abuse@c12g.com</a> and delete the e-mail and</div>
<div>attachments and any copy from your system. C12G's thanks you for your</div>
<div>cooperation.</div>
</div>
</blockquote>
</div>
<br>
</div>
</div>
</div>
</blockquote>
</div>
<br>
<br clear="all">
<div><br>
</div>
-- <br>
<div dir="ltr">Jaime Melis<br>
C12G Labs - Flexible Enterprise Cloud Made Simple<br>
<a href="http://www.c12g.com" target="_blank">http://www.c12g.com</a> | <a href="mailto:jmelis@c12g.com" target="_blank">
jmelis@c12g.com</a><br>
<div><br>
</div>
<div>--</div>
<div><br>
</div>
<div>Confidentiality Warning: The information contained in this e-mail and</div>
<div>any accompanying documents, unless otherwise expressly indicated, is</div>
<div>confidential and privileged, and is intended solely for the person</div>
<div>and/or entity to whom it is addressed (i.e. those identified in the</div>
<div>"To" and "cc" box). They are the property of C12G Labs S.L..</div>
<div>Unauthorized distribution, review, use, disclosure, or copying of this</div>
<div>communication, or any part thereof, is strictly prohibited and may be</div>
<div>unlawful. If you have received this e-mail in error, please notify us</div>
<div>immediately by e-mail at <a href="mailto:abuse@c12g.com" target="_blank">abuse@c12g.com</a> and delete the e-mail and</div>
<div>attachments and any copy from your system. C12G's thanks you for your</div>
<div>cooperation.</div>
</div>
</div>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</div>
</div>
</span>
</body>
</html>