Manuals / IBM / Computer Equipment / Laptop

IBM SG24-5131-00 manual User ID Planning, Cluster User and Group IDs

Models: SG24-5131-00

1 240

Download 240 pages 48.89 Kb

Page 66

2.7 User ID Planning

The following sections describe various aspects of User ID Planning.

2.7.1 Cluster User and Group IDs

One of the basic tasks any system administrator must perform is setting up user accounts and groups. All users require accounts to gain access to the system. Every user account must belong to a group. Groups provide an additional level of security and allow system administrators to manipulate a group of users as a single entity.

For users of an HACMP for AIX cluster, system administrators must create duplicate accounts on each cluster node. The user account information stored in the /etc/passwd file, and in other files stored in the /etc/security directory, should be consistent on all cluster nodes. For example, if a cluster node fails, users should be able to log on to the surviving nodes without experiencing problems caused by mismatches in the user or group IDs.

System administrators typically keep user accounts synchronized across cluster nodes by copying the key system account and security files to all cluster nodes whenever a new account is created or an existing account is changed.Typically rdist or rcp is used, for that. On RS/6000 SP systems pcp or supper are widely used. For C-SPOC clusters, the C-SPOC utility simplifies the cluster-wide synchronization of user accounts by propagating the new account or changes to an existing account across all cluster nodes automatically.

The following are some common user and group management tasks, and are briefly explained in 8.8, “User Management” on page 178:

•Listing all user accounts on all cluster nodes

•Adding users to all cluster nodes

•Changing characteristics of a user account on all cluster nodes

•Removing a user account from all cluster nodes.

•Listing all groups on all cluster nodes

•Adding groups to all cluster nodes

•Changing characteristics of a group on all cluster nodes

•Removing a group from all cluster nodes

48 IBM Certification Study Guide AIX HACMP

Image 66

IBM SG24-5131-00 manual User ID Planning, Cluster User and Group IDs

Contents

AIX Hacmp Page AIX Hacmp Take Note Contents Iv IBM Certification Study Guide AIX Hacmp Page Vi IBM Certification Study Guide AIX Hacmp Appendix A. Special Notices ViiViii IBM Certification Study Guide AIX Hacmp Figures IBM Certification Study Guide AIX Hacmp Tables Xii IBM Certification Study Guide AIX Hacmp Preface XiiiTeam That Wrote This Redbook Comments Welcome Your comments are important to usXvi IBM Certification Study Guide AIX Hacmp Certification Requirement two Tests Certification OverviewIBM Certified Specialist AIX Hacmp Recommended PrerequisitesPreinstallation Certification Exam ObjectivesHacmp Implementation System Management Certification Education Courses Following table outlines information about the next course IBM Certification Study Guide AIX Hacmp Cluster Planning Cluster NodesCPU Options Cluster Node Considerations Cluster Planning Switch adapter is onboard and does not need an extra slot Cluster Networks 1 TCP/IP NetworksSupported TCP/IP Network Types Slip Socc Special Network ConsiderationsCluster Planning Non-TCPIP Networks Supported Non-TCP/IP Network TypesSpecial Considerations Serial RS232Target-mode Scsi Cluster DisksSSA Disks Target-mode SSAHost Specification Disk Capacities 1.2 Supported and Non-Supported AdaptersRules for SSA Loops Cluster Planning RAID vs. Non-RAID RAID Technology RAID LevelRAID Levels 2 RAID on the 7133 Disk Subsystem Advantages Scsi Disks DisksSubsystems Advantages Disadvantages Resource Planning Resource Group OptionsCluster Planning Hot-Standby Configuration Shared LVM ComponentsRotating Standby Configuration Hot-Standby ConfigurationMutual Takeover Configuration Mutual Takeover ConfigurationThird-Party Takeover Configuration Third-Party Takeover ConfigurationConcurrent Disk Access Configurations IP Address TakeoverNetwork Topology Single NetworkDual Network Point-to-Point ConnectionNetworks Network NameNetwork Attribute Network Adapters Adapter LabelAdapter Function Cluster Planning Defining Hardware Addresses NFS Exports and NFS Mounts Application PlanningPerformance Requirements Application Startup and Shutdown RoutinesLicensing Methods Coexistence with other ApplicationsCritical/Non-Critical Prioritizations Special Application Requirements Customization PlanningEvent Customization Event NotificationError Notification Predictive Event Error CorrectionSample Screen for Add a Notification Method Notification Application FailureUser ID Planning Cluster User and Group IDsUser Home Directory Planning Cluster PasswordsHome Directories on Shared Volumes NFS-Mounted Home DirectoriesNFS-Mounted Home Directories on Shared Volumes Cluster Hardware and Software Preparation Cluster Node SetupAdapter Slot Placement Rootvg MirroringIBM Certification Study Guide AIX Hacmp Procedure This is so that the Quorum OFF functionality takes effect AIX Prerequisite LPPs Necessary Apar FixesAIX Parameter Settings 4.1 I/O PacingChecking Network Option Settings Cron and NIS Considerations Editing the /.rhosts File Network Connection and Testing Cabling ConsiderationsConnecting Networks to a Hub IP Addresses and SubnetsTesting Non TCP/IP Networks Configuring RS232 Configuring Target Mode ScsiConfiguring Target Mode SSA Testing RS232 and Target Mode NetworksCluster Disk Setup 1 SSACabling AIX Configuration Adapter RouterAdapter Definitions Disk DefinitionsDiagnostics #lsdev -Cc disk grep SSAUpgrade Instructions Microcode LoadingCluster Hardware and Software Preparation Configuring a RAID on SSA Disks ScsiConnecting RAID Subsystems Scsi AdaptersRAID Enclosures 110 RAIDiant Arrays Connected on Two Shared 8-Bit Scsi Buses Cluster Hardware and Software Preparation #2416 Adapter Scsi ID and Termination change Termination F1=Help F2=Refresh # chdev -l scsi1 -a id=6 -P Shared LVM Component Configuration Change/Show Characteristics of a Scsi AdapterCreating VGs for Concurrent Access Creating Shared VGsCreating Non-Concurrent VGs Physical Volume Names Renaming a jfslog and Logical Volumes on the Source Node Creating Shared LVs and File SystemsAdding Copies to Logical Volume on the Source Node Testing a File System Mirroring StrategiesImporting to Other Nodes Changing a Volume Group’s Startup Status Quorum Quorum at Vary OnQuorum after Vary On Quorum EnabledQuorum Disabled Disabling and Enabling QuorumAlternate Method TaskGuide Quorum in Non-Concurrent Access ConfigurationsQuorum in Concurrent Access Configurations Forcing a VaryonStarting the TaskGuide IBM Certification Study Guide AIX Hacmp Hacmp Installation and Cluster Definition Installing HacmpFirst Time Installs Cluster.base.server.utils Cluster.hc Install Server Nodes Rebooting ServersUpgrading From a Previous Version Upgrade AIX on One Node Install Hacmp 4.3 for AIX on Node a Check Upgraded ConfigurationClient-only Migration Defining Cluster Topology Defining the Cluster Defining NodesDefining Adapters Hacmp Installation and Cluster Definition Node Name Configuring Network Modules Adding or Changing Adapters after the Initial ConfigurationSynchronizing the Cluster Definition Across Nodes Ignore Cluster Configuring Resource Groups Defining ResourcesConfiguring Resources for Resource Groups Service IP LabelConfiguring Run-Time Parameters Defining Application ServersInitial Testing ClverifySynchronizing Cluster Resources Initial Startup Takeover and ReintegrationCluster Snapshot Applying a Cluster Snapshot Hacmp Installation and Cluster Definition IBM Certification Study Guide AIX Hacmp Cluster Customization Predefined Cluster EventsGetdiskvgfs AcquireserviceaddrAcquiretakeoveraddr NodeupremoteNodedownlocal ReleaseserviceaddrSequence of nodedown Events NodedownremoteNetworkup StartserverNetwork Events Networkdown NetworkupcompleteNetwork Adapter Events ConfigtoolongReconfigtopologystart SwapadapterPre- and Post-Event Processing Event Recovery and RetryConfiguration Resources Cluster Events Change/Show Cluster Event NotificationEvent Emulator Network Modules/Topology Services and Group Services Creating Shared Volume Groups NFS considerationsCascading Takeover with Cross Mounted NFS File Systems Exporting NFS File SystemsNFS Mounting Creating NFS Mount Points on ClientsCaveats about Node Names and NFS NFS Cross MountsCross Mounted NFS File Systems and the Network Lock Manager SLEEP=2 Done Device State Cluster TestingNode Verification 131System Parameters Process StateNetwork State LVM State Cluster StateSimulate Errors Adapter FailureEthernet or Token Ring Interface Failure Switch Adapter Failure Ethernet or Token Ring Adapter or Cable FailureFailure of a 7133 Adapter Re-attach the cablesNode Failure / Reintegration AIX CrashCPU Failure Network Failure 2.3 TCP/IP Subsystem FailureDisk Failure Mirrored rootvg Disk hdisk0 Failure4.2 7135 Disk Failure Mirrored 7133 Disk FailureApplication Failure IBM Certification Study Guide AIX Hacmp Cluster Troubleshooting Cluster Log Files143 Configtoolong DaemonsDeadman Switch Tuning the System Using I/O Pacing Extending the syncd FrequencyIncrease Amount of Memory for Communications Subsystem Changing the Failure Detection Rate Node Isolation and Partitioned ClustersDgsp Message User ID Problems Troubleshooting StrategyIBM Certification Study Guide AIX Hacmp Cluster Management and Administration Monitoring the Cluster151 Clstat Command Monitoring Clusters using HAView3.2 /tmp/hacmp.out System Error Log3.1 /var/adm/cluster.log 3.3 /usr/sbin/cluster/history/cluster.mmddStarting and Stopping Hacmp on a Node or a Client Cluster Smux Peer daemon clsmuxpd Hacmp DaemonsCluster Manager daemon clstrmgr Cluster Lock Manager daemon cllockdCluster Group Services daemon grpsvcsd Starting Cluster Services on a NodeCluster Topology Services daemon topsvcsd Cluster Information Program daemon clinfoStopping Cluster Services on a Node Automatically Restarting Cluster ServicesGraceful When to Stop Cluster servicesTypes of Cluster Stops ForcedStarting and Stopping Cluster Services on Clients Maintaining Cluster Information Services on ClientsReplacing Failed Components NodesAdapters 3.1 SSA/SCSI Disk Replacement RAID DisksSync the volume group smit clsyncvg Manual Update Changing Shared LVM ComponentsLazy Update Spoc IBM Certification Study Guide AIX Hacmp TaskGuide Changing Cluster ResourcesTaskGuide Requirements 1 Add/Change/Remove Cluster Resources Synchronize Cluster ResourcesDare Resource Migration Utility Resource Migration Types Sticky Resource MigrationNon-Sticky Resource Migration Default Location LocationsNode Name Using the cldare Command to Migrate Resources Stop LocationUsing the clfindres Command Stopping Resource GroupsApplying Software Maintenance to an Hacmp Cluster Fallover System a Rejoins Cluster Backup Strategies Split-Mirror BackupsHow to do a split-mirror backup Using Events to Schedule a Backup User ManagementListing Users On All Cluster Nodes Adding User Accounts on all Cluster NodesChanging Attributes of Users in a Cluster Removing Users from a ClusterManaging Group Accounts Spoc LogIBM Certification Study Guide AIX Hacmp Hardware Requirements Special RS/6000 SP TopicsHigh Availability Control Workstation Hacws 183Configuring the Backup CWS Software RequirementsInstall High Availability Software Hacws ConfigurationSetup and Test Hacws Kerberos Security Ambrose Bierce, The Enlarged Devil’s Dictionary Configuring Kerberos Security with Hacmp Version VSDs RVSDs Virtual Shared Disk VSDsSpecial RS/6000 SP Topics Undefined Recoverable Virtual Shared Disk D e ZRsvd Daemons SP Switch as an Hacmp Network Switch Basics Within HacmpSwitch Failures Eprimary ManagementSpecial RS/6000 SP Topics IBM Certification Study Guide AIX Hacmp Hacmp for AIX / Enhanced Scalability Hacmp Classic vs. HACMP/ES vs. HanfsHacmp for AIX Classic 199IBM Risc System Cluster Technology Rsct Enhanced Cluster Security High Availability for Network File System for AIXSimilarities and Differences Decision CriteriaHacmp Classic vs. HACMP/ES vs. Hanfs IBM Certification Study Guide AIX Hacmp Appendix A. Special Notices 205SP1 Special Notices IBM Certification Study Guide AIX Hacmp Redbooks on CD-ROMs Appendix B. Related PublicationsInternational Technical Support Organization Publications 209Other Publications How to Get Itso Redbooks How IBM Employees Can Get Itso Redbooks211 How Customers Can Get Itso Redbooks IbmmailIBM Redbook Order Form 213IBM Certification Study Guide AIX Hacmp List of Abbreviations 215Netbios Index Symbols 217HACMP/ES 219 NISVgda Vgsa Itso Redbook Evaluation 221IBM Certification Study Guide AIX Hacmp SG24-5131-00