welcome: please sign in

The following 141 words could not be found in the dictionary of 7 words (including 7 LocalSpellingWords) and are highlighted below:
acl   add   afs   After   all   an   and   And   apply   appropriate   are   as   attempt   be   because   been   bug   but   caveats   cd   changes   client   common   conf   Connection   Copy   create   created   currently   database   datatrans   deleuze   directory   do   documented   domtool   dump   edit   Edit   Enable   entries   error   etc   exit   expect   files   Finally   first   fixed   following   follows   for   from   go   have   hc   hcoop   hopper   Hopper   in   inetd   init   Install   into   is   it   kdb5   kdc   Kerberos   known   kprop   kpropd   Krb   krb   krb5   krb5kdc   lib   like   list   Load   load   log   machine   machines   Machines   master   may   messages   much   net   New   new   not   on   or   procedure   propagates   propagation   Remove   restart   Restart   retry   rm   run   scripts   section   see   Sep   server   servers   setting   Setup   setup   should   shouldn   slave   some   succeed   syslog   tail   temporary   that   The   the   then   Then   There   there   this   to   To   up   user   util   var   when   which   will   with   work   yourself  

Clear message
Edit

SetupNewKrbServer

New Krb slave setup

There's not much work to do when setting up Kerberos slave server, but there are some caveats. The procedure is as follows:

Then, attempt first database propagation from master server to new slave (the attempt will exit with an error because the database is not created on the slave server. And it shouldn't have to be, but it's currently a known bug in Krb -- or it may have been fixed in Krb 1.8, but see yourself): 

kdb5_util dump /var/lib/krb5kdc/slave_datatrans
kprop NEWMACHINE.hcoop.net

Then, on slave, go to /var/lib/krb5kdc/ and do the following to create the database:

After that, retry kprop which should succeed.

Finally, edit /afs/hcoop.net/common/etc/scripts/hcoop-kprop and add section which propagates database to new machine, then tail -f /var/log/syslog on the slave and expect messages like this: 

Sep 23 07:24:01 hopper kpropd[22567]: Connection from deleuze.hcoop.net
Sep 23 07:25:01 hopper kpropd[22569]: Connection from deleuze.hcoop.net
Sep 23 07:26:01 hopper kpropd[22571]: Connection from deleuze.hcoop.net

And, edit /afs/hcoop.net/user/h/hc/hcoop/.domtool/hcoop.net to add appropriate DNS entries for the new Krb server. To apply changes, cd into that .domtool directory and run DOMTOOL_USER=hcoop domtool hcoop.net.

SetupNewKrbServer (last edited 2011-04-23 00:39:17 by ClintonEbadi)