Skip to content

Disable_ssh_root_passwordless_node to node_access

Jump to bottom
ligc edited this page Jul 30, 2015 · 6 revisions

Table of Contents

{{:Design Warning}}

1. Overview

xCAT when it installs a node, always sets up root passwordless ssh between the nodes and service nodes. This design will allow the admin to limit which nodes , other than service nodes, the root passwordless ssh will be setup during install and running xdsh -K.

2. Site Table Attribute

A new attribute sshbetweennodes is defined for xCAT 2.6 site table. This attributes defaults to ALLGROUPS, which means we setup ssh between all nodes as in the past. This attribute can be used to define a comma-separated list of groups and only the nodes in those groups will be setup with ssh between the nodes. The attribute can be set to NOGROUPS, to indicate no nodes (groups) will be setup. Service Nodes will always be setup with ssh between service nodes and all nodes. It is unaffected by this attribute. This also only affects root userid setup and does not affect the setup of devices.

This setting of site.sshbetweennodes will only enable root ssh between nodes of the compute1 and compute 2 groups and all service nodes.

"sshbetweennodes","compute1,compute2",,

News

History

  • Oct 22, 2010: xCAT 2.5 released.
  • Apr 30, 2010: xCAT 2.4 is released.
  • Oct 31, 2009: xCAT 2.3 released. xCAT's 10 year anniversary!
  • Apr 16, 2009: xCAT 2.2 released.
  • Oct 31, 2008: xCAT 2.1 released.
  • Sep 12, 2008: Support for xCAT 2 can now be purchased!
  • June 9, 2008: xCAT breaths life into (at the time) the fastest supercomputer on the planet
  • May 30, 2008: xCAT 2.0 for Linux officially released!
  • Oct 31, 2007: IBM open sources xCAT 2.0 to allow collaboration among all of the xCAT users.
  • Oct 31, 1999: xCAT 1.0 is born!
    xCAT started out as a project in IBM developed by Egan Ford. It was quickly adopted by customers and IBM manufacturing sites to rapidly deploy clusters.
Clone this wiki locally