I did it, and it is exactly as you said it should be
[root@cpn01 ~]# /xcatpost/allowcred.awk &
[1] 14189
[root@cpn01 ~]# USEOPENSSLFORXCAT=yes XCATSERVER=10.54.255.240:3001
/xcatpost/getcredentials.awk ssh_rsa_hostkey
<xcatresponse>
<data>
<content>
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
</content>
<desc>ssh_rsa_hostkey</desc>
</data>
<errorcode>0</errorcode>
</xcatresponse>
<xcatresponse>
<serverdone></serverdone>
</xcatresponse>
What does that tell me?
Regards
________________________________________
From: Xiao Peng Wang [[email protected]]
Sent: 26 January 2016 15:53
To: [email protected]
Cc: [email protected]
Subject: Re: [xcat-user] getcredentials not working
Could you try following steps on your compute node?
1. Enable mini server
/xcatpost/allowcred.awk &
2.Try to get rsa hostkey
USEOPENSSLFORXCAT=yes XCATSERVER=<MNIP>:3001 /xcatpost/getcredentials.awk
ssh_rsa_hostkey
The output should like:
<xcatresponse>
<data>
<content>
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
</content>
<desc>ssh_rsa_hostkey</desc>
</data>
<errorcode>0</errorcode>
</xcatresponse>
<xcatresponse>
<serverdone></serverdone>
</xcatresponse>
Thanks
Best Regards
----------------------------------------------------------------------
Wang Xiaopeng (王晓朋)
IBM China System Technology Laboratory
Tel: 86-10-82453455
Email: [email protected]
Address: 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian
District Beijing P.R.China 100193
----- Original message -----
From: "Hollizeck, Sebastian" <[email protected]>
To: xCAT Users Mailing list <[email protected]>
Cc:
Subject: Re: [xcat-user] getcredentials not working
Date: Tue, Jan 26, 2016 5:40 PM
the hostkeys are present on the xCAT MN
ll /etc/xcat/hostkeys/
total 32
-rw------- 1 root root 668 Jan 21 16:02 ssh_host_dsa_key
-rw-r--r-- 1 root root 590 Jan 21 16:02 ssh_host_dsa_key.pub
-rw------- 1 root root 227 Jan 21 16:02 ssh_host_ecdsa_key
-rw-r--r-- 1 root root 162 Jan 21 16:02 ssh_host_ecdsa_key.pub
-rw------- 1 root root 965 Jan 21 16:02 ssh_host_key
-rw-r--r-- 1 root root 630 Jan 21 16:02 ssh_host_key.pub
-rw------- 1 root root 1679 Jan 21 16:02 ssh_host_rsa_key
-rw-r--r-- 1 root root 382 Jan 21 16:02 ssh_host_rsa_key.pub
and i also have a credentials.pm in
/opt/xcat/lib/perl/xCAT_plugin/credentials.pm
Regards
Sebastian
________________________________________
From: Xiao Peng Wang [[email protected]]
Sent: 26 January 2016 06:13
To: [email protected]
Cc: [email protected]
Subject: Re: [xcat-user] getcredentials not working
Refer to the following part of code in credentials.pm. You can get more
messages in the /var/log/messages on you xCAT MN. xCAT is trying to send the
file /etc/xcat/hostkeys/ssh_host_dsa_key to compute node. This file is
generated during install xCAT. Could verify this file is existed?
} elsif ($parm =~ /ssh_dsa_hostkey/) {
`logger -t xcat -p local4.info "credentials: sending $parm"` ;
if (-r "/etc/xcat/hostkeys/$client/ssh_host_dsa_key") {
$tfilename="/etc/xcat/hostkeys/$client/ssh_host_dsa_key";
} elsif (-r "/etc/xcat/hostkeys/ssh_host_dsa_key") {
$tfilename="/etc/xcat/hostkeys/ssh_host_dsa_key";
} else {
push @{$rsp->{'error'}},"Unable to read private DSA key from
/etc/xcat/hostkeys";
`logger -t xcat -p local4.info "credentials: Unable to read private
DSA key"` ;
next;
}
} elsif ($parm =~ /ssh_rsa_hostkey/) {
`logger -t xcat -p local4.info "credentials: sending $parm"` ;
if (-r "/etc/xcat/hostkeys/$client/ssh_host_rsa_key") {
$tfilename="/etc/xcat/hostkeys/$client/ssh_host_rsa_key";
} elsif (-r "/etc/xcat/hostkeys/ssh_host_rsa_key") {
$tfilename="/etc/xcat/hostkeys/ssh_host_rsa_key";
} else {
push @{$rsp->{'error'}},"Unable to read private RSA key from
/etc/xcat/hostkeys";
`logger -t xcat -p local4.info "credentials: Unable to read private
RSA key"` ;
next;
}
}
Thanks
Best Regards
----------------------------------------------------------------------
Wang Xiaopeng (王晓朋)
IBM China System Technology Laboratory
Tel: 86-10-82453455
Email: [email protected]
Address: 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian
District Beijing P.R.China 100193
----- Original message -----
From: "Hollizeck, Sebastian" <[email protected]>
To: "[email protected]" <[email protected]>
Cc:
Subject: [xcat-user] getcredentials not working
Date: Mon, Jan 25, 2016 11:23 PM
Hallo,
i am very pleased with xCAT in general and only have a small problem, which i
could work around, but id rather it worked as intended.
I have a bunch of diskless nodes, which i manage and everything is working as i
wish apart from the host key transfer. the xcat.log on the nodes shows the
postscript "remoteshell" takes about 20 min to execute
and if i have a look at the log on the managing node i get this
Jan 25 14:46:48 xcat xcat[19066]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:47:06 xcat xcat[19070]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:47:17 xcat xcat[19073]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:47:35 xcat xcat[19076]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:47:52 xcat xcat[19078]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:48:08 xcat xcat[19081]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:48:19 xcat xcat[19083]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:48:36 xcat xcat[19086]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:48:47 xcat xcat[19088]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:49:01 xcat xcat[19091]: xCAT: Allowing getcredentials ssh_dsa_hostkey
from cpn02
Jan 25 14:49:17 xcat xcat[19093]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:49:33 xcat xcat[19096]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:49:45 xcat xcat[19098]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:49:55 xcat xcat[19100]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:50:09 xcat xcat[19102]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:50:28 xcat xcat[19104]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:50:42 xcat xcat[19106]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:50:57 xcat xcat[19108]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:51:14 xcat xcat[19110]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
Jan 25 14:51:28 xcat xcat[19112]: xCAT: Allowing getcredentials ssh_rsa_hostkey
from cpn02
which looks like the node cannot access the keys and after the 10 tries it
generates a new key.
This is very unfortunate and i am out of guesses, where this problem originates
from.
Could you give me a hint!?
Regards
Sebastian Hollizeck
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
xCAT-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xcat-user
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
xCAT-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xcat-user
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________
xCAT-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xcat-user
