Configuring the cluster in secure mode<a class="indexterm" name="id433819"></a><a class="indexterm" name="id433823"></a>


Configuring the cluster in secure mode
Prev	Installing and configuring VCS 5.0.1	Next

Configuring the cluster in secure mode

If you want to configure the cluster in secure mode, make sure that you meet the prerequisites for secure cluster configuration.

The installvcs program provides different configuration modes to configure a secure cluster. Make sure that you completed the pre-configuration tasks for the configuration mode that you want to choose.

See Preparing to configure the clusters in secure mode.

To configure the cluster in secure mode

Choose whether to configure VCS to use Symantec Product Authentication Service.
```
Would you like to configure VCS to use Symantec Security 
Services? [y,n,q] (n) y
```
- If you want to configure the cluster in secure mode, make sure you meet the prerequisites and enter y.
- If you do not want to configure the cluster in secure mode, enter n.
  
  You must add VCS users when the configuration program prompts.

Select one of the options to enable security.

Select the Security option you would like to perform [1-3,q,?]

Review the following configuration modes. Based on the configuration that you want to use, enter one of the following values:

Option 1. Automatic configuration

Enter the name of the Root Broker system when prompted.

Requires a remote access to the Root Broker.

Review the output as the installer verifies communication with the Root Broker system, checks vxatd process and version, and checks security domain.

Option 2 . Semiautomatic configuration

Enter the path of the encrypted file (BLOB file) for each node when prompted.

Option 3. Manual configuration

Enter the following Root Broker information as the installer prompts you:

Enter root Broker name: 
east.symantecexample.com
Enter root broker FQDN: [b] 
(symantecexample.com) 
symantecexample.com
Enter root broker domain: [b] 
(root@east.symantecexample.com) 
root@east.symantecexample.com
Enter root broker port: [b] (2821) 2821
Enter path to the locally accessible 
root hash [b] (/var/tmp/
installvcs-1Lcljr/root_hash)
     /root/root_hash

Enter the following Authentication Broker information as the installer prompts you for each node:

Enter authentication broker principal name on 
galaxy [b]
(galaxy.symantecexample.com) 
galaxy.symantecexample.com
Enter authentication broker password on galaxy: 
Enter authentication broker principal name on 
nebula [b]
(nebula.symantecexample.com) 
nebula.symantecexample.com
Enter authentication broker password on nebula:

After you provide the required information to configure the cluster in secure mode, the program prompts you to configure SMTP email notification.

Note that the installer does not prompt you to add VCS users if you configured the cluster in secure mode. However, you must add VCS users later.

See Veritas Cluster Server User's Guide for more information.

Prev	Up	Next
Configuring the basic cluster	Home	Adding VCS users