After planning the Storage Foundation features that you want to configure, you must prepare to configure these features.
See About Storage Foundation component features
Workflow for fresh install of Storage Foundation for Oracle RAC represents the major tasks and decisions required to install and configure Storage Foundation.
Workflow for fresh install of Storage Foundation for Oracle RAC
Click the thumbnail above to view full-sized image.
Complete the following preparatory tasks based on the Storage Foundation features you want to configure:
Install the root broker only if you plan on using Veritas Product Authentication Service. The root broker administrator must install and configure the root broker before you configure the Authentication Service for Storage Foundation. Symantec recommends that you install the root broker on a stable system that is outside the cluster. You can install the root broker on an AIX, HP-UX, Linux, or Solaris system. See Symantec Product Authentication Service Installation Guide for more information. You can configure the Authentication Service during or after Storage Foundation installation.
See Symantec Product Authentication Service
[3] Install Symantec Product Authentication Service Root Broker.
Enter the system name on which to install Veritas Product Authentication Service: venus
The installsfrac program lists the packages that will be installed on the system. Press Enter to continue.
y
when the installer prompts you to configure the Symantec Product Authentication Service.
Do you want to start Symantec Product Authentication Service processes now? [y,n,q] y
Create encrypted files only if you plan on choosing the semiautomatic mode that uses an encrypted file to configure the Authentication Service. The encrypted files must be created by the administrator on the root broker node. The administrator must create encrypted files for each node that would be a part of the cluster before you configure the Authentication Service for Storage Foundation. See Veritas Cluster Server User's Guide for more information. You can configure the Authentication Service during or after Storage Foundation installation.
See Symantec Product Authentication Service
The example procedure assumes venus as the root broker node. The example procedure creates encrypted files for nodes north and south that would form the Storage Foundation cluster rac_cluster101.
venus> # vssat showalltrustedcreds
For example, the domain name would resemble "Domain Name: root@venus.symantecexample.com" in the output.
For example, to verify on node north:
venus> # vssat showprpl --pdrtype root \
--domain root@venus.symantecexample.com --prplname north
venus> # vssat deleteprpl --pdrtype root \
venus> # vssat addprpl --pdrtype root --domain \
root@venus.symantecexample.com --prplname north \
--password
password
--prpltype service
You must use this password that you create in the input file for the encrypted file.
The value that you provide for --prplname
in step 3 (for example, north).
The value that you provide for --password
in step 3.
The value that you determined in step 1.
The installer presents the format of the input file for the encrypted file when you proceed to configure the Authentication Service using encrypted file. For example, the input file for authentication broker on north would resemble:
broker=venus.symantecexample.com
hash=758a33dbd6fae751630058ace3dedb54e562fe98
root_domain=vx:root@venus.symantecexample.com
root_broker=venus.symantecexample.com:2821
Note that for security purposes, the command to create the output file for the encrypted file deletes the input file.
RootBroker> # vssat createpkg --in /path/to/blob/input/file.txt --out /path/to/encrypted/blob/file.txt --host_ctx AB-hostname
venus> # vssat createpkg --in /tmp/north.blob.in \
--out /tmp/north.blob.out --host_ctx north
Note that this command creates a encrypted file even if you provide wrong password for "password=" entry, but the encrypted file will fail to install on authentication broker node.
Install the Cluster Management Console management server only if you plan to centrally manage multiple clusters. Make sure you have a root broker in your domain. Storage Foundation clusters need not be secure to configure Cluster Management Console to manage multiple clusters.
See Veritas Cluster Management Console
Install the Cluster Management Console management server and supporting components on a standalone system (outside any cluster but on the local network). Configure the management server to use a previously installed root broker or install and configure a root broker on the management server host.
You can install the management server on one of the following supported operating systems:
Refer to the Veritas Cluster Server Installation Guide for supported software information for the Cluster Management Console.
Installing the management server on Solaris
You must install the management server on a system outside the cluster. This procedure follows a script of a successful installation. If at any step you experience a result other than the expected result that is documented here, you can click "n" to re-enter information. If you continue to have problems, click "q" to quit the installation and then verify the installation prerequisites.
To install the management server on Solaris
The setup program (setup) presents copyright information followed by a menu titled, "Storage Foundation and High Availability Solutions 5.0".
i
to specify a task.
Enter a Task: [I,C,L,P,U,D,Q,?] i
Setup displays another menu that lists products that are available for installation.
1
to select a product component.
Enter '1' to install the Management Server, '2' to install the Cluster
Setup presents a message stating that it will install the management server.
y
to verify that the information up to this point is correct.
Is this information correct? [y,n,q] (y)
Setup performs an initial system check of the local system and checks for installed packages on the local system. If these checks are satisfactory, setup lists the packages to be installed.
Storage Foundation and High Availability Solutions 5.0
installer will install the following CMC packages:
VRTSat Symantec Product Authentication Service
VRTSperl Veritas Perl 5.8.8 Redistribution
VRTSdbms3 Symantec Shared DBMS
VRTSjre15 Veritas Java Runtime Environment Redistribution
VRTSweb Veritas Java Web Server
VRTScmcm Veritas Cluster Management Console
You may install Cluster Management Console packages without performing configuration. The setup program gives you the option to configure Cluster Management Console now, and provides instructions for configuring Cluster Management Console later.
y
to configure Cluster Management Console.
Enter a unique management server display name: [?] mgmtserver1_sol9
Enter the network address used by the management server [b,?] mgmtserver1.symantecexample.com
Enter the desired location of the database to be used by the management server [b,?] (/opt/VRTScmc/db)
Setup repeats the management server display name, the management server network address, and the database location.
y
to verify that the information up to this point is correct.
Is this information correct? [y,n,q,b] (y)
Setup describes local user configuration and custom user configuration.
Make your selection and then specify the following user authentication details:
Configure a user on the local machine as the initial admin user.
Enter '1' to enter the name of a local user, '2' to set up a custom user:
Storage Foundation and High Availability Solutions 5.0
To log in to the CMC Management Server, enter the name of a local user to be set as the administrator. The domain and domain type will be automatically selected for you.
Enter the initial management server user name: [b,?] (root)
Storage Foundation and High Availability Solutions 5.0
y
to verify that the information up to this point is correct.
Is this information correct? [y,n,q,b] (y)
Setup describes a particular management server service account, which the management server uses for secure internal communications with cluster connector. This account is named CMC_CC@CMC_SERVICES.
Enter a password for the CMC service account:xxxxx
Confirm the password you entered for the CMC service account:xxxxx
When you install and configure cluster connector, you must provide this same password for the CMC_CC@CMC_SERVICES account.
If you have already configured a root broker in your network, Symantec recommends that you enter y
to use that existing root. Specify the additional details for that remote root broker exactly as specified.
If you do not have a currently-configured root broker, enter n
to install and configure a root broker on the management server host.
After you enter y
or n
, setup installs an authentication broker on the management server and configures it to use whichever root broker you selected. When finished, setup presents:
y
to start Veritas Cluster Management Console processes now.
Do you want to start Veritas Cluster Management Console processes now? [y,n,q,b] (y)
Setup presents startup progress percentages and, if successful, displays the following message:
Enter five or more characters to be used an encryption key: [b] xxxxx
This key must be retained in a secure file and referenced using the -enckeyfile option if the generated responsefile is to be used again.
Record the location that setup provides for the installation log files, summary file, and response file. Also ensure that you record the initial admin user information. You must use this account to log in to the Cluster Management Console for the first time.
Installing the management server on Windows
You must install the management server on a system outside all clusters. Windows Management Instrumentation (WMI) is a prerequisite for installing and using the management server and cluster connector.
To install the management server on Windows
Depending upon the operating system, you may or may not receive the following warning message:
The publisher could not be verified. Are you sure you want to run this software?
You cannot change the port specification, 14145, but it is provided to help you to prevent port conflicts when configuring other software. The other ports used by the Cluster Management Console are 8181 (HTTP), 8443 (HTTPS), and 2994 (DBMS; this port can be shared with other Symantec products)
Record the password that you enter in a safe place. You must use it again whenever you install or configure cluster connector.
This user becomes the initial management server user. You must provide the credentials entered at this step when logging in to the management server for the first time.
The Installing Veritas Cluster Management Console dialog box displays a progress bar and a status message window for the installation.
Obtain the Storage Foundation Management Server software and install SF Management software on a system outside the cluster. For information on ordering SF Management Server, visit:
www.symantec.com/enterprise/sfms
Refer to the Storage Foundation Management Server documentation for details.