Configuring the cluster in secure mode


		< Previous \| TOC \| Index \| Next >

Configuring the cluster in secure mode

Before you configure a cluster in a secure mode, make sure to meet the requirements for automatic or semiautomatic mode of configuration. You can also enable Symantec Product Authentication Service later.

See Symantec Product Authentication Service

To configure the cluster in secure mode

Choose whether to configure VCS to use Symantec Product Authentication Service.

Would you like to configure VCS to use Symantec Security 
Services? [y,n,q] (n) y
 
  

 If you want to configure the cluster in secure mode, make sure you have installed the root broker and enter y.



 If you do not want to configure the cluster in secure mode and want to proceed to adding VCS users, enter n.


  See Adding VCS users

Select one of the options to enable security.

Select the Security option you would like to perform [1-3,q,?]

Based on the mode of configuration you want to use, enter one of the following:

Option

Tasks

1. Automatic configuration

Enter the name of the Root Broker system when prompted.

Requires remote access to the Root Broker.

Review the output as the installer verifies communication with the Root Broker system, checks vxatd process and version, and checks security domain.

2 . Semi-automatic using encrypted files

Enter the path of the file for each node when prompted.
3. Semi-automatic entering authentication information at installer prompts
Enter the following Root Broker information as the installer prompts you:
Enter root Broker name: 
east.symantecexample.com
 
Enter root broker FQDN: [b] 
(symantecexample.com) symantecexample.com
 
Enter root broker domain: [b] 
(root@east.symantecexample.com) 
root@east.symantecexample.com
 
Enter root broker port: [b] (2821) 2821
Enter path to the locally accessible root hash 
[b] (/var/tmp/installvcs-1Lcljr/root_hash) 

/root/root_hash
 
Enter the following Authentication Broker information as the installer prompts you for each node:
Enter authentication broker principal name on 
north [b]
 
(north.symantecexample.com) 
north.symantecexample.com
 
Enter authentication broker password on north:
Enter authentication broker principal name on 
south [b]
 
(south.symantecexample.com) 
south.symantecexample.com
 
Enter authentication broker password on south:

After configuring the cluster in secure mode, proceed to configure the Cluster Management Console cluster connector.
See Configuring cluster connector


^ Return to Top	< Previous \| TOC \| Index \| Next >

Option	Tasks
`1`. Automatic configuration	Enter the name of the Root Broker system when prompted. Requires remote access to the Root Broker. Review the output as the installer verifies communication with the Root Broker system, checks vxatd process and version, and checks security domain.
`2` . Semi-automatic using encrypted files	Enter the path of the file for each node when prompted.
`3`. Semi-automatic entering authentication information at installer prompts	Enter the following Root Broker information as the installer prompts you: Enter root Broker name: `east.symantecexample.com` Enter root broker FQDN: [b] (symantecexample.com) `symantecexample.com` Enter root broker domain: [b] (root@east.symantecexample.com) `root@east.symantecexample.com` Enter root broker port: [b] (2821) `2821` Enter path to the locally accessible root hash [b] (/var/tmp/installvcs-1Lcljr/root_hash) `/root/root_hash` Enter the following Authentication Broker information as the installer prompts you for each node: Enter authentication broker principal name on north [b] (north.symantecexample.com) `north.symantecexample.com` Enter authentication broker password on north: Enter authentication broker principal name on south [b] (south.symantecexample.com) `south.symantecexample.com` Enter authentication broker password on south: