Configuring VCS in secure mode

Configuring VCS in secure mode ensures that all the communication between the systems is encrypted and users are verified against security credentials. VCS user names and passwords are not used when a cluster is running in secure mode.

To configure VCS in secure mode

  1. To install and configure VCS in secure mode, run the command:
    # ./installer -security
  2. The installer displays the following question before the installer stops the product processes:
    • Do you want to grant read access to everyone? [y,n,q,?]

      • To grant read access to all authenticated users, type y.

      • To grant usergroup specific permissions, type n.

    • Do you want to provide any usergroups that you would like to grant read access?[y,n,q,?]

      • To specify usergroups and grant them read access, type y

      • To grant read access only to root users, type n. The installer grants read access read access to the root users.

    • Enter the usergroup names separated by spaces that you would like to grant read access. If you would like to grant read access to a usergroup on a specific node, enter like 'usrgrp1@node1', and if you would like to grant read access to usergroup on any cluster node, enter like 'usrgrp1'. If some usergroups are not created yet, create the usergroups after configuration if needed. [b]

  3. To verify the cluster is in secure mode after configuration, run the command:
    # haclus -value SecureClus

    The command returns 1 if cluster is in secure mode, else returns 0.