manualshive.com logo in svg

Red Hat NETWORK SATELLITE 5.3.0 - CHANNEL MANAGEMENT, Installation Manual, Page: 20 / 84

Share
Download
Red Hat NETWORK SATELLITE 5.3.0 - CHANNEL MANAGEMENT Installation Manual Download Page 20

Chapter 2. Requirements

16

Subscribing to these channels and updating your Satellite (such as by running 

yum

 on

Red Hat Enterprise Linux 5 or 

up2date

 or earlier versions of Red Hat Enterprise Linux)

may install newer, incompatible versions of critical software components, causing the
Satellite to fail.

• Backups of Login Information

It is imperative that customers keep track of all primary login information. For RHN Satellite, this
includes usernames and passwords for the Organization Administrator account on rhn.redhat.com,
the primary administrator account on the Satellite itself, SSL certificate generation, and database
connection (which also requires a SID, or net service name). Red Hat strongly recommends this
information be copied onto two separate floppy disks, printed out on paper, and stored in a fireproof
safe.

In addition to these requirements, it is recommended that the RHN Satellite be configured in the
following manner:

• The entire RHN Satellite solution should be protected by a firewall if the Satellite accesses or is

accessed via the Internet. An Internet connection is not required for RHN Satellites running in
completely disconnected environments. This feature instead uses Channel Content ISOs that can
be downloaded to a separate system to synchronize the Satellite with the central Red Hat Network
Servers. All other RHN Satellites should be synchronized directly over the Internet.

Note

If you are running a disconnected Satellite that is not registered to RHN Hosted the
installation program will note and return a list of any missing additional packages
needed beyond 

@base

 to be installed, then the installation program will exit. This allows

you to install those packages. You may want to use the installation ISO image or DVD
media to create a repository for those additional packages, and then rerun the Satellite
installer.

• All unnecessary ports should be firewalled off. Client systems connect to RHN Satellite over ports

80, 443, and 4545 (if Monitoring is enabled). In addition, if you plan to enable the pushing of actions
from the Satellite to client systems, as described in 

Section 8.10, “Enabling Push to Clients”

, you

must allow inbound connections on port 5222. Finally, if the Satellite will also push to an RHN Proxy
Server, you must also allow inbound connections on port 5269.

• No system components should be directly, publicly available. No user other than the system

administrators should have shell access to these machines.

All unnecessary services should be disabled using 

ntsysv

 or 

chkconfig

.

The 

httpd

 service should be enabled.

If the Satellite serves Monitoring-entitled systems and you wish to acknowledge via email the
alert notifications you receive, you must configure 

sendmail

 to properly handle incoming mail as

described in 

Section 4.4, “Sendmail Configuration”

.

Summary of Contents for NETWORK SATELLITE 5.3.0 - CHANNEL MANAGEMENT

Page 1: ...Red Hat Network Satellite 5 3 0 Installation Guide Red Hat Network Satellite ...

Page 2: ...the original version Red Hat as the licensor of this document waives the right to enforce and agrees not to assert Section 4d of CC BY SA to the fullest extent permitted by applicable law Red Hat Red Hat Enterprise Linux the Shadowman logo JBoss MetaMatrix Fedora the Infinity Logo and RHCE are trademarks of Red Hat Inc registered in the United States and other countries Linux is the registered tra...

Page 3: ...4 2 1 Options to the Satellite Installation Program 32 4 3 Automated RHN Satellite Server Installation 33 4 4 Sendmail Configuration 34 4 5 MySQL Installation 35 5 Entitlements 37 5 1 Receiving the Certificate 37 5 2 Uploading the RHN Entitlement Certificate 38 5 3 Managing the RHN Certificate with RHN Satellite Activate 38 5 3 1 Command Line Entitlement Options 38 5 3 2 Activating the Satellite 3...

Page 4: ...d Software Components 60 7 8 Satellite Debugging by Red Hat 60 8 Maintenance 63 8 1 Managing the Satellite with rhn satellite 63 8 2 Updating the Satellite 63 8 3 Backing Up the Satellite 64 8 4 Using RHN DB Control 65 8 4 1 DB Control Options 65 8 4 2 Backing up the Database 66 8 4 3 Verifying the Backup 67 8 4 4 Restoring the Database 67 8 5 Cloning the Satellite with Embedded DB 68 8 6 Establis...

Page 5: ... with Red Hat Network When a client system requests package updates only the applicable packages for the client are returned based upon the software profile stored on the RHN Servers Advantages of using Red Hat Network include Scalability with Red Hat Network a single system administrator can set up and maintain hundreds or thousands of Red Hat systems more easily accurately and quickly than they ...

Page 6: ...ased on a specific architecture and Red Hat release A child channel is a channel associated with a base channel that contains extra packages Organization Administrator An Organization Administrator is a user role with the highest level of control over an organization s Red Hat Network account Members of this role can add other users systems and system groups to the organization as well as remove t...

Page 7: ...tenance tools Web based Errata management tools Web based User management tools Web based Client system and system grouping tools Web based Red Hat Update Agent on the client systems The Red Hat Update Agent on the client systems must be reconfigured to retrieve updates from the organization s internal RHN Satellite instead of the central Red Hat Network Servers After this one time reconfiguration...

Page 8: ... a secure location Red Hat systems with local network access to the RHN Satellite can connect to it Other remote offices can maintain RHN Proxy Server installations that connect to the RHN Satellite The different locations inside the organization must be networked but this can be a private network an Internet connection is not required for any of the systems Refer to the RHN Proxy Server Installat...

Page 9: ...atellite by opening the Satellite s hostname in a Web browser and clicking Create Account This will be the Satellite Administrator s also referred to as the Organization Administrator account 9 Use the RHN Satellite Synchronization Tool to import the channels and associated packages into the Satellite 10 Register a representative machine for each distribution type or channel such as Red Hat Enterp...

Page 10: ...e Linux to install the rhn upgrade package with the following commmand on Red Hat Enterprise Linux 5 and above yum install rhn upgrade For Red Hat Enterprise Linux 4 users run the following command up2date rh upgrade You may also download the package directly from Red Hat Network by performing the following steps 1 Log into the RHN Hosted web interface at https rhn redhat com 2 Click the Channels ...

Page 11: ...g steps 1 Log into RHN 2 Click on Software Downloads on the left hand side of the screen 3 Navigate to the version of Red Hat Enterprise Linux you are currently using 4 Click on the latest version of RHN Satellite 5 Then choose if you want the embedded Oracle Database ISO or the non embedded version Once you have followed all steps refer to the instructions for a Satellite upgrade within the etc s...

Page 12: ...8 ...

Page 13: ...inux is a set of secure software policies that implement mandatory access control to Red Hat Enterprise Linux and other operating systems SELinux is activated by default on Red Hat Enterprise Linux 5 1 and now users can have SELinux in enforcing or permissive mode with the targeted policy set during installation of Proxy or Satellite Warning Security enhanced Linux SELinux on Red Hat Enterprise Li...

Page 14: ...4 and Red Hat Enterprise Linux 5 RHEL Version x86 x86_64 s390 s390x RHEL 4 yes yes yes yes RHEL 5 yes yes no yes Table 2 1 RHN Satellite on Red Hat Enterprise Linux Architecture Support 2 2 1 x86 and x86_64 Hardware Requirements The following table shows the required and recommended hardware configurations on the x86 and x86_64 platform for the two types of RHN Satellite Stand Alone Database Embed...

Page 15: ...both standalone and embedded databases Stand Alone Database Embedded Database Required 1 IFL either in LPAR configuration or shared through z VM Required 1 IFL either in LPAR configuration or shared through z VM Recommended 2 IFLs on z9 or earlier 1 IFL on z10 Recommended 2 IFLs on z9 or earlier 1 IFL on z10 Required 2 GB of storage memory Required 2 GB of storage memory Recommended 8 GB of memory...

Page 16: ...s section applies only to RHN Satellite with Stand Alone Database as the requirements for the Embedded Database are included in the Satellite machine s hardware requirements Red Hat supports RHN Satellite 5 2 0 installations in conjunction with Oracle Database 10g Release 2 Standard or Enterprise Edition The Stand Alone Database must not run on the same server as the RHN Satellite A single 6 GB ta...

Page 17: ...on for the database at the time of installation The precise access levels required by the Oracle user are as follows ALTER SESSION CREATE SEQUENCE CREATE SYNONYM CREATE TABLE CREATE VIEW CREATE PROCEDURE CREATE TRIGGER CREATE TYPE CREATE SESSION Additional database requirements include Security Identifier SID Listener Port Username UTF 8 character set Two additional suggested recommendation for us...

Page 18: ...to reach rhn redhat com 1 xmlrpc rhn redhat com 2 and satellite rhn redhat com 3 unless running in a disconnected mode for Satellite 80 Inbound WebUI and client requests come in via either http or https 443 Inbound WebUI and client requests come in via either http or https 443 Outbound To reach rhn redhat com 4 xmlrpc rhn redhat com 5 and satellite rhn redhat com 6 unless running in a disconnected...

Page 19: ...g Domain Name Service DNS For the RHN Satellite s domain name to be resolved by its clients it and they must all be linked to a working DNS server in the customer environment An Entitlement Certificate The customer will receive via email from the sales representative a signed Entitlement Certificate explaining the services provided by Red Hat through RHN Satellite This certificate will be required...

Page 20: ...entral Red Hat Network Servers All other RHN Satellites should be synchronized directly over the Internet Note If you are running a disconnected Satellite that is not registered to RHN Hosted the installation program will note and return a list of any missing additional packages needed beyond base to be installed then the installation program will exit This allows you to install those packages You...

Page 21: ...n RHN Proxy Server or RHN Satellite This will also likely require referencing The RHN Reference Guide which contains steps for registering and updating systems 3 The RHN Channel Management Guide This guide identifies in great detail the recommended methods for building custom packages creating custom channels and managing private Errata 4 The RHN Reference Guide This guide describes how to create ...

Page 22: ...18 ...

Page 23: ...ment The rest of this chapter describes possible configurations and explains their benefits 3 1 Single Satellite Topology The simplest configuration is to use a single RHN Satellite to serve your entire network This configuration is adequate to service a medium size group of clients and network The disadvantage of using one RHN Satellite is that performance will be compromised as the number of cli...

Page 24: ...ad is to install RHN Proxy Servers below a RHN Satellite These Proxies connect to the Satellite for RPMs from Red Hat Network and custom packages created locally In essence the Proxies act as clients of the Satellite This vertically tiered configuration requires that channels and RPMs be created only on the RHN Satellite In this manner the Proxies inherit and then serve packages from a central loc...

Page 25: ...Satellite Proxy Vertically Tiered Topology 21 Figure 3 3 Satellite Proxy Vertically Tiered Topology ...

Page 26: ...22 ...

Page 27: ...l NTP on the Satellite and separate database if it exists and select the appropriate time zone All client systems should already be running the ntpd daemon and be set to the correct time zone Due to potential complications it is strongly advised that the home partition is locally mounted 4 2 RHN Satellite Installation Program The following instructions describe how to run the RHN Satellite Install...

Page 28: ...to assist with your installation process To view these options enter the following command install pl help 6 The script first runs through a pre requisite check These checks make certain that all prerequisites from Chapter 2 Requirements are met before proceeding with the installation Starting the Red Hat Network Satellite installer Performing pre install checks Pre install checks complete Beginni...

Page 29: ...11 Once database installation is complete or once the connection to the database is established the Satellite is configured Setting up environment and users 12 In order to activate the Satellite you must provide it with the location of your Satellite certificate Activating Satellite Where is your satellite certificate file root example cert 13 The next step is to create a CA cert for the Satellite...

Page 30: ...N of your Satellite via a web browser Create the satellite administrator account also referred to as the Organization Administrator and click the Create Login button to move to the next screen the Your RHN screen Figure 4 1 Admin Account Creation 16 A blue text box appears at the top of the screen indicating that you can now custom configure the Satellite and its behavior To do so click the bold c...

Page 31: ... Program 27 Figure 4 2 Final Configuration Prompt 17 The Satellite Configuration General Configuration page allows you to alter the most basic Satellite settings such as the admin email address and whether Monitoring is enabled ...

Page 32: ...in are used to mail monitoring notification messages to administration This is required only if you intend to receive alert notifications from probes If you do provide the mail server exchanger and domain to be used Note that sendmail must be configured to handle email redirects of notifications Refer to Section 4 4 Sendmail Configuration for instructions When finished click Continue The RHN Regis...

Page 33: ...e to the file and select it To input its contents open your certificate in a text editor copy all lines and paste them directly into the large text field at the bottom Red Hat recommends using the file locator as it is less error prone Click Validate Certificate to continue If you receive errors related to DNS ensure your Satellite is configured correctly Refer to Section 7 4 Host Not Found Could ...

Page 34: ... central RHN Servers The required fields are pre populated with values derived from previous installation steps Ensure this information is accurate Checkboxes offer options for including built in security SSL and GNU Privacy Guard GPG features both of which are advised In addition you may enable remote command acceptance and remote configuration management of the systems to be bootstrapped here Bo...

Page 35: ...ration Restart page contains the final step in configuring the Satellite Click the Restart button to restart the Satellite in order to incorporate all of the configuration options added on the previous screens Note that it will take between four and five minutes for the restart to finish ...

Page 36: ...Figure 4 8 Restart Complete 4 2 1 Options to the Satellite Installation Program The various options available for the Satellite Installation Program are included below for easy reference Option Usage help Print this help message answer file filename Indicates the location of an answer file to be use for answering questions asked during the installation process ...

Page 37: ...ase skip db diskspace check Do not check to make sure there is enough free disk space to install the embedded database skip db population Do not populate the database schema skip gpg key import Do not import Red Hat s GPG key skip ssl cert generation Do not generate the SSL certificates for the Satellite run updater Do not ask to install needed packages from RHN if the system is registered Table 4...

Page 38: ...elated event with a single reply Important Some more restrictive corporate mail configurations will not allow mail to be sent from an address that is not recognized as valid Therefore it may be necessary to configure rogerthat01 mail domain as a valid email address in your corporate environment Check with your mail systems administrator To configure sendmail correctly run the following commands as...

Page 39: ...obes appendix of the RHN Satellite Reference Guide for a list of available probes If you do wish to run MySQL probes subscribe the Satellite to the Red Hat Enterprise Linux AS channel and install the mysql server package either through the RHN website or by yum or up2date for earlier versions of Red Hat Enterprise Linux Two extra packages will also be downloaded in the transaction These are needed...

Page 40: ...36 ...

Page 41: ...lements 5 1 Receiving the Certificate The RHN Entitlement Certificate is an XML document that looks something like this xml version 1 0 encoding UTF 8 rhn cert version 0 1 rhn cert field name product RHN SATELLITE 001 rhn cert field rhn cert field name owner Clay s Precious Satellite rhn cert field rhn cert field name issued 2005 01 11 00 00 00 rhn cert field rhn cert field name expires 2005 03 11...

Page 42: ...ing the deactivation at the top of the page 5 You may then browse to the location of your new RHN Entitlement Certificate or paste its contents into the text field provided When done click Update Certificate Your Satellite now has access to additional channels and client entitlements outlined in the new certificate You may now synchronize it with the central RHN Servers Refer to Chapter 6 Importin...

Page 43: ...cted option Here are some examples depicting use of the tool and these options To validate an RHN Entitlement Certificate s sanity only rhn satellite activate sanity only rhn cert path to demo cert To validate an RHN Entitlement Certificate and populate the local database rhn satellite activate disconnected rhn cert path to demo cert To validate an RHN Entitlement Certificate and populate both the...

Page 44: ...day for all seven days the Satellite Administrator s email receives notification that the certificate has expired When the grace period is over the Satellite becomes unavailable users will be unable to login to the web UI and all client side tools will present an Expired Certificate message Finally the Satellite Administrator receives a daily email alerting them that the certificate has expired ...

Page 45: ...res Channel metadata Blacklists RPMs RPM metadata Errata Kickstarts The amount of time it takes rhn satellite exporter to export data is dependent on the number and size of the channels being exported Using the no packages no kickstarts no errata and no rpms options reduces the amount of time required for rhn satellite exporter to run but also prevents potentially useful information from being exp...

Page 46: ...o kickstarts Do not process kickstart data provisioning only debug level LEVEL_NUMBER Override the amount of messaging sent to log files and generated on the screen set in etc rhn rhn conf 0 6 2 is default start date START_DATE The start date limit that the last modified dates are compared against Must be in the format YYYYMMDDHH24MISS for example 20071225123000 end date END_DATE The end date limi...

Page 47: ...tributing packages via RHN Satellite the packages must first be uploaded to the Satellite This section describes the process for importing packages and other channel data Important To populate custom channels correctly you must first populate at least one Red Hat base channel The RHN Satellite Synchronization Tool creates the necessary directory structures and permissions without these the custom ...

Page 48: ...purposes with the effect of forcing the tool to stop when that step is complete All steps that precede it however will have taken place Therefore calling the rpms step will automatically ensure the channels and channel families steps take place first To initiate an individual step use the step option like so satellite sync step rpms In addition to step the RHN Satellite Synchronization Tool offers...

Page 49: ... http proxy username PROXY_USERNAME Include the username for the alternative HTTP proxy server http proxy password PROXY_PASSWORD Include the password for the alternative HTTP proxy server ca cert CA_CERT Use an alternative SSL CA certificate by including the full path and filename systemid SYSTEM_ID For debugging only Include path to alternative digital system ID batch size BATCH_SIZE For debuggi...

Page 50: ...d Hat Enterprise Linux If the desired Channel Content ISOs do not appear ensure your RHN Entitlement Certificate has been uploaded to RHN and correctly identifies the target channels Channel Content ISOs are mounted and then copied to a temporary repository directory Before mounting the ISOs ensure the temporary repository has enough disk space to copy all the contents into a single directory For ...

Page 51: ...nd such as the following scp r root storage example com var sat backup var rhn sat import Now that the data is available you can procede to performing the import 6 2 3 Running the Import The rhns satellite tools package provides the satellite sync program for managing all package channel and errata imports and synchronizations The following process assumes in the previous step the user has copied ...

Page 52: ...Identifying Errata associated with the packages and including them in the repository Individually use the step errata option After running the preceding sample command the population of the channel should be complete All of the packages should have been moved out of the repository this can be verified with the command cd var rhn sat import ls alR grep rpm If all RPMs have been installed and moved ...

Page 53: ...t to sync data as frequently as possible and who can initiate connections outside of their own environments the satellite sync can be run over the Internet through SSL This is the default setting for the satellite sync script For example satellite sync c rhel i386 as 3 This connects to central Red Hat Network Servers and performs the process described above Multiple channels can be included by rep...

Page 54: ...for secure connection 6 4 1 Recommended Models for Inter Satellite Sync The Inter Satellite Sync feature for Satellite provides facilities for synchronizing content between two or more Satellites The following are some of the more typical uses that show the possibilities of Inter Satellite Sync and help guide you in determining how to make the most of this feature in your environment Note If you a...

Page 55: ...ed but all changes from master Satellite are synchronized to Slave Satellite Figure 6 3 Slave Satellites are maintained exactly as the master Satellite In this example the master Satellite for example a software or Hardware vendor provides data to its customer These changes are regularly synchronized to slave Satellites 6 4 2 Configuring the Master RHN Satellite Server To use the inter satellite s...

Page 56: ...SSL configuration for use with RHN Satellite refer to Chapter 3 SSL Infrastructure in the RHN Satellite Client Configuration Guide Once the SSL certificate is placed on the slave server you can see the list of channels available to sync from the master Satellite server by running the following command replacing the master satellite example com with the hostname of the master Satellite server satel...

Page 57: ...nc c your channel This command downloads directly from data from rhn_parent usually RHN Hosted rhn redhat com Then to sync from the staging Satellite server address the administrator runs satellite sync iss parent staging satellite example com c custom channel 6 5 2 Bi directional sync Administrators can configure an environment where two RHN Satellite servers act as masters of each other For exam...

Page 58: ...llows to maintain the integrity of the source org If the source content belongs to a base org any Red Hat content it will default to the base org even if a destination org is specified This ensures that the specified content is always in that privileged base org If an org is specified at the command line it will import content from that org If no org is specified it will default to the source org ...

Page 59: ... you must have the spacewalk reports package installed spacewalk report allows administrators to organize and display reports about content systems and user resources across the Satellite Using spacewalk report you can receive reports on System Inventory Lists all of the systems registered to the Satellite Entitlements Lists all organizations on the Satellite and sorted by system or channel entitl...

Page 60: ...2 Log Files Virtually every troubleshooting step should start with a look at the associated log file or files These provide invaluable information about the activity that has taken place on the device or within the application that can be used to monitor performance and ensure proper configuration See Table 7 2 Log Files for the paths to all relevant log files Component Task Log File Location Apac...

Page 61: ... RHN Satellite and its various components This can be done with the command usr sbin rhn satellite status In addition you can obtain the status of components such as the Apache Web server and the RHN Task Engine individually For instance to view the status of the Apache Web server run the command service httpd status If the Apache Web server isn t running entries in your etc hosts file may be inco...

Page 62: ... 4 Host Not Found Could Not Determine FQDN Because RHN configuration files rely exclusively on fully qualified domain names FQDN it is imperative key applications are able to resolve the name of the RHN Satellite into an IP address Red Hat Update Agent Red Hat Network Registration Client and the Apache Web server are particularly prone to this problem with the RHN applications issuing errors of ho...

Page 63: ... the following command date The results should be nearly identical for all machines and within the notBefore and notAfter validity windows of the certificates Check the client certificate dates and times with the following command openssl x509 dates noout in usr share rhn RHN ORG TRUSTED SSL CERT Check the Satellite server certificate dates and times with the following command openssl x509 dates n...

Page 64: ... log and can attach the file to your Support ticket for engineers to assist you 7 7 Updated Software Components Do not subscribe your RHN Satellite to any of the following child channels available from RHN s central servers Red Hat Developer Suite Red Hat Application Server Red Hat Extras Subscribing to these channels and updating your Satellite such as by running yum on Red Hat Enterprise Linux 5...

Page 65: ...nd database character sets get diskspace available timestamping creating tarball may take some time tmp satellite debug tar bz2 removing temporary debug tree Debug dump created stored in tmp satellite debug tar bz2 Deliver the generated tarball to your RHN contact or support channel Once finished email the new file from the tmp directory to your Red Hat representative for immediate diagnosis ...

Page 66: ...62 ...

Page 67: ...s messages from all of its services at once 8 2 Updating the Satellite If any critical updates are made to RHN Satellite they will be released in the form of an Erratum for the RHN Satellite For RHN Satellite systems that may be connected to the Internet the best method for applying these Errata Updates is using the Red Hat Update Agent via Red Hat Network Since the RHN Satellite is subscribed to ...

Page 68: ...ds backing up rhnsat Embedded Database only never to be backed up while the database is running refer to Section 8 4 2 Backing up the Database etc sysconfig rhn etc rhn etc sudoers etc tnsnames ora var www html pub var satellite redhat 1 custom RPMs root gnupg root ssl build If possible back up var satellite as well In case of failure this will save lengthy download time Since var satellite specif...

Page 69: ...tabase status and restart it when necessary You must be the oracle user to invoke RHN DB Control To begin switch to the oracle user su oracle Next issue the following command db control option 8 4 1 DB Control Options RHN DB Control offers many command line options To use them as oracle insert the option and the appropriate value if needed after the db control command Option Description help Lists...

Page 70: ...h SQL statement Because the objects in a database can be constantly changing statistics must be regularly updated so that they accurately describe these database objects Statistics are maintained automatically by Oracle However if your database has performance issues after a significant amount of data changes consider performing manual gathering of statistics Note After deleting large amount of da...

Page 71: ...ron jobs For instance back up the system at 3 a m and then copy the backup to the separate repository partition disk or system at 6 a m 8 4 3 Verifying the Backup Backing up the Embedded Database is useful only if you can ensure the integrity of the resulting backup RHN DB Control provides two methods for reviewing backups one brief one more detailed To conduct a quick check of the backup s timest...

Page 72: ...ificates from it to the secondary Refer to the Deploying the CA SSL Public Certificate to Clients section of the RHN Client Configuration Guide for precise instructions 6 Change DNS to point to the new machine or configure your load balancer appropriately 8 6 Establishing Redundant Satellites with Stand Alone DB In keeping with the cloning option available to Satellite with Embedded Database you m...

Page 73: ...w one copy that directory s contents to the primary Satellite 6 Turn off the RHN Task Engine on the secondary Satellite with the following command sbin service taskomatic stop You may use custom scripting or other means to establish automatic start up failover of the RHN Task Engine on the secondary Satellite Regardless it will need to be started upon failover 7 Share channel package data by defau...

Page 74: ... Update Errata cache now link on this page 8 7 1 1 Maintaining the RHN Task Engine The default display shows the status of the RHN Task Engine This tool is a daemon that runs on the Satellite server itself and performs routine operations such as database cleanup Errata mailings etc that must be performed in the background The page displays the execution times for various activities carried out by ...

Page 75: ... Click the delete user link at the top right corner of the page Figure 8 2 User Deletion A confirmation page appears explaining that this removal is permanent To continue click Delete User at the bottom right corner of the page Note The Organization Administrator role must be removed from the user s profile before deleting the user from the RHN Satellite Failing to do so causes the delete operatio...

Page 76: ...Continental United States business hours are roughly 8 00 AM to 9 00 PM EST UTC 5 due to four time zones Monday through Friday These hours may vary seasonally by one hour Further Red Hat strongly recommends that synchronization occur randomly for best performance This automation can be set easily by the addition of a simple cron job To do this edit the crontab as root crontab e This opens the cron...

Page 77: ... below Note To ensure that PAM authentication functions properly install the pam devel package Set up a PAM service file usually etc pam d rhn satellite and have the Satellite use it by adding the following line to etc rhn rhn conf pam_auth_service rhn satellite This assumes the PAM service file is named rhn satellite To enable a user to authenticate against PAM select the checkbox labeled Pluggab...

Page 78: ...art Finally install the osad package on all client systems to receive pushed actions The package can be found within the RHN Tools child channel for the systems on the RHN Satellite Warning Do not install the osad package on the Satellite server as it will conflict with the osa dispatcher package installed on the Satellite Once installed start the service on the client systems as root using the co...

Page 79: ...y example com 8080 server satellite http_proxy_username server satellite http_proxy_password Database connection information username password SID default_db test01 test01 test01 DON T TOUCH ANY OF THE FOLLOWING web satellite 1 web session_swap_secret_1 ea6c79f71cfcf307d567fed583c393b9 web session_swap_secret_2 01dee83a7b7f27157f5335744eb02327 web session_swap_secret_3 4e89e7697ce663149ca9e498cbc0...

Page 80: ...76 ...

Page 81: ...77 Appendix B Revision History Revision 1 0 Fri Feb 27 2009 ...

Page 82: ...78 ...

Page 83: ...db control options 65 db control use 65 disable services ntsysv chkconfig 16 E embedded database default location rhnsat 23 enabling push to clients 73 entitlement certificate 15 23 uploading 38 F firewall rules requirements 14 G general problems 57 GPG keys 23 H host not found error could not determine FQDN 58 how it works 3 httpd 16 I import channel content process 46 importing satellite data 41...

Page 84: ...entitlement 23 RHN Satellite Synchronization Tool 43 options 44 RHN Task Engine 70 rhn satellite 63 rhn satellite activate 38 activating 39 options 38 rhn satellite exporter 41 export 43 options 42 rhn conf sample file 75 rhns satellite tools 38 47 rogerthat01 mail domain 34 S Satellite Installation Program options 32 Satellite Ports 14 satellite redundancy 68 satellite debug 60 satellite sync 47 ...

Reviews:

No comments