manualshive.com logo in svg

Red Hat NETWORK SATELLITE SERVER 3.6, Installation Manual

Red Hat NETWORK SATELLITE SERVER 3.6 Installation Manual is available for free download. Obtain the manual from manualshive.com to easily understand and set up your network satellite server. This detailed guide will assist you in optimizing your server's performance and managing your infrastructure efficiently.

Share
Download
background image

Chapter 2. Requirements

11

The RHN Satellite Server solution can be firewalled from the Internet, but it must be able to issue

outbound connections to rhn.redhat.com and xmlrpc.rhn.redhat.com on ports 80 and 443.

Synchronized System Times
There is great time sensitivity when connecting to a Web server running SSL (Secure Sockets

Layer); it is imperative the time settings on the clients and server be reasonably close together so

the SSL certificate does not expire before or during use. For this reason, Red Hat requires the Satel-

lite and all client systems to use Network Time Protocol (NTP). This also applies to the separate

database machine in RHN Satellite Server with Stand-Alone Database, which must also be set to

the same time zone as the Satellite.

Fully Qualified Domain Name (FQDN)
The system upon which the RHN Satellite Server will be installed must resolve its own FQDN

properly. If this is not the case, cookies will not work properly on the website.

Functioning Domain Name Service (DNS)
For the RHN Satellite Server’s domain name to be resolved by its clients, it and they must all be

linked to a working DNS server in the customer environment.

An Entitlement Certificate
The customer will receive, via email from the sales representative, a signed Entitlement Certificate

explaining the services provided by Red Hat through RHN Satellite Server. This certificate will be

required during the installation process.

A Red Hat Network Account
Customers who will be connecting to the central Red Hat Network Servers to receive incremental

updates will need an external account with Red Hat Network. This account should be set up at the

time of purchase with the sales representative.

Backups of Login Information
It is imperative customers keep track of all primary login information. For RHN Satellite Server, this

includes usernames and passwords for the Organization Administrator account on rhn.redhat.com,

the primary administrator account on the Satellite itself, SSL certificate generation, and database

connection (which also requires a SID, or net service name). Red Hat strongly recommends this

information be copied onto two separate floppy disks, printed out on paper, and stored in a fireproof

safe.

In addition to these requirements, it is recommended the RHN Satellite Server be configured in the

following manner:

The entire RHN Satellite Server solution should be protected by a firewall if the Satellite will be

accessing, or be accessed via the Internet. An Internet connection is not required for RHN Satellite

Servers running in completely disconnected environments as this feature instead uses update CDs

to synchronize the Satellite with the central Red Hat Network. All other RHN Satellite Servers

should be synchronized directly over the Internet.

All unnecessary ports should be firewalled off. Client systems connect to RHN Satellite Server over

ports 80 and 443 only. In addition, if you plan to enable the pushing of actions from the Satellite

to client systems, as described in Section 8.10

Enabling Push to Clients

, you must allow inbound

connections on port 5222. Finally, if the Satellite will also push to an RHN Proxy Server, you must

also allow inbound connections on port 5269.

No system components should be directly, publicly available. No user other than the system admin-

istrators should have shell access to these machines.

All unnecessary services should be disabled using

ntsysv

or

chkconfig

.

The

httpd

service should be enabled.

Summary of Contents for NETWORK SATELLITE SERVER 3.6

Page 1: ...RHN Satellite Server 3 6 Installation Guide...

Page 2: ...n logo RPM Maximum RPM the RPM logo Linux Library PowerTools Linux Undercover RHmember RHmember More Rough Cuts Rawhide and all Red Hat based trademarks and logos are trademarks or registered trademar...

Page 3: ...ertificate 29 5 2 Uploading the RHN Entitlement Certificate 29 5 3 Managing the RHN Certificate with RHN Satellite Activate 30 5 3 1 Command Line Entitlement Options 30 5 3 2 Activating the Satellite...

Page 4: ...ng the Backup 48 8 4 4 Restoring the Database 48 8 5 Cloning the Satellite with Embedded DB 48 8 6 Establishing Redundant Satellites with Stand Alone DB 49 8 7 Conducting Satellite Specific Tasks 50 8...

Page 5: ...ems with Red Hat Network When a client system requests package updates only the applicable packages for the client are returned based upon the software profile stored on the RHN Servers Advantages of...

Page 6: ...nels and child channels A base channel consists of a list of packages based on a specific architecture and Red Hat release A child channel is a channel associated with a base channel but contains extr...

Page 7: ...ts connected to RHN Satellite Server be running the latest update of Red Hat Enterprise Linux to ensure proper connectivity When a client requests updates the organization s internal RHN Satellite Ser...

Page 8: ...tion seeks to provide a definitive list of all required and recommended steps from evaluation through custom package deployment They should take place in roughly this order 1 After an evaluation you c...

Page 9: ...The rhn org trusted ssl cert noarch rpm will already be there 12 You download and install from the Satellite the configuration files and rhn org trusted ssl cert noarch rpm on the remaining client sys...

Page 10: ...6 Chapter 1 Introduction...

Page 11: ...t by conducting an Everything install Red Hat this installs packages that if not properly managed could pose security hazards For this reason Red Hat recommends obtaining the desired package set in th...

Page 12: ...btained from your Red Hat representative if synchronization isn t possible such as in a disconnected environment 2 2 Hardware Requirements The following hardware configuration is required for the two...

Page 13: ...will be stored Default Red Hat channels contain approximately 3 GB of packages each and that size grows with each synchronization customers must also account for the space requirements of packages in...

Page 14: ...RHN Satellite Server with full DDL and DML access to that user s default tablespace The user will need standard connection information for the database at the time of installation The precise access...

Page 15: ...up at the time of purchase with the sales representative Backups of Login Information It is imperative customers keep track of all primary login information For RHN Satellite Server this includes use...

Page 16: ...rver up and running 2 The RHN Client Configuration Guide This guide explains how to configure the systems to be served by an RHN Proxy Server or RHN Satellite Server This will also likely require refe...

Page 17: ...cribes possible configurations and explains their benefits 3 1 Single Satellite Topology The simplest configuration is to use a single RHN Satellite Server to serve your entire network This configurat...

Page 18: ...Proxies act as clients of the Satelllite This vertically tiered configuration requires that channels and RPMs be created only on the RHN Satellite Server In this manner the Proxies inherit and then se...

Page 19: ...e Linux AS Important If you plan to obtain Monitoring level service you must install your RHN Satellite Server on Red Hat Enterprise Linux AS 3 This is the only supported base operating system for Sat...

Page 20: ...that the RHN Satellite Server Installation Program updates the kernel as well as all required packages 6 Launch the RHN Satellite Server Installation Program as root with the command mnt cdrom instal...

Page 21: ...s address will receive all mail generated by the Satellite including sometimes large quantities of error related tracebacks To stem this flow consider establishing mail filters that capture messages w...

Page 22: ...administrator for the appropriate values Then click Test DB Connection The Database Schema page appears Figure 4 4 Database Schema 10 No input is required on the Database Schema page other than your...

Page 23: ...do If you intend to monitor systems with this Satellite select both the Enable monitoring backend and Enable monitoring scout checkboxes In addition this page allows you to configure the Satellite to...

Page 24: ...n 4 3 Sendmail Configuration for instruc tions When finished click Continue The RHN Registration page appears Figure 4 8 RHN Registration 14 The RHN Registration page enables you to register the Satel...

Page 25: ...cate 15 The RHN Satellite Entitlement Certificate page gathers your RHN Entitlement Certificate either by obtaining its location or collecting its contents To identify the certificate s path click Bro...

Page 26: ...nnel metadata This is possible during installation only if you chose to register your Satellite with RHN To synchronize select the Perform Satellite Sync checkbox and click Continue After the installa...

Page 27: ...s with your and your organization s information As always ensure this information exists on the backups of login information described in Chapter 2 Requirements The CA Cert Common Name field may alrea...

Page 28: ...ervers The required fields are prepopulated with values derived from previous installation steps Ensure this information is accurate Checkboxes offer options for including built in security SSL and GN...

Page 29: ...u ration Click Complete to reboot the system and create the Satellite Administrator account The Satellite Restart page appears Figure 4 14 Satellite Restart 20 The Satellite Restart page requires no u...

Page 30: ...information exists on the backups of login information described in Chapter 2 Requirements When finished click Create Login The Account Created page appears Figure 4 16 Account Created 22 The Account...

Page 31: ...single reply To configure sendmail correcly edit the etc aliases file on the mail server as root and add the following line rogerthat01 opt notification scripts ack_enqueuer pl Then also as root edit...

Page 32: ...28 Chapter 4 Installation...

Page 33: ...ted here for use by customers who have received a new RHN Entitlement Certificate such as one reflecting an increase in the number of entitlements 5 1 Receiving the Certificate The RHN Entitlement Cer...

Page 34: ...ntral RHN Servers Refer to Chapter 6 Importing and Synchronizing 5 3 Managing the RHN Certificate with RHN Satellite Activate For disconnected Satellites or customers who prefer to work locally Red Ha...

Page 35: ...a second step if you chose the disconnected option Here are some examples depicting use of the tool and these options To validate an RHN Entitlement Certificate s sanity only rhn satellite activate s...

Page 36: ...32 Chapter 5 Entitlements...

Page 37: ...tail in a moment 6 1 1 Import Sync Steps The RHN Satellite Synchronization Tool works incrementally or in steps For it to obtain Errata information it must first know the packages contained For the pa...

Page 38: ...ackage data no errata Do not process Errata information no kickstarts Do not process kickstart data provisioning only force all packages Forcibly process all package data without conducting a diff cac...

Page 39: ...ocess This cache which exists by default in var cache rhn can be completely refreshed every time the process is run be partially refreshed or be left in place entirely The closer to a full refresh the...

Page 40: ...click Channels in the top navigation bar and then the name of the channel for your version of RHN Satellite Server Click the Downloads tab and use the instructions on the page to obtain the Channel Co...

Page 41: ...the channels available for import This is accomplished with the command satellite sync list channels mount point var rhn sat import The next step is to initiate the import of a specific channel Do thi...

Page 42: ...ndalone environment any update advisories published by RHN must be manually imported and synchronized by the administrator of the RHN Satellite Server During synchronization over the Internet the RHN...

Page 43: ...hannels are specified all channels on the Satellite will be freshened 6 3 2 Synchronizing Errata and Packages via Local Media For customers who cannot connect directly to RHN the option of delivered p...

Page 44: ...40 Chapter 6 Importing and Synchronizing...

Page 45: ...le Location Apache HTTP Server var log httpd directory RHN Satellite Server var log rhn directory RHN Satellite Server Installation Program var log rhn_satellite_install log Database population var lo...

Page 46: ...ur Satellite s database run the command rhn charsets If the administrator isn t getting email from the RHN Satellite Server confirm the correct email ad dresses have been set for traceback_mail in etc...

Page 47: ...ing installed on a machine whose time had been improperly set During the Satellite installation process SSL certificates are created with inaccurate times If the Satellite s time is then corrected the...

Page 48: ...Section 6 1 3 Import Sync Cache Refresh for information on the available levels 7 6 Satellite Debugging by Red Hat If you ve exhausted these troubleshooting steps or want to defer them to Red Hat Net...

Page 49: ...ata for the RHN Satellite Server For RHN Satellite Server systems that may be connected to the Internet the best method for applying these Errata Updates is using the Red Hat Update Agent via Red Hat...

Page 50: ...ository it can be regenerated with satellite sync Red Hat recommends the entire var satellite tree be backed up In the case of disconnected satellites var satellite must be backed up Backing up only t...

Page 51: ...e database instance This can also be accomplished by issuing the service rhn database stop command as root verify DIRNAME Verifies the contents of the backup kept in DIRNAME This command checks the md...

Page 52: ...ssing files issue this command as oracle db control examine DIRNAME To conduct a more thorough review including checking the md5sum of each of the files in the backup issue this command as oracle db c...

Page 53: ...s with Stand Alone Database may be run as active as well as standby This is entirely up to your network topology and is independent of the steps listed here To establish this redundancy first install...

Page 54: ...by default located in var satellite between the Satellites over some type of networked storage device This eliminates data replication and ensures a consistent store of data for each Satellite 8 Make...

Page 55: ...rrata mailings etc that must be performed in the background The page displays the execution times for various activities carried out by the daemon Administrators should ensure the RHN Task Engine stay...

Page 56: ...User List click the name of the user to be removed This takes you to the User Details page Click the delete user link at the top right corner of the page Figure 8 2 User Deletion A confirmation page w...

Page 57: ...6 1 2 Im port Sync Options for the full list of options Once you exit from the editor the modified crontab is installed immediately 8 9 Implementing PAM Authentication As security measures become incr...

Page 58: ...m fails to connect To take advantage of this feature you must first configure your firewall rules to allow connections on the required port s as described in Section 2 4 Additional Requirements Then y...

Page 59: ...teway example com 8080 server satellite http_proxy_username server satellite http_proxy_password Database connection information username password SID default_db test01 test01 test01 DON T TOUCH ANY O...

Page 60: ...56 Appendix A Sample RHN Satellite Server Configuration File...

Page 61: ...5 of RHN Satellite Server 15 sendmail 27 installation task list 4 L log files 41 M maintenance 45 R Red Hat Network introduction 1 redundant satellite satellite redundancy 49 requirements 7 additional...

Page 62: ...understand 2 tool use 50 topologies 13 multiple satellites horizontally tiered 13 satellite and proxies vertically tiered 14 single satellite 13 traceback 2 troubleshooting 41 U updating the RHN Satel...

Reviews:

No comments

Related manuals for NETWORK SATELLITE SERVER 3.6

M-Audio KEY RIG Quick Start Manual preview
KEY RIG
Brand: M-Audio Pages: 4
M-Audio Jamlab Quick Start Manual preview
Jamlab
Brand: M-Audio Pages: 4
M-Audio DRUM AND BASS RIG Kurzanleitung preview
DRUM AND BASS RIG
Brand: M-Audio Pages: 3
3Com TRANSCEND EM/NT 6.3 Installation Manual preview
TRANSCEND EM/NT 6.3
Brand: 3Com Pages: 39
American DJ myDMX 2.0 User Instructions preview
myDMX 2.0
Brand: American DJ Pages: 21
MACROMEDIA FLEX-CREATING ADVANCED COMPONENTS Manual preview
FLEX-CREATING ADVANCED COMPONENTS
Brand: MACROMEDIA Pages: 24
Lucent Technologies Integrated Solution II System Manager'S Manual preview
Integrated Solution II
Brand: Lucent Technologies Pages: 177
Red Hat APPLICATION STACK 1.1 RELEASE Release Note preview
APPLICATION STACK 1.1 RELEASE
Brand: Red Hat Pages: 30
ZyXEL Communications IPSEC VPN CLIENT Brochure preview
IPSEC VPN CLIENT
Brand: ZyXEL Communications Pages: 2
DCP Productions Motif XS Owner'S Manual preview
Motif XS
Brand: DCP Productions Pages: 76
3xLogic Vigil Server V5.00 User Manual preview
Vigil Server V5.00
Brand: 3xLogic Pages: 134
IBM High Performance Storage System HPSS Installation Manual preview
High Performance Storage System HPSS
Brand: IBM Pages: 311
Barracuda Networks 4 Administrator'S Manual preview
4
Brand: Barracuda Networks Pages: 71
MACROMEDIA FLASH 8-INTRODUCTION TO FLASH LITE 2.X... Introduction Manual preview
FLASH 8-INTRODUCTION TO FLASH LITE 2.X...
Brand: MACROMEDIA Pages: 34
Xerox 850DP - Phaser Color Solid Ink Printer User Manual preview
850DP - Phaser Color Solid Ink Printer
Brand: Xerox Pages: 61
Autodesk AUTOCAD PLANT 3D 2011 - SYSTEM REQUIREMENTS Tutorials Manual preview
AUTOCAD PLANT 3D 2011 - SYSTEM REQUIREMENTS
Brand: Autodesk Pages: 840
Red Hat JBOSS DEVELOPER STUDIO Datasheet preview
JBOSS DEVELOPER STUDIO
Brand: Red Hat Pages: 2
Red Hat ENTERPRISE LINUX 6 Datasheet preview
ENTERPRISE LINUX 6
Brand: Red Hat Pages: 8

Brands by name

Popular brands

Load more brands