Red Hat NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT Скачать руководство пользователя

Страница: 1 / 74

Red Hat Network

Satellite 5.2

Installation Guide

Red Hat Network Satellite

Содержание NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT

Страница 1: ...Red Hat Network Satellite 5 2 Installation Guide Red Hat Network Satellite ...

Страница 2: ...Installation Guide Red Hat Network Satellite 5 2 Installation Guide Red Hat Network Satellite Edition 5 2 ...

Страница 3: ...ed RHN Satellite Server Installation 29 4 4 Sendmail Configuration 30 4 5 MySQL Installation 31 5 Entitlements 33 5 1 Receiving the Certificate 33 5 2 Uploading the RHN Entitlement Certificate 34 5 3 Managing the RHN Certificate with RHN Satellite Activate 34 5 3 1 Command Line Entitlement Options 34 5 3 2 Activating the Satellite 35 5 4 Satellite Entitlement Certificate Expiration 35 6 Importing ...

Страница 4: ... 55 8 4 2 Backing up the Database 56 8 4 3 Verifying the Backup 57 8 4 4 Restoring the Database 57 8 5 Cloning the Satellite with Embedded DB 57 8 6 Establishing Redundant Satellites with Stand Alone DB 58 8 7 Conducting Satellite Specific Tasks 59 8 7 1 Using the Tools menu 59 8 7 2 Deleting Users 60 8 8 Automating Synchronization 62 8 9 Implementing PAM Authentication 63 8 10 Enabling Push to Cl...

Страница 5: ... their client systems with Red Hat Network When a client system requests package updates only the applicable packages for the client are returned based upon the software profile stored on the RHN Servers Advantages of using Red Hat Network include Scalability with Red Hat Network a single system administrator can set up and maintain hundreds or thousands of Red Hat systems more easily accurately a...

Страница 6: ...ypes of channels base channels and child channels A base channel consists of a list of packages based on a specific architecture and Red Hat release A child channel is a channel associated with a base channel that contains extra packages Organization Administrator An Organization Administrator is a user role with the highest level of control over an organization s Red Hat Network account Members o...

Страница 7: ... RPC requests RHN Satellite Server Web interface advanced system system group user and channel management interface RPM Repository package repository for Red Hat RPM packages and custom RPM packages identified by the organization Management Tools Database and file system synchronization tools RPM importing tools Channel maintenance tools Web based Errata management tools Web based User management ...

Страница 8: ...ups and users The RHN Satellite Server management tools are used to synchronize the RHN Satellite Server database and package repository with Red Hat Network The RHN Satellite Server import tool allows the system administrator to include custom RPM packages in the package repository RHN Satellite Server can be used in conjunction with RHN Proxy Server to deliver a distributed self contained Red Ha...

Страница 9: ... available through the Downloads tab of your Satellite s Channel Details page These Channel Content ISOs differ from the distribution ISOs previously mentioned in that they contain metadata necessary for parsing and serving packages by Satellite 6 If installing a Stand Alone Database prepare your database instance using the formula provided in Chapter 2 Requirements 7 Install Red Hat Enterprise Li...

Страница 10: ...grade Documentation Package rhn upgrade New Installation ISO 1 6 1 Satellite Certificate To obtain a Satellite certificate visit Red Hat support at http support redhat com 1 6 2 Satellite Upgrade Documentation Package rhn upgrade There are two ways to obtain this RPM 1 Ensure the satellite is registered to RHN and to the Red Hat Network Satellite Channel then using yum to install the rhn upgrade p...

Страница 11: ... read SELINUX permissive and reboot the system More in depth coverage of SELinux is available at http www redhat com docs You may also refer to the Red Hat Knowledgebase article on SELinux and RHN Satellite Server at http kbase redhat com faq Satellite installation disc or ISO this contains the RHN Satellite Server Installation Program All packages required in order to suport the Program are insta...

Страница 12: ...tabase and Embedded Database Satellite Hardware Requirements The following hardware configuration is required for the Stand Alone Database Two processors 2 GB of memory See Section 2 3 Database Requirements for instructions on estimating the tablespace of the database and setting its environment variables Keep in mind the frequency with which client systems connect to the Satellite is directly rel...

Страница 13: ...s are to be established for testing and staging of packages they must be included in this formula Keep in mind the database storage needs may grow rapidly depending upon the variance of the following factors The number of public Red Hat packages imported typical 5000 The number of private packages to be managed typical 500 The number of systems to be managed typical 1000 The number of packages ins...

Страница 14: ...before the RHN Satellite Server installation Full Access Client systems need full network access to the RHN Satellite Server solution s services and ports Firewall Rules RHN strongly recommends firewalling the RHN Satellite Server solution from the Internet However various TCP ports must be opened on the Satellite depending on your implementation of RHN Satellite Server Port Direction Reason 80 Ou...

Страница 15: ... Time Protocol NTP This also applies to the separate database machine in RHN Satellite Server with Stand Alone Database which must also be set to the same time zone as the Satellite Fully Qualified Domain Name FQDN The system upon which the RHN Satellite Server will be installed must resolve its own FQDN properly If this is not the case cookies will not work properly on the website Note It is impo...

Страница 16: ...eproof safe In addition to these requirements it is recommended that the RHN Satellite Server be configured in the following manner The entire RHN Satellite Server solution should be protected by a firewall if the Satellite accesses or is accessed via the Internet An Internet connection is not required for RHN Satellite Servers running in completely disconnected environments This feature instead u...

Страница 17: ...rver up and running 2 The RHN Client Configuration Guide This guide explains how to configure the systems to be served by an RHN Proxy Server or RHN Satellite Server This will also likely require referencing The RHN Reference Guide which contains steps for registering and updating systems 3 The RHN Channel Management Guide This guide identifies in great detail the recommended methods for building ...

Страница 18: ...14 ...

Страница 19: ...environment The rest of this chapter describes possible configurations and explains their benefits 3 1 Single Satellite Topology The simplest configuration is to use a single RHN Satellite Server to serve your entire network This configuration is adequate to service a medium size group of clients and network The disadvantage of using one RHN Satellite Server is that performance will be compromised...

Страница 20: ...o install RHN Proxy Servers below a RHN Satellite Server These Proxies connect to the Satellite for RPMs from Red Hat Network and custom packages created locally In essence the Proxies act as clients of the Satellite This vertically tiered configuration requires that channels and RPMs be created only on the RHN Satellite Server In this manner the Proxies inherit and then serve packages from a cent...

Страница 21: ...Satellite Proxy Vertically Tiered Topology 17 Figure 3 3 Satellite Proxy Vertically Tiered Topology ...

Страница 22: ...18 ...

Страница 23: ...d separate database if it exists and select the appropriate time zone All client systems should already be running the ntpd daemon and be set to the correct time zone Due to potential complications it is strongly advised that the home partition is locally mounted 4 2 RHN Satellite Server Installation Program The following instructions describe how to run the RHN Satellite Server Installation Progr...

Страница 24: ...ng command install pl help 6 The script first runs through a pre requisite check These checks make certain that all prerequisites from Chapter 2 Requirements are met before proceeding with the installation Starting the Red Hat Network Satellite installer Performing pre install checks Pre install checks complete Beginning installation 7 At the prompt enter the email address to which you would like ...

Страница 25: ...e is established the Satellite is configured Setting up environment and users 12 In order to activate the Satellite you must provide it with the location of your Satellite certificate Activating Satellite Where is your satellite certificate file root example cert 13 The next step is to create a CA cert for the Satellite To do so you must answer a few questions CA cert Enter a password for the cert...

Страница 26: ...rowser Create the satellite administrator account also referred to as the Organization Administrator and click the Create Login button to move to the next screen the Your RHN screen Figure 4 1 Admin Account Creation 16 A blue text box appears at the top of the screen indicating that you can now custom configure the Satellite and its behavior To do so click the bold clicking here text at the end ...

Страница 27: ...tion Program 23 Figure 4 2 Final Configuration Prompt 17 The Satellite Configuration General Configuration page allows you to alter the most basic Satellite settings such as the admin email address and whether Monitoring is enabled ...

Страница 28: ...in are used to mail monitoring notification messages to administration This is required only if you intend to receive alert notifications from probes If you do provide the mail server exchanger and domain to be used Note that sendmail must be configured to handle email redirects of notifications Refer to Section 4 4 Sendmail Configuration for instructions When finished click Continue The RHN Regis...

Страница 29: ...gate to the file and select it To input its contents open your certificate in a text editor copy all lines and paste them directly into the large text field at the bottom Red Hat recommends using the file locator as it is less error prone Click Validate Certificate to continue If you receive errors related to DNS ensure your Satellite is configured correctly Refer to Section 7 3 Host Not Found Cou...

Страница 30: ... central RHN Servers The required fields are pre populated with values derived from previous installation steps Ensure this information is accurate Checkboxes offer options for including built in security SSL and GNU Privacy Guard GPG features both of which are advised In addition you may enable remote command acceptance and remote configuration management of the systems to be bootstrapped here Bo...

Страница 31: ...figuration Restart page contains the final step in configuring the Satellite Click the Restart button to restart the Satellite in order to incorporate all of the configuration options added on the previous screens Note that it will take between four and five minutes for the restart to finish ...

Страница 32: ...Figure 4 8 Restart Complete 4 2 1 Options to the Satellite Installation Program The various options available for the Satellite Installation Program are included below for easy reference Option Usage help Print this help message answer file filename Indicates the location of an answer file to be use for answering questions asked during the installation process ...

Страница 33: ...not want to clear the database skip db diskspace check Do not check to make sure there is enough free disk space to install the embedded database skip db population Do not populate the database schema skip gpg key import Do not import Red Hat s GPG key skip ssl cert generation Do not generate the SSL certificates for the Satellite run updater Do not ask to install needed packages from RHN if the s...

Страница 34: ...ome more restrictive corporate mail configurations will not allow mail to be sent from an address that is not recognized as valid Therefore it may be necessary to configure rogerthat01 mail domain as a valid email address in your corporate environment Check with your mail systems administrator To configure sendmail correctly run the following commands as root First create a symbolic link allowing ...

Страница 35: ...ix of the RHN Satellite Reference Guide for a list of available probes If you do wish to run MySQL probes subscribe the Satellite to the Red Hat Enterprise Linux AS channel and install the mysql server package either through the RHN website or up2date Two extra packages will also be downloaded in the transaction These are needed for the mysql server package to be installed and run successfully Onc...

Страница 36: ...32 ...

Страница 37: ...ement Certificate such as one reflecting an increase in the number of entitlements 5 1 Receiving the Certificate The RHN Entitlement Certificate is an XML document that looks something like this xml version 1 0 encoding UTF 8 rhn cert version 0 1 rhn cert field name product RHN SATELLITE 001 rhn cert field rhn cert field name owner Clay s Precious Satellite rhn cert field rhn cert field name issue...

Страница 38: ...he existing certificate Ensure you have a backup of this file by copying and pasting its contents into a text editor 4 Click Deactivate Satellite License at the bottom of the page Then click Confirm Deactivation You will receive a message describing the deactivation at the top of the page 5 You may then browse to the location of your new RHN Entitlement Certificate or paste its contents into the t...

Страница 39: ...atellite locally by inserting the RHN Entitlement Certificate into the local database 3 Activate the Satellite remotely by inserting the RHN Entitlement Certificate into the central RHN remote database This is typically accomplished during local activation but may require a second step if you chose the disconnected option Here are some examples depicting use of the tool and these options To valida...

Страница 40: ...ns active Each user that logs into the Satellite sees a banner on their Your RHN page that explains that the Satellite certificate has expired Once a day for all seven days the Satellite Administrator s email receives notification that the certificate has expired When the grace period is over the Satellite becomes unavailable users will be unable to login to the web UI and all client side tools wi...

Страница 41: ...ctures Channel metadata Blacklists RPMs RPM metadata Errata Kickstarts The amount of time it takes rhn satellite exporter to export data is dependent on the number and size of the channels being exported Using the no packages no kickstarts no errata and no rpms options reduces the amount of time required for rhn satellite exporter to run but also prevents potentially useful information from being ...

Страница 42: ...n no kickstarts Do not process kickstart data provisioning only debug level LEVEL_NUMBER Override the amount of messaging sent to log files and generated on the screen set in etc rhn rhn conf 0 6 2 is default start date START_DATE The start date limit that the last modified dates are compared against Must be in the format YYYYMMDDHH24MISS for example 20071225123000 end date END_DATE The end date l...

Страница 43: ...rst be uploaded to the Satellite This section describes the process for importing packages and other channel data Important To populate custom channels correctly you must first populate at least one Red Hat base channel The RHN Satellite Synchronization Tool creates the necessary directory structures and permissions without these the custom channel tools will not work properly For this reason you ...

Страница 44: ...nization Tool offers many other command line options To use them insert the option and the appropriate value after the satellite sync command when launching import synchronization Option Description h help Display this list of options and exit d db DB Include alternate database connect string username password SID m mount point MOUNT_POINT Import sync from local media mounted to the Satellite To b...

Страница 45: ...or debugging only Include path to alternative digital system ID systemid SYSTEM_ID For debugging only Include path to alternative digital system ID batch size BATCH_SIZE For debugging only Set maximum batch size in percent for XML database import processing Open man satellite sync for more information Table 6 2 Satellite Import Sync Options If no options are included satellite sync synchronizes al...

Страница 46: ...tifies the target channels Channel Content ISOs are mounted and then copied to a temporary repository directory Before mounting the ISOs ensure the temporary repository has enough disk space to copy all the contents into a single directory For a single channel the approximate required space is 3 GB The process to copy Channel Content ISOs is to mount each one copy its contents to the temporary rep...

Страница 47: ...ackage provides the satellite sync program for managing all package channel and errata imports and synchronizations The following process assumes in the previous step the user has copied all data to var rhn sat import The first step in importing channels into the database is listing the channels available for import This is accomplished with the command satellite sync list channels mount point var...

Страница 48: ...and cd var rhn sat import ls alR grep rpm If all RPMs have been installed and moved to their permanent locations then this count will be zero and the administrator may safely remove the temporary repository in this case var rhn sat import 6 3 Synchronizing An update channel is only as useful as the freshness of the information in that channel Since the RHN Satellite Server is designed to be a stan...

Страница 49: ...ple satellite sync c rhel i386 as 3 This connects to central Red Hat Network Servers and performs the process described above Multiple channels can be included by repeating the option If no channels are specified all channels on the Satellite will be refreshed 6 3 2 Synchronizing Errata and Packages via Local Media For customers who cannot connect their Satellite directly to RHN Red Hat recommends...

Страница 50: ...46 ...

Страница 51: ...r var log rhn directory RHN Satellite Server Installation Program var log rhn_satellite_install log Database installation Embedded Database var log rhn rhn database installation log Database population var log rhn populate_db log RHN Satellite Synchronization Tool var log rhn rhn_server_satellite log Monitoring infrastructure home nocpulse var directory Monitoring notifications opt notification va...

Страница 52: ...tion 8 7 1 1 Maintaining the RHN Task Engine To obtain the status of the Satellite s Embedded Database if it exists run the command service rhn database status To determine the version of your database schema run the command rhn schema version To derive the character set types of your Satellite s database run the command rhn charsets If the administrator is not getting email from the RHN Satellite...

Страница 53: ...followed by Network Information Service NIS if used followed by DNS One of these has to succeed for the Apache Web server to start and the RHN client applications to work To resolve this problem identify the contents of the etc hosts file It may look like this 127 0 0 1 this_machine example com this_machine localhost localdomain localhost First in a text editor remove the offending machine informa...

Страница 54: ...n conf sqlplus username password sid Ensure the RHN Satellite Server is using Network Time Protocol NTP and set to the appropriate time zone This also applies to all client systems and the separate database machine in RHN Satellite Server with Stand Alone Database Confirm the correct package 7 rhn org httpd ssl key pair MACHINE_NAME VER REL noarch rpm is installed on the RHN Satellite Server and t...

Страница 55: ... a command line tool explicitly for this purpose The Satellite Diagnostic Info Gatherer commonly known by its command satellite debug To use this tool issue the command as root You will see the pieces of information collected and the single tarball created like so root miab root satellite debug Collecting and packaging relevant diagnostic information Warning this may take some time copying configu...

Страница 56: ...52 ...

Страница 57: ... If any critical updates are made to RHN Satellite Server they will be released in the form of an Erratum for the RHN Satellite Server For RHN Satellite Server systems that may be connected to the Internet the best method for applying these Errata Updates is using the Red Hat Update Agent via Red Hat Network Since the RHN Satellite Server is subscribed to Red Hat Network during initial installatio...

Страница 58: ... etc tnsnames ora var www html pub var satellite redhat 1 custom RPMs root gnupg root ssl build If possible back up var satellite as well In case of failure this will save lengthy download time Since var satellite specifically var satellite redhat NULL is primarily a duplicate of Red Hat s RPM repository it can be regenerated with satellite sync Red Hat recommends the entire var satellite tree be ...

Страница 59: ...ecified examine DIRNAME Examines the contents of a backup directory Returns the timestamp of backup creation and reports on its contents extend Increase the RHN Oracle tablespace gather stats PCT Gather statistics on RHN Oracle database objects PCT is the percentage of rows to estimate the default is 15 report Reports on current usage of database space report stats Reports on segments with stale o...

Страница 60: ...ted data requires fewer blocks to be scanned in full table scans which both lead to better performance The segment shrink feature works only on newly created Oracle Database 10g Release 2 that comes with RHN Satellite Server 5 2 0 Due to different default database settings in Oracle Database 9i this feature does not work on databases that were upgraded from previous RHN Satellite Server releases 8...

Страница 61: ...mbedded Database restoration a relatively simple process As in the creation of backups you will need to shut down the database and related services first by issuing the following commands in this order as root service rhn satellite stop Then switch to the oracle user and issue this command including the directory containing the backup to begin the restoration db control restore DIRNAME This not on...

Страница 62: ...r the SSL certificate must represent your high availability configuration rather than the hostname of the individual server Then 1 Prepare the Stand Alone Database for failover using Oracle s recommendations for building a fault tolerant database Consult your database administrator 2 Install RHN Satellite Server with Stand Alone Database and a base install of Red Hat Enterprise Linux AS on a separ...

Страница 63: ...ed storage device This eliminates data replication and ensures a consistent store of data for each Satellite 8 Make the various Satellites available on your network via Common Name and a method suiting your infrastructure Options include round robin DNS a network load balancer and a reverse proxy setup 8 7 Conducting Satellite Specific Tasks Using a RHN Satellite Server is quite similar to using t...

Страница 64: ...a mailings etc that must be performed in the background The page displays the execution times for various activities carried out by the daemon Administrators should ensure the RHN Task Engine stays up and running If this daemon hangs for any reason it can be restarted using it s filename taskomatic As root run the command sbin service taskomatic restart Other service commands can also be used incl...

Страница 65: ...permanent To continue click Delete User at the bottom right corner of the page Note The Organization Administrator role must be removed from the user s profile before deleting the user from the RHN Satellite Server Failing to do so causes the delete operation to fail The Organization Administrator role may be removed by any Organization Administrator provided they are not the sole Organization Adm...

Страница 66: ...ion Continental United States business hours are roughly 8 00 AM to 9 00 PM EST UTC 5 due to four time zones Monday through Friday These hours may vary seasonally by one hour Further Red Hat strongly recommends that synchronization occur randomly for best performance This automation can be set easily by the addition of a simple cron job To do this edit the crontab as root crontab e This opens the ...

Страница 67: ...eps below Note To ensure that PAM authentication functions properly install the pam devel package Set up a PAM service file usually etc pam d rhn satellite and have the Satellite use it by adding the following line to etc rhn rhn conf pam_auth_service rhn satellite This assumes the PAM service file is named rhn satellite To enable a user to authenticate against PAM select the checkbox labeled Plug...

Страница 68: ...ice on the Satellite as root using the command service osa dispatcher start Finally install the osad package on all client systems to receive pushed actions The package can be found within the RHN Tools child channel for the systems on the RHN Satellite Server Once installed start the service on the client systems as root using the command service osad start Like other services osa dispatcher and ...

Страница 69: ...satellite Corporate gateway hostname PORT server satellite http_proxy corporate_gateway example com 8080 server satellite http_proxy_username server satellite http_proxy_password Database connection information username password SID default_db test01 test01 test01 DON T TOUCH ANY OF THE FOLLOWING web satellite 1 web session_swap_secret_1 ea6c79f71cfcf307d567fed583c393b9 web session_swap_secret_2 0...

Страница 70: ...A Sample RHN Satellite Server Configuration File 66 RHN Task DailySummary RHN Task SummaryPopulation RHN Task RHNProc RHN Task PackageCleanup web rhn_gpg_backend_module RHN GPG OpenPGP web restrict_mail_domains ...

Страница 71: ...67 Appendix B Revision History Revision History Revision 1 0 ...

Страница 72: ...68 ...

Страница 73: ... opt 19 db control options 55 db control use 55 disable services ntsysv chkconfig 12 E embedded database default location rhnsat 19 enabling push to clients 63 entitlement certificate 11 19 uploading 34 F firewall rules requirements 10 G general problems 47 GPG keys 19 H host not found error could not determine FQDN 49 how it works 3 httpd 12 I import channel content process 42 importing satellite...

Страница 74: ...nt 19 RHN Satellite Synchronization Tool 39 options 40 RHN Task Engine 60 rhn satellite service 53 rhn satellite activate 34 activating 35 options 34 rhn satellite exporter 37 export 39 options 38 rhn conf sample file 65 rhns satellite tools 34 43 rogerthat01 mail domain 30 S Satellite Installation Program options 28 Satellite Ports 10 satellite redundancy 58 satellite debug 51 satellite sync 43 4...

Результаты поиска

Содержание NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT

Отзывы:

Похожие инструкции для NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT

Бренды по названию

Популярные бренды

Red Hat NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT, Руководство по установке

Результаты поиска

Содержание NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT

Отзывы:

Похожие инструкции для NETWORK SATELLITE 5.2 - CHANNEL MANAGEMENT

Бренды по названию

Популярные бренды