This section describes known runtime issues.
The Check In Current operation enables you to ensure that the version of a component in the Master Server repository is the most recent. The Master Server checks its version of the component against the version on the source host. The check is based on metadata regarding the location of the component that was gathered at the time of previous check in.
You cannot perform the Check In Current operation on all component types. Typically, component types that can be browsed using the browser interface are eligible for the Check In Current operation.
When performing a bulk Check In Current operation, if you select a component type that does not support the Check In Current operation, the operation completes with no errors. The results displayed in the Progress dialog box for component types that are not supported might be empty or might represent historical data.
Workaround: No workaround is available.
If you are running the N1 Grid Service Provisioning System on Red Hat Linux Advanced Server 3.0, the system might hang when using Secure Socket Layer (SSL) connections.
SSL uses SecureRandom which uses /dev/random to generate random numbers. Red Hat Linux Advanced Server 3.0 includes a bug that causes /dev/random not to collect entropy. Since /dev/random does not generate numbers unless sufficient entropy is collected, applications hang when attempting to read random data from /dev/random.
Workaround: Choose one of the following workarounds:
Red Hat plans to include a patch in Update 3 to correct the problem. Apply the patch from Red Hat to your system when the patch is available. For more information about the Red Hat patch, see http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=117218.
Do not use SSL as a connection type. Choose TCP/IP or SSH.
Remove /dev/random and replace it with a symbolic link to /dev/urandom. /dev/urandom is less secure than /dev/random but the system does not hang when the provisioning system attempts an SSL connection on Red Hat Linux Advanced Server 3.0.
From the browser interface on the Plug-Ins page, if you attempt to import a file that is larger than 40 MBytes, the import fails.
Workaround: To import plug-in files larger than 40 MBytes, use the plg.p.add command from the CLI Client . For instructions, see Chapter 11, plg: CLI Commands for Plug-ins, in N1 Grid Service Provisioning System 5.0 Command-Line Interface Reference Manual.
If you create a new file component using the browser interface and perform a Check In Current operation on the component to create version 1.1, if you attempt to delete both versions of the component at the same time, the following error message displays:
The 1.0 version of the object cannot be deleted as long as other versions of the same object exist. |
Workaround: Do not use bulk delete to delete the two components. Delete the components individually.
If you create a notification rule that has few criteria or no criteria, plans might appear to run slowly. The plan does not complete slowly, but the display of the plan results might be delayed.
Workaround: When creating a notification rule, use as many criteria as possible. More criteria for a notification rule decreases the number of notification emails the provisioning system sends across the network. A lower number of notification emails is less likely to interfere with the display of plan results.
Some APIs that are available on the Master Server do not check for any permissions. Without permission checks, an unauthenticated user might invoke these services and possibly compromise the Master Server.
Workaround: You can set up the Master Server and CLI Clients to prevent unauthorized access. The following security options are available for the Master Server and the CLI Clients:
Configure the Master Server to use SSL to connect to the CLI Clients.
Install the CLI Client on servers that are accessible only to users who are authorized to access the N1 Grid Service Provisioning System.
On Solaris OS, Red Hat Linux, and IBM AIX servers, install the CLI Client within a user group that contains only authorized provisioning system users as its members.
Set the permissions for the CLI Client private keystore in N1SPS5.0-CLI-home/cli/data/private.store to 640. This permissions setting allows only authorized provisioning system users access to the CLI Client private keys to be able to connect to the Master Server.
On Windows 2000 systems, ensure that the CLI Client private keystore has read permissions granted only to authorized provisioning system users.
If you attempt to restore data to a Master Server that is installed in a different path than the path to the Master Server that you used to create the backup file, the restore fails. The following message appears:
ERROR! Failed to restore the database successfully. The following fatal errors were encountered ERROR: stat failed on file 'N1SPS5.0-MS-home/': No such file or directory |
N1SPS5.0-MS-home is the home directory of the Master Server that you used to create the backup.
Workaround: On the server where you want to restore the Master Server data, reinstall the Master Server into the same directory as the Master Server that you used to create the backup.