test

Sun Cluster Geographic Edition System Administration Guide

ProcedureHow to Configure Trust Between Two Clusters

Before You Begin

Ensure that the following conditions are met:

  1. Log in to a cluster node.

    You must be assigned the Geo Management RBAC rights profile to complete this procedure. For more information about RBAC, see Sun Cluster Geographic Edition Software and RBAC.

  2. Import the public keys from the remote cluster to the local cluster.

    Running this command on one node of the local cluster imports the keys from the remote cluster to one node of the cluster. 


    # geops add-trust -c remotepartnerclustername
    -cremoteclustername

    Specifies the logical hostname of the cluster with which to form a partnership. The logical hostname is used by the Sun Cluster Geographic Edition software and maps to the name of the remote partner cluster. For example, a remote partner cluster name might resemble the following:

    cluster-paris

    When you use this option with the add-trust or remote-trust subcommand, the option specifies the alias where the public keys on the remote cluster are stored. An alias for certificates on the remote cluster has the following pattern:

    remotepartnercluster.certificate[0-9]*

    Keys and only keys that belong to the remote cluster should have their alias match this pattern.

    For more information about the geops command, refer to the geops(1M) man page.

  3. Repeat the preceding steps on a node of the remote partner cluster.

  4. Verify trust from one node of each cluster.


    # geops verify-trust -c remotepartnerclustername
See Also

For a complete example of how to configure and join a partnership, see Example 5–4.