Problem Summary: If the Trusted Extensions feature of Oracle Solaris software is enabled before the Oracle Solaris Cluster software is installed and configured, the Oracle Solaris Cluster setup procedures are unable to copy the common agent container security keys from one node to other nodes of the cluster. Identical copies of the security keys on all cluster nodes is a requirement for the container to function properly on cluster nodes.
Workaround: Manually copy the security keys from one global-cluster node to all other nodes of the global cluster.
On each node, stop the security file agent.
phys-schost# /usr/sbin/cacaoadm stop
On one node, change to the /etc/cacao/instances/default/ directory.
phys-schost-1# cd /etc/cacao/instances/default/
Create a tar file of the /etc/cacao/instances/default/ directory.
phys-schost-1# tar cf /tmp/SECURITY.tar security
Copy the /tmp/SECURITY.tar file to each of the other cluster nodes.
On each node to which you copied the /tmp/SECURITY.tar file, extract the security files.
Any security files that already exist in the /etc/cacao/instances/default/ directory are overwritten.
phys-schost-2# cd /etc/cacao/instances/default/ phys-schost-2# tar xf /tmp/SECURITY.tar
Delete the /tmp/SECURITY.tar file from each node in the cluster.
phys-schost-1# rm /tmp/SECURITY.tar phys-schost-2# rm /tmp/SECURITY.tar
On each node, restart the security file agent.
phys-schost# /usr/sbin/cacaoadm start