To configure SSH, you must first create RSA or DSA keys on each cluster node.
- Log in as the software owner (in this example, the
- To ensure that you are logged in as
grid, and to verify that the user ID matches the expected user ID you have assigned to the
griduser, enter the commands:
$ id $ id grid
Ensure that Oracle user group and user and the user terminal window process you are using have group and user IDs are identical.
uid=54322(grid) gid=54321(oinstall) groups=54321(oinstall),54322(grid,asmadmin,asmdba) $ id grid uid=54322(grid) gid=54321(oinstall) groups=54321(oinstall),54322(grid,asmadmin,asmdba)
- If necessary, create the
.sshdirectory in the
griduser's home directory, and set permissions on it to ensure that only the oracle user has read and write permissions:
$ mkdir ~/.ssh $ chmod 700 ~/.sshNote that the SSH configuration fails if the permissions are not set to 700.
- Enter the following command:
$ /usr/bin/ssh-keygen -t dsa
At the prompts, accept the default location for the key file (press Enter).
Never distribute the private key to anyone not authorized to perform Oracle software installations.This command writes the DSA public key to the
~/.ssh/id_dsa.pubfile and the private key to the
- Repeat steps 1 through 4 on each node that you intend to make a member of the cluster, using the DSA key.