2 Replies Latest reply: Sep 9, 2013 6:49 AM by 1008402 RSS

    11gR2 Grid Installation "SSH Passwordless Problem" on AIX 7.1

    1008402

      Hello,

       

      The installer was able to setup passwordless SSH connection between the nodes but when I tried to test it then I got the below error:

      [INS-06006] Passwordless SSH connectivity not set up between the following node(s): [node1, node2].

       

      I tried to connect .ssh passwordless from node1 to node2. This worked.

      But when i tried to connect .ssh passwordless from node2 to node1. This did not work. SSH requested for a password.

       

      On node1 there were amongst others id_rsa, id_rsa.pub and identity and identity.pub. But on node2 there were only identity and identity.pub.

       

       

      any help will be greatly appreciated.

       

      Thanks

        • 1. Re: 11gR2 Grid Installation "SSH Passwordless Problem" on AIX 7.1
          UserAL1178M

          When you configure RAC it is a mandatory task to configure the Secure Shell (SSH) passwordless connectivity between the nodes. SSH connectivity configuration is essential between the nodes of a cluster as the OUI uses the ssh and scp commands internally during the installation phase to perform remote operations in which it copies the software from the local to other nodes.

           

          I would suggest that you try one more time the configuration. Below i am giving the steps:

           

          1) Log in as Oracle user on the first node of the cluster (in our example, it will be on the raclinux1), and execute the following sequence of commands:

           

          [orac1e@raclinux1 -]$ mkdir ~/.ssh

          [orac1e@raclinux1 -]$ chmod 700 ~/.ssh

          [orac1e@raclinux1 -]$ /usr/bin/ssh-keygen -t rsa

          Generating public/private rsa key pair.

          Enter file in which to save the key (/home/oracle/.ssh/id_rsa):

          Enter passphrase (empty for no passphrase): Enter same passphrase again:

          Your identification has been saved in /home/oracle/.ssh/id rsa.

          Your public key has been saved in /home/oracle/.ssh/id_rsa.pub.

          The key fingerprint is: f0:89:ac:ba:83:31:c4:43:97:3e:9a:a5:60:c1:8e:e6 oracle@raclinuxl.sjh.com

           

          2) When prompted for the key location, accept the default settings by hitting the Enter key. Once this setup is done on the first node, repeat the same steps on the rest of the nodes (in our example, repeat the same step on the raclinux2 node).

           

          3) Now, switch back to the first node (raclinux1) and execute the following command to add authorization keys. After adding the authorization keys, copy the authorized_keys file to the other nodes using the scp command, and enter Yes when prompted.

           

          [orac1e@raclinux1 -]$ cd ~/.ssh

          [orac1e@raclinux1 -]$ cat id rsa.pub >> authorized_keys

          [orac1e@raclinux1 -]$ scp authorized_keys raclinux2:/home/oracle/.ssh

          The authenticity of host 'raclinux2 (192.168.2.202) can't be established.

          RSA key fingerprint is 52:13:31:e8:ce:ec:47:b8:06:09:4b:c9:aa:c5:35:81.

          Are you sure you want to continue connecting (yes/no)? yes

          Warning: Permanently added 'raclinux2,192.168.2.202' (RSA) to the list of known hosts.

          Oracle@raclinux2's password:

          authorized keys 100% 406 0.4K8/s 00:00

           

          4)  Now, switch back to the second node, (raclinux2) and run the following command:

           

          [orac1e@raclinux2 -]$ cd ~/.ssh

          [orac1e@raclinux2 -]$ cat id rsa.pub >> authorized_keys

          [orac1e@raclinux2 -]$ scp authorized_keys raclinux1:/home/oracle/.ssh

          The authenticity of host 'raclinux2 (192.168.2.201) can't be established.

          RSA key fingerprint is 52:13:31:e8:ce:ec:47:b8:06:09:4b:c9:aa:c5:35:81.

          Are you sure you want to continue connecting (yes/no)? yes

          Warning: Permanently added 'raclinux2,192.168.2.201' (RSA) to the list of known hosts.

          Oracle@raclinux1's password:

          authorized keys 100% 406 0.4K8/s 00:00

           

          5) After adding the authorization keys on the second node, copy the file to the other nodes using the scp command, as demonstrated in the preceding example, and enter Yes when prompted.

           

          6) After configuring the SSH setup successfully across all nodes, let's run the following test on each node, starting from the first node, to establish a passwordless connection between all the nodes to meet the Oracle recommendations:

           

          ssh raclinux1 date

          ssh raclinux2 date

          ssh raclinux1-priv date

          ssh raclinux2-priv date

          ssh raclinux1-sjh.com date

          ssh raclinux2-sjh.com date

           

          - taken from Oracle 11g R1/R2 Real Application Clusters Essentials - Ben Prusinski, Syed Jaffer Hussain

          • 2. Re: 11gR2 Grid Installation "SSH Passwordless Problem" on AIX 7.1
            1008402

            It worked, Thank you so much