Clustrix recommends configuring passwordless ssh for users who will perform management and monitoring functions (clxm). Passwordless ssh access for the daemon clxd user is required to perform upgrades.
Configuring Key Pair Authentication
Log into the Linux server using the user for whom you will configure for passwordless SSH authentication.
Generate the key pair using default filenames. Simply press ENTER when prompted for any input by the ssh-keygen utility. To be passwordless, this SSH key should have no password.
shell> ssh username@hostname
The output will look like:
Generating public/private rsa key pair. Enter file in which to save the key (/home/clxd/.ssh/id_rsa): Created directory '/home/clxd/.ssh'.
Copy the contents of the id_rsa.pub file into a new file named authorized_keys:
shell> cd ~/.ssh
Now copy the contents of the ~/.ssh directory to every node in the cluster as the same Linux user. Also verify that they have the same permissions.
shell> scp -r -p ~/.ssh username@ip_of_next_server
This will make the SSH authentication credentials on all of the nodes equal so this Linux user can SSH between any of the nodes without being prompted for a password.
Note: The private key file must be the default name, id_rsa, for clx to use it automatically. Non-default private key names are not supported at this time.
To verify that SSH authentication is configured correctly, run this command:
shell> /opt/clustrix/bin/clx cmd 'date'
If dates are correctly returned from each node and no passwords are requested, setup is successful. You can also run clx stat to view the cluster’s status. See The CLX Command-Line Administration Tool for more information.
Repeat these steps for any Linux user that requires passwordless SSH authentication (e.g. clxd, and the clxm users).
Now that you have configured passwordless ssh authentication, proceed to Post-Installation Configuration.