FedFsInstallNsdbConnParams0.8

From Linux NFS

(Difference between revisions)
Jump to: navigation, search
(Created page with "== Project: fedfs-utils == [ Project Home | News | Downloads | Docs | [[FedFsUtilsMailingList...")
Line 15: Line 15:
This article describes how to set up an NSDB connection parameter database.  This database is used to store NSDB network location and security information on fileservers and FedFS administrative clients.
This article describes how to set up an NSDB connection parameter database.  This database is used to store NSDB network location and security information on fileservers and FedFS administrative clients.
-
Before a fileserver can create and resolve FedFS junctions, or a FedFS administrative client can contact an NSDB, information about how to connect to the NSDB must be stored locally.  This information consists of details about the NSDB's hostname and port number, possibly an x.509 certificate that can authenticate the NSDB, and other information.
+
Before a fileserver can create and resolve FedFS junctions, or a FedFS administrative client can contact an NSDB, information about how to connect to the NSDB must be stored locally.  This information consists of details about the NSDB's hostname and port number, possibly an x.509 certificate that can authenticate the NSDB, and other information.  (Note: several of these parameters, such as the x.509 certificate, are not supported in fedfs-utils-0.8, but will be in a future release).
Setting up the NSDB connection parameters database is a simple step, but is a requirement for fileservers and administrative tools that connect to a FedFS domain's NSDB.
Setting up the NSDB connection parameters database is a simple step, but is a requirement for fileservers and administrative tools that connect to a FedFS domain's NSDB.
-
== Installing the nsdbparams command ==
+
== Installing or Building the nsdbparams command ==
-
* [[FedFsUtilsBuild0.8|Installing or Building fedfs-utils 0.8]]
+
Before proceeding, make sure you have the nsdbparams command installed on your fileserver. On Fedora 18, the nsdbparams command is installed with:
-
=== Additional information ===
+
# yum install fedfs-utils-nsdbparams
-
Instead of installing the whole package, you may choose to install just the "nsdbparams" command:
+
If your distribution does not provide a fedfs-utils package, you need to build fedfs-utils-0.8 yourself:
 +
 
 +
* [[FedFsUtilsBuild0.8#Build_from_scratch|Installing or Building fedfs-utils-0.8]]
 +
 
 +
=== Additional info ===
 +
 
 +
Instead of installing the whole package, you may choose to install just the nsdbparams command:
  # cd fedfs-utils-0.8/src/nsdbparams ; make install
  # cd fedfs-utils-0.8/src/nsdbparams ; make install
Line 31: Line 37:
== Create the database and add an NSDB ==
== Create the database and add an NSDB ==
-
When you have set up an LDAP server to be an NSDB, you will know the hostname and port number that can be used to identify the NSDB.  For example, suppose your NSDB will reside on the host nsdb.example.net, and it listens on the standard LDAP port.  On your fileserver, start with this:
+
NSDBs are identified by their hostname and port number.  If the port number isn't specified, 389 is assumed.
 +
 
 +
For example, suppose your NSDB will reside on the host nsdb.example.net, and it listens on the standard LDAP port.  On your fileserver, start with this:
  # nsdbparams update nsdb.example.net
  # nsdbparams update nsdb.example.net

Revision as of 19:20, 24 October 2012

Contents

Project: fedfs-utils

[ Project Home | News | Downloads | Docs | Mailing Lists | Source Control | Issues ]


Introduction

This article describes how to set up an NSDB connection parameter database. This database is used to store NSDB network location and security information on fileservers and FedFS administrative clients.

Before a fileserver can create and resolve FedFS junctions, or a FedFS administrative client can contact an NSDB, information about how to connect to the NSDB must be stored locally. This information consists of details about the NSDB's hostname and port number, possibly an x.509 certificate that can authenticate the NSDB, and other information. (Note: several of these parameters, such as the x.509 certificate, are not supported in fedfs-utils-0.8, but will be in a future release).

Setting up the NSDB connection parameters database is a simple step, but is a requirement for fileservers and administrative tools that connect to a FedFS domain's NSDB.

Installing or Building the nsdbparams command

Before proceeding, make sure you have the nsdbparams command installed on your fileserver. On Fedora 18, the nsdbparams command is installed with:

# yum install fedfs-utils-nsdbparams

If your distribution does not provide a fedfs-utils package, you need to build fedfs-utils-0.8 yourself:

Additional info

Instead of installing the whole package, you may choose to install just the nsdbparams command:

# cd fedfs-utils-0.8/src/nsdbparams ; make install

Create the database and add an NSDB

NSDBs are identified by their hostname and port number. If the port number isn't specified, 389 is assumed.

For example, suppose your NSDB will reside on the host nsdb.example.net, and it listens on the standard LDAP port. On your fileserver, start with this:

# nsdbparams update nsdb.example.net

This allows the fileserver to contact this LDAP server to resolve junctions. The fileserver will use in-the-clear network requests. The act of creating a record for the first NSDB automatically initializes the NSDB connection parameter database on your fileserver.

To see information about this NSDB's connection parameters, use:

# nsdbparams show nsdb.example.net

Each NSDB that your fileserver contacts must have an entry in the fileserver's NSDB connection parameters database. For example, a fileserver in a FedFS domain that employs a single NSDB typically has just one entry in its NSDB connection parameter database.

Additional parameters

There is some additional information that can be stored in a NSDB connection parameter database.

On your administrative hosts, it is convenient to specify the NSDB administrative DN and the NCE to use for administrative operations. If you do this, you don't need to specify these each time you invoke an NSDB administrative tool. Use the -D option to specify the admin DN, and the -e option to specify the default NCE. For example:

# nsdbparams update -D cn=Manager,cn=config -e ou=fedfs,dc=example,dc=net nsdb.example.net

These settings apply only to one NSDB.

Personal tools