Home

Read Me First

Contact the Wiki Administrators

What's Going On

Get Going

Keep Going

Reference Material

Printable Quick Start Guides

Quick Start Guide for Solaris Systems
Quick Start Guide for RHEL 5.0 Systems

Printable Versions

Previous Releases

Sun xVM Ops Center 2.0
Sun xVM Ops Center 1.1

Index

back Preparing a System for Sun xVM Ops Center Installation

Verifying RHEL 5.0 System Resources

Before you install Sun xVM Ops Center on a RHEL 5.0 system, verify that the system conforms to the recommendations described below.

Sun Support Services might have tools available that automate verifying many of the system requirements and resources listed here. Check with Sun Support Services for the following items:

Pre-installation checklist
Pre-installation check script
Patches to apply to the Sun xVM Ops Center software

You must install any Sun xVM Ops Center patches after you install the Sun xVM Ops Center software.

Verifying RHEL 5.0 system resources requires the following tasks:

Checking the Operating System Release
Checking the Available Disk Space
Verifying the Amount of System Memory and Swap Space
Verifying the SELinux Setting
Verifying the umask Value
Sun xVM Ops Center Users and Groups
Verifying That Required Packages Are Installed
Verifying Correct IP Address Resolution
Verifying the Locations of ssh Binaries
Verifying That /usr/local Is Writeable
Verifying the Date and Time
Verifying Network Access to Required Web Sites
Verifying Network Port Access

Before You Begin

The currently recommended method to assure that a RHEL 5.0 system is ready to accept a Sun xVM Ops Center Enterprise Controller or Proxy Controller installation is to perform a complete RHEL 5.0 installation. RHEL 5.0 Installation for Sun xVM Ops Center describes the required installation procedure. This RHEL 5.0 installation procedure requires that you install all optional software packages from the installation media that the RHEL 5.0 installer can install, and one package that the RHEL 5.0 installer does not install.

On a system that has a complete installation of RHEL 5.0, use the following procedures to verify that its resources meet the requirements for Sun xVM Ops Center installation.

These procedures assume that you are logged in as the root user on the system on which you intend to install Sun xVM Ops Center Enterprise Controller or Proxy Controller software. You can check these system resources in any order.

To Check the Operating System Release

Verify that RHEL 5.0 is installed on the system. The /etc/redhat-release file lists the OS release installed on your system. For example:

# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 5 (Tikanga)
#

Sun xVM Ops Center installation has been qualified to run on Red Hat Enterprise Linux Server release 5 (Tikanga).

To Check the Available Disk Space

Use the df -h command to list the space utilization on the Enterprise Controller, and verify that you have at least 72 GBytes available. For example:

# df -h
Filesystem            Size  Used Avail Use% Mounted on
/dev/mapper/VolGroup00-LogVol00
                      131G  5.7G  119G   5% /
/dev/sda1              99M   12M   83M  12% /boot
tmpfs                 2.0G     0  2.0G   0% /dev/shm
#

Sun xVM Ops Center software, and the data it stores, primarily consume space below the /var/opt/sun/xvm and /opt directory structures. In this example, the /var/opt/sun/xvm and /opt directories are located within the root (/) file system, which has 119 GBytes of space available.

High availability (HA) configurations for Sun xVM Ops Center use transferable storage to hold the /var/opt/sun/xvm directory structure within a separate file system. Refer to About High Availability in Sun xVM Ops Center and Configuring Storage for High Availability for more information about HA configurations.

To Verify the Amount of System Memory and Swap Space

Use the free -m command to display the amount of installed memory and swap space on your system. For example:

# free -m
             total       used       free     shared    buffers     cached
Mem:          3931       1389       2542          0        220       1053
-/+ buffers/cache:        115       3816
Swap:         4096          0       4096
#

You should have at least 4 GBytes of installed memory for Sun xVM Ops Center Enterprise Controller installations, at least 2 GBytes of installed memory for Sun xVM Ops Center Proxy Controller installations, and at least 4 GBytes of swap space for Enterprise Controller and Proxy Controller systems. The value in the total column indicates the total amount of installed memory or configured swap space.

You can also use the dmesg command to display the amount of memory installed. For example:

# dmesg | grep Memory
Memory: 4022900k/4063168k available (2043k kernel code, 39036k reserved, 846k data, 232k init, 3145664k highmem)
#

To Verify the SELinux Setting

Sun xVM Ops center installation requires SELinux to be disabled. To check the state of SELinux, either run the sestatus command, or display the content of the /etc/selinux/config file, and verify that the SELINUX variable is set to disabled. For example:

# sestatus
SELinux status:                 disabled
#
# cat /etc/selinux/config
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#       enforcing - SELinux security policy is enforced.
#       permissive - SELinux prints warnings instead of enforcing.
#       disabled - SELinux is fully disabled.
SELINUX=disabled
# SELINUXTYPE= type of policy in use. Possible values are:
#       targeted - Only targeted network daemons are protected.
#       strict - Full SELinux protection.
SELINUXTYPE=targeted
#

If the SELinux state is either enforcing or permissive, edit the /etc/selinux/config file and change the SELINUX value to disabled. After making this change, reboot your system for the change to take effect.

To Verify the `umask` Value

Verify that the umask in use for the root user or equivalent role is set to 022. Different shells report this value differently. The following examples list output from the umask command for the Bourne shell, the Korn shell, and the C Shell, and bash, in descending order. In all three examples, the umask value is correct.

# sh
# umask
0022
# ksh
# umask
0022
# csh
# umask
22
# bash
# umask
0022

Check the umask value set in /etc/bashrc. The umask value must be set to 022 even for non-root users. For example:

# grep umask /etc/bashrc
	umask 002
	umask 022
#

Sun xVM Ops Center Users and Groups

Sun xVM Ops Center installation creates a number of users and groups on the Enterprise Controller and Proxy Controllers. Review the list of users and groups, and verify that they do not conflict with existing policies. If required by account management policies, add these users and groups before you install the Sun xVM Ops Center software.

Type	Enterprise Controller	Proxy Controller
Users	`svctag, allstart, scndb, scn, scncon, uce-sds, xvm`	`svctag, allstart, uce-sds`
Groups	`jet, scndb, uce-sds`	`jet, uce-sds`

Sun xVM Ops Center creates these users and groups with the following UID and GID values:

# cat /etc/group
(output omitted)
uce-sds::98194050:
scndb::98194051:
jet::98194052:
# 
# cat /etc/passwd
(output omitted)
svctag:x:95:12:Service Tag UID:/:
scn:x:231796:3::/:/bin/sh
xvm:x:60:60::/:/bin/sh
scncon:x:231798:1::/:/bin/true
uce-sds:x:231799:98194050:UCE Engine:/opt/SUNWuce/server:/bin/sh
scndb:x:231800:98194051:SCS PostgreSQL User:/opt/SUNWscs:/bin/sh
allstart:x:231801:1:AllStart User:/var/opt/sun/xvm/osp/data:/bin/sh
#

All user accounts have locked passwords, except the scncon user. A password is required for the scncon user, but it has no login shell. If you must create the scncon user before installing the software, you must enter the password that you want to use, in clear text, in the /var/opt/sun/xvm/persistence/scn-satellite/satellite.properties file. Associate the password with the scncon.password parameter in this file. For example:

scncon.password=2EzafaJE

To Verify That Required Packages Are Installed

Sun xVM Ops Center requires a number of specific packages for successful installation on RHEL 5.0 systems. Currently, the list of required packages includes the following:

python-2.4.3-19.el5
expect-5.43.0-5.1
perl-DBD-Pg-1.49-1.fc6
xinetd-2.3.14-10.el5
tftp-server-0.42-3.1
dhcp-3.0.5-3.el5
gettext-0.14.6-4.el5
perl-XML-Parser-2.34-6.1.2.2.1
ncompress-4.2.4-47
libxml2 (both the 64 bit and 32 bit RPMs are required)

Use the rpm -q command to check if each of these packages is installed. For example:

# rpm -q ncompress-4.2.4-47
ncompress-4.2.4-47
#

The ncompress-4.2.4-47 package is the one package that the RHEL 5.0 installer does not install. The Post-installation Tasks procedure found in RHEL 5.0 Installation for Sun xVM Ops Center describes how to install the ncompress-4.2.4-47 package.

To Verify Correct IP Address Resolution

Verify that the configured naming services resolve the correct IP address for the host name that is assigned to your system. For example:

# host x4200-brm-13 
x4200-brm-13.Central.Sun.COM has address 172.20.25.169
#

To Verify the Locations of `ssh` Binaries

The binary files for ssh operations must be stored in their standard locations, even if OpenSSH is used. Verify that the following files are stored using the listed path names:

/usr/bin/scp
/usr/bin/ssh
/usr/bin/ssh-keygen
/usr/bin/ssh-keyscan

For example:

# ls /usr/bin/scp /usr/bin/ssh /usr/bin/ssh-keygen /usr/bin/ssh-keyscan
/usr/bin/scp          /usr/bin/ssh          /usr/bin/ssh-keygen   /usr/bin/ssh-keyscan
#

To Verify That `/usr/local` Is Writeable

Some software components of Sun xVM Ops Center are installed in the /usr/local directory. Verify that the /usr/local directory is writeable, and is not a remotely mounted, read-only directory. For example:

# df -h /usr/local
Filesystem            Size  Used Avail Use% Mounted on
/dev/mapper/VolGroup00-LogVol00
                      131G  5.7G  119G   5% /
# ls -ld /usr/local
drwxr-xr-x 11 root root 4096 Nov 30  2005 /usr/local
#

In this example, the /usr/local directory is stored in the root (/) file system, and is writeable by the root user and group.

To Verify the Date and Time

Verify that the correct date and time are set on your system. For example:

# date
Thu Mar 11 13:28:59 MST 2010
#

If the date and time are not correct, reset them. See Troubleshooting for a description of an error that might occur in the Enterprise Controller Configuration wizard if the date and time is not set correctly.

To Verify Network Access to Required Web Sites

Use a web browser to verify that your system can access the following URLs:

https://getupdates1.sun.com
https://inv-cs.sun.com
https://inventory.sun.com
https://a248.e.akamai.net 
https://identity.sun.com
ftp://ftp.sunfreeware.com

The https://getupdates1.sun.com site should display a login authentication screen for the Sun Update Connection Download Server. The https://inv-cs.sun.com and https://inventory.sun.com sites should display the Sun Connection page.

For access to Red Hat Linux updates, verify that your system can access the following URLs:

https://www.redhat.com
http://rhn.redhat.com
https://rhn.redhat.com 
https://download.rhn.redhat.com

For access to SUSE Linux updates, verify that your system can access the following URLs:

http://www.novell.com
https://www.novell.com
http://download.novell.com 
https://you.novell.com

Use the wget command to verify that you can access the getupdates1.sun.com web site and download a sample file.

If you are using a proxy to access the Internet, set the https_proxy environment variable to point to the proxy server. For example:
```
# export https_proxy="http://myproxy.company.com:8080" 
```
Enter the fully qualified domain name of your proxy server instead of myproxy.company.com.

Use the wget command to download the sample file named channels.xml and save it locally as /tmp/channels.xml.
The wget command uses these relevant options:

-O – Specifies the name of the file to create on the local system
--http-user – Specifies the SOA to use for authentication to getupdates1.sun.com
--http-password – Specifies the password for SOA that you provide for the --http-user option
--proxy-user – (Optional) Specifies the user name used for authentication with an HTTPS proxy

--proxy-password – (Optional) Specifies the password for the user name that you provide for the --proxy-user option
The wget command is stored by default in /usr/bin on RHEL 5.0 systems. For example:

# /usr/bin/wget https://getupdates1.sun.com/channels3/channels.xml -O /tmp/channels.xml --http-user="account@sun.com" --http-password="password"
--12:07:40--  https://getupdates1.sun.com/channels3/channels.xml
Resolving getupdates1.sun.com... 198.232.168.136
Connecting to getupdates1.sun.com|198.232.168.136|:443... connected.
HTTP request sent, awaiting response... 302 Moved Temporarily
Location: https://a248.e.akamai.net/f/248/21808/15m/sun.download.akamai.com/21808/sc/channels3/channels.xml?AuthParam=1236020624_01b507faf428706c2c0b14a7462004e4&TUrl=L0QdUQV8Z4i0fdED3QTP3SJDWA8FMyaJsHfIWf4X29kTWQpKEzIbwqFuyRPZ&TicketId=3qfzk1SANhtW&GroupName=SWUP&BHost=sdlc3h.sun.com&FilePath=/sc/channels3/channels.xml&File=channels.xml [following]
--12:07:41--  https://a248.e.akamai.net/f/248/21808/15m/sun.download.akamai.com/21808/sc/channels3/channels.xml?AuthParam=1236020624_01b507faf428706c2c0b14a7462004e4&TUrl=L0QdUQV8Z4i0fdED3QTP3SJDWA8FMyaJsHfIWf4X29kTWQpKEzIbwqFuyRPZ&TicketId=3qfzk1SANhtW&GroupName=SWUP&BHost=sdlc3h.sun.com&FilePath=/sc/channels3/channels.xml&File=channels.xml
Resolving a248.e.akamai.net... 204.2.215.18, 204.2.215.19
Connecting to a248.e.akamai.net|204.2.215.18|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 66505 (65K) [application/xml]
Saving to: `/tmp/channels.xml'

100%[===============================================================================>] 66,505      --.-K/s   in 0.1s   

12:07:42 (449 KB/s) - `/tmp/channels.xml' saved [66505/66505]

# ls /tmp/channels.xml
/tmp/channels.xml
#

In this example, account@sun.com and password represent the SOA and SOA password that you must provide.

To Verify Network Port Access

Verify that your system allows the following network services and ports:

Communication	Protocol and Port	Purpose
Browser to Enterprise Controller	HTTPS, TCP 9443	Web interface
Browser to Enterprise Controller	HTTP, TCP 80	Redirect to port 9443
Proxy Controller to Enterprise Controller	HTTPS, TCP 443	Proxy Controller push of gear inventory data to server Proxy Controller pull of jobs, update, agent, and OS images
Proxy Controller to Systems	FTP, TCP 21 SSH, TCP 22 Telnet, TCP 23 DHCP, UDP 67,68 SNMP, UDP 161,162 IPMI, TCP+UDP 623 Service Tags, UDP 6481	Discovery, bare metal provisioning, system management, and monitoring
Agent to Proxy Controller	HTTPS, TCP 21165	Agent push of gear inventory data to Proxy Controller Agent pull of jobs
Agent to local host	HTTPS, TCP 8001	Used internally by the agent for local communication.
Agent to Proxy Controller	HTTPS, TCP 8002	Agent download of updates from Proxy Controller
OS to Proxy Controller	HTTPS, TCP 8004	OS provisioning completion status Used for Linux provisioning Used to download the agent tar ball after OS provisioning Used to upload the status messages to the Proxy Controller/Enterprise Controller about failed agent installations
Java client to public APIs	Transport Layer Security(TLS), port 11162	JMX access from clients
WMI to agent	port 11162	WMI communication to agent
NFS/CIFS access from Sun xVM Servers and Enterprise Controller
Enterprise Controller	port 8005	Enterprise Controller in disconnected mode

Where to Go From Here
Review Verifying Resources for Agent Installation to verify that your systems are ready for Sun xVM Ops Center agent installation.
If you have Solaris systems on which you want to install Sun xVM Ops Center, see Solaris Installation for Sun xVM Ops Center to review Solaris OS installation requirements.

Verifying RHEL 5.0 System Resources

Verifying RHEL 5.0 System Resources

Before You Begin

To Check the Operating System Release

To Check the Available Disk Space

To Verify the Amount of System Memory and Swap Space

To Verify the SELinux Setting

To Verify the umask Value

Sun xVM Ops Center Users and Groups

To Verify That Required Packages Are Installed

To Verify Correct IP Address Resolution

To Verify the Locations of ssh Binaries

To Verify That /usr/local Is Writeable

To Verify the Date and Time

To Verify Network Access to Required Web Sites

To Verify Network Port Access

Labels

To Verify the `umask` Value

To Verify the Locations of `ssh` Binaries

To Verify That `/usr/local` Is Writeable