AF:
NF:0
PS:10
SRH:1
SFN:
DSR:
MID:
CFG:
PT:0
S:andy.sharp@lsi.com
RQ:
SSV:mhbs.lsil.com
NSV:
SSH:
R:<mtracy@css.glasshouse.com>
MAID:2
X-Sylpheed-Privacy-System:
X-Sylpheed-Sign:0
SCF:#mh/Mailbox/sent
RMID:#imap/LSI/INBOX	0	4B968985.7070801@css.glasshouse.com
X-Sylpheed-End-Special-Headers: 1
Date: Tue, 9 Mar 2010 09:56:10 -0800
From: Andrew Sharp <andy.sharp@lsi.com>
To: Michael Tracy <mtracy@css.glasshouse.com>
Subject: Re: passwordless ssh for one user to one vsvr to get and set user
 quota information.
Message-ID: <20100309095610.78c377b5@ripper.onstor.net>
In-Reply-To: <4B968985.7070801@css.glasshouse.com>
References: <4B968985.7070801@css.glasshouse.com>
Organization: LSI
X-Mailer: Sylpheed-Claws 2.6.0 (GTK+ 2.8.20; x86_64-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

Did they start at 4.0.2.12 or did they upgrade from release earlier
than 4.0.2.11?  It could be that they need to generate new key pair for
the account on the filer.


On Tue, 9 Mar 2010 10:46:45 -0700 Michael Tracy
<mtracy@css.glasshouse.com> wrote:

> site has a reproducible issue
> 
> They're at 4.0.2.12 so they shouldn't have hit the defect fixed in
> 4.0.2.11 27544 Unable to connect to system after upgrade using
> passwordless ssh
> 
> I'm at a loss for what to try next. Any suggestions
> 
> Michael
> 
> Below is a description of the issue
> 
> ________________________________
> We have now 3 node cougar cluster.
> We need passwordless ssh for one user to one vsvr to get and set user
> quota information.
> 
> lets say we have 3 vsvrs on each cougar node.
> vsvr hosting is on node dir-nfs-3. There is vsvr svod and dir_bg
> 
> According to Onstor wiki we add user useraccount add quotactl -k
> "PUBLIC DSA KEY GOES HERE" then we do
> priv add allow quotactl cluster login cluster
> priv add allow quutactl vsvr quota hosting2
> 
> after issuing priv commands we find that for all vsvr's on node where
> vsvr hosting2 is starts to have problems when clients accessing
> files. There is no indication of any problem in elog. And on a first
> look shares seems to be working . ls command on client works , mkdir,
> cd and touch too. But opening file, write to it or delete file or
> directory returns error 526 on clients side.
> 
> If all vsvr's are moved from vsvr dir-nfs-3 - everything get to
> normal.
> 
> We reproduce this 3 times with success.
> 
>  We try with different user.
> dir-nfs-3> useraccount add gch -k "ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA8Z9NsEVKEwN2e+TE4aeTzf9ov55o5duUJsCxJgSMqd561jf/wPetaAOnOeQVpAVSlSkW09+GHAXnu77PbSIhXANZO458423nM5sHSjZqLzbiol9ym4SN6Oa95mypeykYHO+c4qEn1aPiItQH8282kelTFKvrpqbjcTyWUHXv17x0kdb3CRbFryTrnyGzV5VA08BhsxZfCtepMLOMCS9suUuFAduiyqjXTkZcavEr3h5Cd28yBFGApk9x2vGAczdcjojyPM4GNwuHEYCteeOz5nX/j24jhztMGR4bqLZTFipOipDFygwwdWxbezAu5JcCqCbCAFDitK9pLJLL/ACTCQ==
> gchavdarov@files" Enter Password: Confirm Password:
> Success: User account creation completed.
> dir-nfs-3> priv add allow user gch  login cluster
> 
> 
> After command priv add allow user USERNAME login cluster
> 
> we get the same situation
> 
> from client side access to files end up with error
> 
> root@new-system:/mnt/hosting#  rm -rf testtt testtt2
> 
> rm: cannot remove directory `testtt': Unknown error 526
> 
> rm: cannot remove directory `testtt2': Unknown error 526
> 
> 
> After this we move vsvr hosting2  to dir-nfs-2 filer and got there
> all vsvr with client access errors.
> 
