Cluster SSH Configuration

When configuring a Linux application server cluster, the OS account that runs the STEP software (default ‘stibosw’) must be able to login via SSH between the application servers without being prompted for a password. This secure access is accomplished by using public key authentication.

SSH Setup

1. Select one machine to be the temporary master. This machine is where the commands will be run.
2. On the master machine, enter the following command with the stibosw account:

ssh-keygen -t dsa   

Note: Accept all defaults.

3. On each other machine in the cluster except the master, enter the following commands with the stibosw account:

ssh-keygen -t dsa   

ssh master cat ~/.ssh/id_dsa.pub >> ~/.ssh/authorized_keys

chmod 600 ~/.ssh/authorized_keys

Note: Accept all defaults.

4. The stibosw account on the master machine can now ssh to all other machines using public key authentication. Repeat the above steps so any application server in the cluster can act as the 'master.'
5. Once the ssh keyexchange is done, it is possible for the stibosw user on the cluster to ssh to any other machine using public key authentication.