Red Hat Enterprise Linux Version | Red Hat Enterprise Virtualization 2.2 clusters | Red Hat Enterprise Virtualization 3.0 clusters | Red Hat Enterprise Virtualization 3.0 clusters in 2.2 compatibility mode |
---|---|---|---|
5.6 | Supported | Unsupported | Supported |
6.0 | Unsupported | Supported | Supported |
Install Red Hat Enterprise Linux
useradd
Must be Accessiblevdsm
package will fail to create the required system user . The authentication files required by the useradd
command must be accessible to the installer. Red Hat Directory Server (RHDS) recommends a security policy with a mixture of local files and LDAP. Following this recommendation will resolve this issue.
Configure VLANs
VLANs
are configured for access to the Red Hat Enterprise Virtualization Manager.
Check Red Hat Network Subscriptions
Red Hat Enterprise Virt Management Agent (v 6 x86_64)
channel, also referred to as rhel-x86_64-rhev-mgmt-agent-6
, on Red Hat Network. If you do not have the appropriate subscription entitlements, contact Red Hat Customer Service.
rhn_register
command as root
to register it. To complete registration successfully you will need to supply your Red Hat Network username and password. Follow the onscreen prompts to complete registration of the system.
# rhn_register
rhn-channel
command to subscribe the system to channel.
# rhn-channel --add --channel=rhel-x86_64-rhev-mgmt-agent-6
Edit hosts file
/etc/hosts
file (on the Red Hat Enterprise Linux host) for the Red Hat Enterprise Virtualization Manager server to enable vdsm
and other services to connect properly to the host.
server1.example.com
, Active Directory uses that address and creates a sub-address named rhev-manager.server1.example.com
.
/etc/hosts
file on the Red Hat Enterprise Linux Host. The following screen output sample resembles the contents of the file:
127.0.0.1 localhost.localdomain localhost ::1 localhost6.localdomain6 localhost6
/etc/hosts
with the IP address and both variants of the Red Hat Enterprise Virtualization Manager domain names. The following screen output sample resembles the required contents of the file:
127.0.0.1 localhost.localdomain localhost ::1 localhost6.localdomain6 localhost6 10.0.0.1 server1.example.com rhev-manager.server1.example.com
Open firewall ports
iptables
to open the required ports. These steps replace any existing firewall configuration with that required for Red Hat Enterprise Virtualization Manager. If you have existing firewall rules with which this configuration must be merged then you must manually edit the rules defined in the iptables
configuration file, /etc/sysconfig/iptables
.
# iptables --flush
iptables
rules.
# iptables --append INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT # iptables --append INPUT -p icmp -j ACCEPT # iptables --append INPUT -i lo -j ACCEPT # iptables --append INPUT -p tcp --dport 22 -j ACCEPT # iptables --append INPUT -p tcp --dport 16514 -j ACCEPT # iptables --append INPUT -p tcp --dport 54321 -j ACCEPT # iptables --append INPUT -p tcp -m multiport --dports 5634:6166 -j ACCEPT # iptables --append INPUT -p tcp -m multiport --dports 49152:49216 -j ACCEPT # iptables --append INPUT -j REJECT --reject-with icmp-host-prohibited # iptables --append FORWARD -m physdev ! --physdev-is-bridged -j REJECT --reject-with icmp-host-prohibited
iptables
commands add firewall rules to accept network traffic on a number of ports. These include:
22
for SSH,
5634
to 6166
for guest console connections,
16514
for libvirt virtual machine migration traffic,
49152
to 49216
for VDSM virtual machine migration traffic, and
54321
for the Red Hat Enterprise Virtualization Manager.
# service iptables save
iptables
service is configured to start on boot and has been restarted, or started for the first time if it wasn't already running.
# chkconfig iptables on # service iptables restart
Configure sudo
access
root
on the host. The default configuration stored in /etc/sudoers
contains values to allow this. If this file has been modified since Red Had Enterprise Linux installation these values may have been removed. As root
run visudo to ensure that the /etc/sudoers
contains the default configuration values. Where it does not they must be added.
# Allow root to run any commands anywhere root ALL=(ALL) ALL
Enable SSH access for root
root
with an encrypted key for authentication. To ensure that SSH is configured and root
is able to use it to access the system follow these additional steps.
/root/.ssh/authorized_keys
.
# yum install openssh-server
chkconfig
to verify which run-levels SSH is enabled at.
# chkconfig --list sshd sshd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
on
for run-levels 3
, 4
, and 5
. This is the default configuration.
chkconfig
to enable it for the required run-levels. The /etc/init.d/sshd
script can then be used to ensure the service is currently started.
# chkconfig --level 345 sshd on # /etc/init.d/sshd start
chkconfig --list sshd
again and check the output. It should now show the daemon as on
at run-level 3
, 4
, and 5
.
root
user. This is also a requirement for the Red Hat Enterprise Virtualization Manager to successfully access the machine. In some cases administrator's may have disabled this ability.
/etc/ssh/sshd_config
for the value PermitRootLogin
. This must be done while logged in as root
.
# grep PermitRootLogin /etc/ssh/sshd_config PermitRootLogin no
PermitRootLogin
is set to no
the value must be changed to yes
. To do this edit the configuration file.
# vi /etc/ssh/sshd_config
# /etc/init.d/sshd reload Reloading sshd: [ OK ]
root
user should now be able to access the system via SSH.
alom | Sun Integrated Lights Out Manager (ILOM) |
apc | APC Master MasterSwitch network power switch |
bladecenter | IBM Bladecentre Remote Supervisor Adapter |
drac5 | Dell Remote Access Controller for Dell computers |
eps | ePowerSwitch 8M+ network power switch |
ilo | HP Integrated Lights Out standard |
ipmilan | Intelligent Platform Management Interface |
rsa | IBM Remote Supervisor Adaptor |
rsb | Fujitsu-Siemens RSB management interface |
wti | WTI Network PowerSwitch |
Installing
. Once installation is complete, the status will update to Reboot
and then Awaiting
. The host must be activated for the status to change to Up
.