Enable secure shell (SSH) logins

The administrative account must be able to use Secure Shell (SSH) to log in (ssh) to all hosts without specifying a password.

The administrative account must be able to use Secure Shell (SSH) to log in (ssh) to all hosts without specifying a password. The shell script install_vertica does this automatically. This section describes how to do it manually if necessary.

  1. If you do not already have SSH installed on all hosts, log in as root on each host and install it now. You can download a free version of the SSH connectivity tools from OpenSSH.

  2. Log in to the Vertica administrator account (dbadmin in this example).

  3. Make your home directory (~) writable only by yourself. Choose one of:

    $ chmod 700 ~
    

    or

    $ chmod 755 ~
    

    where:

    700 includes 755 includes

    400 read by owner

    200 write by owner

    100 execute by owner

    400 read by owner

    200 write by owner

    100 execute by owner

    040 read by group

    010 execute by group

    004 read by anybody (other)

    001 execute by anybody

  4. Change to your home directory:

$ cd ~
  1. Generate a private key/ public key pair:
$ ssh-keygen -t rsaGenerating public/private rsa key pair.
Enter file in which to save the key (/home/dbadmin/.ssh/id_rsa):
Created directory '/home/dbadmin/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/dbadmin/.ssh/id_rsa.
Your public key has been saved in /home/dbadmin/.ssh/id_rsa.pub.
  1. Make your .ssh directory readable and writable only by yourself:
$ chmod 700 ~/.ssh
  1. Change to the .ssh directory:
$ cd ~/.ssh
  1. Copy the file id_rsa.pub onto the file authorized_keys2.
$ cp id_rsa.pub authorized_keys2
  1. Make the files in your .ssh directory readable and writable only by yourself:
$ chmod 600 ~/.ssh/*
  1. For each cluster host:
$ scp -r ~/.ssh <host>:.
  1. Connect to each cluster host. The first time you ssh to a new remote machine, you could get a message similar to the following:
$ ssh dev0 Warning: Permanently added 'dev0,192.168.1.92' (RSA) to the list of known hosts.

This message appears only the first time you ssh to a particular remote host.

See also