Skip to content
pvmehta.com

pvmehta.com

  • Home
  • About Me
  • Toggle search form
  • rm_backup_arch_file.ksh Linux/Unix
  • How to collect CPU usage on Linux using Shell script Linux/Unix
  • Proc code Oracle
  • Drop tempfiles from database Oracle
  • SQL Server Vs Oracle Architecture difference SQL Server
  • Drop all SPM baselines for SQL handle Oracle
  • Privilege to describe the table. Oracle
  • Rename Tablespace Oracle
  • chk_space_SID.ksh Linux/Unix
  • Database link password in user_db_links Oracle
  • on IBM-AIX for display Linux/Unix
  • purge_trc.sh Linux/Unix
  • Oracle Connections expire_time and firewall Oracle
  • SYSOPER Mystery Oracle
  • good linux notes Linux/Unix

Configure ssh authentications for RAC

Posted on 04-Jan-2009 By Admin No Comments on Configure ssh authentications for RAC

Applies to:

Oracle Server – Enterprise Edition – Version: 10.1.0.2 to 11.1.0.6

Information in this document applies to any platform.

Reviewed 22-Oct-2008

Goal

This document will explain how to configure SSH, which is required to run a RAC installation. Following the instructions in the installation guide are also correct, but sometimes this will not work, although the reason for that isn’t clear. Therefore after some investigation it seems to be that the steps below will work too.

Solution

To configure SSH you need to perform the following steps on each node in the cluster.

$ cd $HOME

$ mkdir .ssh

$ chmod 700 .ssh

$ cd .ssh

$ ssh-keygen -t rsa

Now accept the default location for the key file

Enter and confirm a passphrase. (you can also press enter twice).

$ ssh-keygen -t dsa

Now accept the default location for the key file

Enter and confirm a passphrase. (you can also press enter twice).

$ cat *.pub > authorized_keys. (nodeX could be the nodename to differentiate files later)

Now do the same steps on the other nodes in the cluster.

When all those steps are done on the other nodes, start to copy the authorized_keys. to all the nodes into $HOME/.ssh/

For example if you have 4 nodes you will have after the copy in the .ssh 4 files with the name authorized_keys.

Then on EACH node continue the configuration of SSH by doing the following:

$ cd $HOME/.ssh

$ cat *.node* > authorized_keys

$ chmod 600 authorized_keys

To test that everything is working correct now execute the commands

$ ssh date

So on example in a 4 node environment:

$ ssh node1 date

$ ssh node2 date

$ ssh node3 date

$ ssh node4 date

Repeat this 4 times on each node, including the node itself. The nodeX is the hostname of the node.

The first time you will be asked to add the node to a file called ‘known_hosts’ this is correct and answer the question with ‘yes’. After that when correctly configured you must be able to get the date returned and you will not be prompted for a password.

Note: the above will work if during RSA and DSA configuration no password was provided. If you provide a password then you need to do 2 addition steps.

$ exec /usr/bin/ssh-agent $SHELL

$ /usr/bin/ssh-add

These statements will inform the ssh agent to add the keys to the shell used. So when a new shell is started you need to repeat the last to statements to make sure ssh is working properly.

ssh will not allow passwordless access if permissions on the home directory of the account you are using allow write access for everyone.

You will also see permission denied error when the permissions on $HOME are 777 or 775.

Disable banner (/etc/banner) on all cluster nodes when you

* run clusterverify (cluvfy, runcluvfy)

* install software

* patch the system

Oracle, RAC

Post navigation

Previous Post: 339939.1 Running Cluster Verification Utility to Diagnose Install Problems
Next Post: 10g RAC: Troubleshooting CRS Root.sh Problems

Related Posts

  • DB Console Mainenance. Oracle
  • ENQ: KO – FAST OBJECT CHECKPOINT tips Oracle
  • SQL Tracker by SID sqltrackerbysid.sql Oracle
  • Standby Database File Management in 10g with STANDBY_FILE_MANAGEMENT Oracle
  • ORA-01220 Oracle
  • New Latest Param.sql for finding all hidden parameters also Oracle

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Categories

  • Ansible (0)
  • AWS (2)
  • Azure (1)
  • Django (0)
  • GIT (1)
  • Linux/Unix (150)
  • MYSQL (5)
  • Oracle (403)
  • PHP/MYSQL/Wordpress (10)
  • POSTGRESQL (1)
  • Power-BI (0)
  • Python/PySpark (7)
  • RAC (18)
  • rman-dataguard (26)
  • shell (151)
  • SQL scripts (349)
  • SQL Server (6)
  • Uncategorized (5)
  • Videos (0)

Recent Posts

  • Key Management in Oracle: The Core Issue: Missing Master Key12-May-2026
  • SAT Mathematics 10 questions and answer at the end.30-Apr-2026
  • top 10 AI news today30-Apr-2026
  • runon_allpdbs_show_conname.sh23-Apr-2026
  • runon_allcdbs_find_pdbs.sh23-Apr-2026
  • Running PDB on single node in RAC09-Apr-2026
  • find_arc.sql09-Apr-2026
  • pvm_pre_change.sql08-Apr-2026
  • find_encr_wallet.sql08-Apr-2026
  • find_pdbs.sql08-Apr-2026

Archives

  • 2026
  • 2025
  • 2024
  • 2023
  • 2010
  • 2009
  • 2008
  • 2007
  • 2006
  • 2005
  • sess_server.sql Oracle
  • To seee semaphores and shared memory segments in Solaris Linux/Unix
  • check_copy_progress.sh Linux/Unix
  • Check SQL Server edition SQL Server
  • _B_TREE_BITMAP_PLANS issue during 8.1.7 to 9.2.0.8 upgrade Oracle
  • oracle 11g RAC on vmware Oracle
  • Kernel Parameter setting explaination for Processes Parameter Linux/Unix
  • scripts to take listener.log backup Linux/Unix

Copyright © 2026 pvmehta.com.

Powered by PressBook News WordPress theme