[OpenAFS] running vos from "another" machine

Dexter 'Kim' Kimball dhk@ccre.com
Fri, 26 Aug 2005 10:36:29 -0600


Issue the "tokens" command and see who you are.

Then issue "bos listu <fileserver>" on your fileservers and see who's in =
the
UserList.

You should have tokens for someone listed in UserList.

Kim


     -----Original Message-----
     From: openafs-info-admin@openafs.org=20
     [mailto:openafs-info-admin@openafs.org] On Behalf Of Ron=20
     Croonenberg
     Sent: Thursday, August 25, 2005 11:51 AM
     To: dhk@ccre.com
     Cc: openafs-info@openafs.org
     Subject: RE: [OpenAFS] running vos from "another" machine
    =20
    =20
     Hi Kim,
    =20
     I noticed that the -localauth had something to do with it.
    =20
     Sooo...what I did is simply execute  the vos commands without the
     -localauth. And that seemed to work.
    =20
     Maybe I am missing something, it surprised me. I didn't=20
     klog or anything
     and was able to "dump" a volume.
    =20
     Ron
    =20
    =20
     >>> "Dexter 'Kim' Kimball" <dhk@ccre.com> 08/25/05 11:09 AM >>>
     Ron,
    =20
     "vos" per se doesn't require the /usr/afs/etc directory
    =20
     OTOH "vos" with "-localauth" _does_ require the up-to-date
     /usr/afs/etc/KeyFile
    =20
     "-localauth" essentially means "I'm root on this here=20
     machine that has a
     KeyFile so create some AFS admin credentials for me." =20
    =20
     Without the KeyFile "vos ... -localauth" simply can't create the
     token/ticket you require.
    =20
     If you sftp /usr/afs/etc/KeyFile from one of your AFS=20
     servers to the
     client-only box from  which you're running vos you'll be=20
     up and running
     with
     "vos .... -localauth"
    =20
     When you change keys remember to update the KeyFile on your admin
     client.
    =20
     Putting the KeyFile on a client isn't a good idea unless=20
     the machine in
     question is secure/limited access, which yours is.
    =20
     Kim
    =20
    =20
          -----Original Message-----
          From: openafs-info-admin@openafs.org=20
          [mailto:openafs-info-admin@openafs.org] On Behalf Of Ron=20
          Croonenberg
          Sent: Wednesday, August 24, 2005 4:07 PM
          To: dhk@ccre.com
          Cc: openafs-info@openafs.org
          Subject: RE: [OpenAFS] running vos from "another" machine
         =20
         =20
          Hi,
         =20
          I have installed/setup :
          openafs-1.2.13-rhel3.0.1
          openafs-client-1.2.13-rhel3.0.1
          openafs-kernel-1.2.13-rhel3.0.1
         =20
          now if I try to do a vos dump like :
          vos dump -id homestaff.cowboy.backup -f
          /data/afs-dump/homestaff.cowboy.backup -localauth         =20
                      =20
                                  =20
         =20
          then:
          vsu_ClientInit: Could not process files in=20
     configuration directory
          (/usr/afs/etc).
          could not initialize VLDB library (code=3D4294967295)=20
         =20
          And when I look in /usr/afs, then /usr/afs/etc isn't there.
         =20
          So I assume in order to use vos  it needs to be there.=20
          What needs to be
          in it ?  the same thing/stuff as in the=20
          fileserver/dbserver /usr/afs/etc
          ?
         =20
          >....., so be sure to have a local account or a local=20
          password for your=20
          >AFS account.
         =20
          I have a local account on that machine.
         =20
          > You'll have to klog after you log in.
         =20
          right..  and that seems to work just fine.
              =20
          >I'm sure we could come up with something more complicated :)
         =20
          ;-)  looking forward to it...
         =20
          oh and btw, in case you're wondering  why I want this..  I=20
          want to dump
          the volumes on a "backup server" that no one has access to.
          (other stuff is dumped/archived on that machine too)
         =20
          thanks,
              =20
          Ron
         =20
         =20
          _______________________________________________
          OpenAFS-info mailing list
          OpenAFS-info@openafs.org
          https://lists.openafs.org/mailman/listinfo/openafs-info
         =20
    =20
    =20
     _______________________________________________
     OpenAFS-info mailing list
     OpenAFS-info@openafs.org
     https://lists.openafs.org/mailman/listinfo/openafs-info
    =20
     _______________________________________________
     OpenAFS-info mailing list
     OpenAFS-info@openafs.org
     https://lists.openafs.org/mailman/listinfo/openafs-info
    =20