[OpenAFS] running vos from "another" machine

Dexter 'Kim' Kimball dhk@ccre.com
Thu, 25 Aug 2005 10:09:44 -0600 

Ron,

"vos" per se doesn't require the /usr/afs/etc directory

OTOH "vos" with "-localauth" _does_ require the up-to-date
/usr/afs/etc/KeyFile

"-localauth" essentially means "I'm root on this here machine that has a
KeyFile so create some AFS admin credentials for me." =20

Without the KeyFile "vos ... -localauth" simply can't create the
token/ticket you require.

If you sftp /usr/afs/etc/KeyFile from one of your AFS servers to the
client-only box from  which you're running vos you'll be up and running =
with
"vos .... -localauth"

When you change keys remember to update the KeyFile on your admin =
client.

Putting the KeyFile on a client isn't a good idea unless the machine in
question is secure/limited access, which yours is.

Kim


     -----Original Message-----
     From: openafs-info-admin@openafs.org=20
     [mailto:openafs-info-admin@openafs.org] On Behalf Of Ron=20
     Croonenberg
     Sent: Wednesday, August 24, 2005 4:07 PM
     To: dhk@ccre.com
     Cc: openafs-info@openafs.org
     Subject: RE: [OpenAFS] running vos from "another" machine
    =20
    =20
     Hi,
    =20
     I have installed/setup :
     openafs-1.2.13-rhel3.0.1
     openafs-client-1.2.13-rhel3.0.1
     openafs-kernel-1.2.13-rhel3.0.1
    =20
     now if I try to do a vos dump like :
     vos dump -id homestaff.cowboy.backup -f
     /data/afs-dump/homestaff.cowboy.backup -localauth         =20
                 =20
                             =20
    =20
     then:
     vsu_ClientInit: Could not process files in configuration directory
     (/usr/afs/etc).
     could not initialize VLDB library (code=3D4294967295)=20
    =20
     And when I look in /usr/afs, then /usr/afs/etc isn't there.
    =20
     So I assume in order to use vos  it needs to be there.=20
     What needs to be
     in it ?  the same thing/stuff as in the=20
     fileserver/dbserver /usr/afs/etc
     ?
    =20
     >....., so be sure to have a local account or a local=20
     password for your=20
     >AFS account.
    =20
     I have a local account on that machine.
    =20
     > You'll have to klog after you log in.
    =20
     right..  and that seems to work just fine.
         =20
     >I'm sure we could come up with something more complicated :)
    =20
     ;-)  looking forward to it...
    =20
     oh and btw, in case you're wondering  why I want this..  I=20
     want to dump
     the volumes on a "backup server" that no one has access to.
     (other stuff is dumped/archived on that machine too)
    =20
     thanks,
         =20
     Ron
    =20
    =20
     _______________________________________________
     OpenAFS-info mailing list
     OpenAFS-info@openafs.org
     https://lists.openafs.org/mailman/listinfo/openafs-info
    =20