Resetting The Nas Ssh Key For Configuration Communications - IBM Storwize V7000 Unified Problem Determination Manual
Hide thumbs
Also See for Storwize V7000 Unified:
- Introduction and implementation manual (670 pages) ,
- Problem determination manual (348 pages) ,
- Troubleshooting and maintenance manual (189 pages)
Table of Contents
Advertisement
Results
The chrootpwd program prompts you for the new root password.
The chrootpwd program sets the new root password on both file modules in the
cluster.
Resetting the NAS ssh key for configuration communications
The configuration communications between the Storwize V7000 file modules and
the control enclosure are done by using SSH over the site 1 Gbps Ethernet LAN;
whereas the file data traffic is passed over the direct connect Fibre Channel links
by using the SCSI protocol.
Before you begin
During the USB initialization of the Storwize V7000 Unified system, one of the
node canisters in the control enclosure creates a public/private key pair to use for
ssh. The node canister stores the public key and writes the private key to the USB
flash drive memory.
One of the file modules then takes the private key from the USB flash drive
memory to use for ssh. The file module passes it to the other file module over the
direct connect Ethernet link and then deletes the private key from the USB flash
drive memory so that it cannot be used on the wrong system.
It might be necessary to reset the NAS SSH key in the following circumstances:
v When communications between the Storwize V7000 file module and the
v When both Storwize V7000 file modules have lost the original NAS ssh key.
v When the Storwize V7000 control enclosure has lost the NAS ssh key.
About this task
Reset the NAS SSH key so that the communications between the file modules and
the Storwize V7000 control enclosure resume. To reset the ssh key, generate the
NAS.ppk file on the Storwize V7000, and transfer it via SCP to the management
node to import it.
Procedure
1. Log on to the Storwize V7000 control enclosure management CLI as superuser
2. Use the management GUI to see which of the file modules is the active
3. Log on to the file module that is the active management node as CLI user via
4. Use SCP to copy the private key file from the /dumps directory on the Storwize
402
Storwize V7000 Unified: Problem Determination Guide 2073-720
Storwize V7000 control enclosure is not authorized because of a bad key.
and run the following command to generate the new NAS SSH key:
satask chnaskey -privkeyfile NAS.ppk
The private key is left in the /dumps directory.
management node and find the IP address for that file module.
the file module IP address that you identified in the previous step. For
example:
ssh -p 1602 admin@file module IP address
You are prompted for the admin password twice.
V7000 to the /tmp directory on this file module using the following command:
scp superuser@system IP address:/dumps/NAS.ppk /tmp
Advertisement
Table of Contents
Troubleshooting
