Establishing A Trust Relationship - Juniper NETWORK AND SECURITY MANAGER 2010.4 - INSTALLATION GUIDE REV1 Installation Manual

Establishing a Trust Relationship

Copyright © 2010, Juniper Networks, Inc.
kernel.shmmax= 402653184
After updating the shared memory requirements on your Linux or Solaris system, you
must reboot the server for your new settings to take effect.
If you want to send copies of your file backups to a remote machine, then you must
establish a trust relationship between the management system server and the remote
machine.
To establish a trust relationship between two machines:
Run the following commands on the management system server:
1.
cd /home/nsm
su nsm
ssh-keygen -t rsa
chmod 0700 .ssh
If prompted to enter a password, leave the value blank.
Run the following commands on the remote machine:
2.
cd /home/nsm
su nsm
ssh-keygen -t rsa
chmod 0700 .ssh
If prompted to enter a password, leave the value blank.
From the remote machine, copy
3.
directory. For example:
.ssh/authorized_keys
scp .ssh/id_rsa.pub root@<IP addr management system>:/root.ssh/authorized_keys
From the server running the management system, copy
4.
machine's .ssh/authorized_keys
scp .ssh/id_rsa.pub root@<IP addr remote machine>:/root.ssh/authorized_keys
NOTE: If the remote machine already has established trust relationships
with other computers, overwriting the
trust relationships. Instead, copy the contents of the
a new line at the end of the
Test connectivity via SSH from the primary server to the remote machine and vice
5.
versa. For example, to test SSH connectivity from NSM Server1 to remote machine,
enter the following command:
ssh root@<IP ADDRESS of remote machine>
Change the permissions of the
6.
the following command:
Chapter 3: Installing NSM in a Standalone Configuration
.ssh/id_rsa.pub to the management system server's
.ssh/id_rsa.pub
. For example:
authorized_keys
authorized_keys file on the remote machine.
.ssh directory on each machine to owner-only, using
to the remote
file will break those
file onto
id_rsa.pub
27