5.3.3 authkeys

Revision as of 07:34, 25 January 2007 by Asender (talk | contribs)

5.3.3: authkeys


The below method provides no security or authentication, so we recommended not to use. If however heartbeat communicates over a private link such as in our case (serial and crossover cable) there is no need to add this additional security.


Step1

[root@node1]# vi authkeys
## /etc/ha.d/authkeys
auth 1
1 crc

The preferred method is to sha encryption to authenticate nodes and their packets as below.

## /etc/ha.d/authkeys
auth 1
1 sha HeartbeatPassword


Step2

Give the authkeys file correct permissions.

[root@node1]# chmod 600 /etc/ha.d/authkeys


Step3

Copy the authkeys file to node2 so they can authenticate with each other.

[root@node1]# scp /etc/ha.d/authkeys root@node2:/etc/ha.d/


Step4

Login to node2 – your backup domain controller, use the exact same configuration as the primary domain controllers configuration files for heartbeat.