Veritas InfoScale™ 8.0.2 Installation Guide - Linux

Last Published:
Product(s): InfoScale & Storage Foundation (8.0.2)
Platform: Linux
  1. Section I. Planning and preparation
    1. Introducing Veritas InfoScale
      1.  
        About the Veritas InfoScale product suite
      2.  
        Components of the Veritas InfoScale product suite
      3.  
        About the co-existence of InfoScale products
    2. Licensing Veritas InfoScale
      1.  
        About Veritas InfoScale product licensing
      2.  
        About InfoScale Core Plus license meter
      3.  
        About telemetry data collection in InfoScale
      4.  
        Licensing notes
      5. About managing InfoScale licenses
        1.  
          About the vxlicinstupgrade utility
      6.  
        Generating license report with vxlicrep command
    3. System requirements
      1.  
        Important release information
      2.  
        Disk space requirements
      3. Hardware requirements
        1.  
          SF and SFHA hardware requirements
        2.  
          SFCFS and SFCFSHA hardware requirements
        3.  
          SF Oracle RAC hardware requirements
        4.  
          VCS hardware requirements
      4.  
        Supported operating systems and database versions
      5.  
        Number of nodes supported
      6.  
        Get the InfoScale cryptographic public keys (for Secure Boot-enabled systems)
    4. Preparing to install
      1.  
        Mounting the ISO image
      2.  
        Setting up ssh or rsh for inter-system communications
      3.  
        Obtaining installer patches
      4.  
        Disabling external network connection attempts
      5.  
        Verifying the systems before installation
      6. Setting up the private network
        1.  
          Optimizing LLT media speed settings on private NICs
        2.  
          Guidelines for setting the media speed for LLT interconnects
        3.  
          Guidelines for setting the maximum transmission unit (MTU) for LLT interconnects in Flexible Storage Sharing (FSS) environments
      7. Setting up shared storage
        1.  
          Setting up shared storage: SCSI
        2.  
          Setting up shared storage: Fibre Channel
      8.  
        Synchronizing time settings on cluster nodes
      9.  
        Setting the kernel.hung_task_panic tunable
      10. Planning the installation setup for SF Oracle RAC systems
        1. Planning your network configuration
          1.  
            Planning the public network configuration for Oracle RAC
          2. Planning the private network configuration for Oracle RAC
            1.  
              High availability solutions for Oracle RAC private network
          3.  
            Planning the public network configuration for Oracle RAC
          4.  
            Planning the private network configuration for Oracle RAC
        2. Planning the storage
          1.  
            Planning the storage
          2. Planning the storage for Oracle RAC
            1. Planning the storage for OCR and voting disk
              1.  
                OCR and voting disk storage configuration for external redundancy
              2.  
                OCR and voting disk storage configuration for normal redundancy
            2.  
              Planning the storage for Oracle RAC binaries and data files
            3.  
              Planning for Oracle RAC ASM over CVM
        3.  
          Planning volume layout
        4.  
          Planning file system design
        5.  
          Setting the umask before installation
        6.  
          Setting the kernel.panic tunable
        7.  
          Configuring the I/O scheduler
      11. Preparing for deployment in a Secure Boot environment
        1.  
          About enabling Secure Boot on InfoScale hosts
        2.  
          Enrolling the InfoScale public key
        3.  
          Considerations for working with InfoScale in a Secure Boot environment
  2. Section II. Installation of Veritas InfoScale
    1. Installing Veritas InfoScale using the installer
      1.  
        Installing Veritas InfoScale using the installer
      2.  
        Installing or upgrading Veritas InfoScale by using the installer as a sudo user
      3.  
        Installing or upgrading Veritas InfoScale using the installer with the -yum option
      4.  
        Executive Order logging
    2. Installing Veritas InfoScale using response files
      1. About response files
        1.  
          Syntax in the response file
      2.  
        Installing InfoScale using response files
      3.  
        Response file variables to install Veritas InfoScale
      4.  
        Sample response files for Veritas InfoScale installation
    3. Installing Veritas Infoscale using operating system-specific methods
      1.  
        Verifying Veritas InfoScale RPMs
      2.  
        About installing InfoScale using operating system-specific methods
      3. Installing InfoScale using Kickstart
        1.  
          Sample Kickstart configuration file
      4.  
        Installing Veritas InfoScale using yum
      5. Installing InfoScale using the Red Hat Satellite server
        1.  
          Using Red Hat Satellite server to install InfoScale products
    4. Completing the post installation tasks
      1.  
        Verifying product installation
      2.  
        Setting environment variables
      3.  
        Commands to manage the Veritas telemetry collector on your server
      4.  
        Next steps after installation
  3. Section III. Uninstallation of Veritas InfoScale
    1. Uninstalling Veritas InfoScale using the installer
      1.  
        Removing VxFS file systems
      2.  
        Removing rootability
      3. Moving volumes to disk partitions
        1.  
          Moving volumes onto disk partitions using VxVM
      4.  
        Removing the Replicated Data Set
      5.  
        Uninstalling InfoScale RPMs using the installer
      6.  
        Removing the Storage Foundation for Databases (SFDB) repository
    2. Uninstalling Veritas InfoScale using response files
      1.  
        Uninstalling InfoScale using response files
      2.  
        Response file variables to uninstall Veritas InfoScale
      3.  
        Sample response file for Veritas InfoScale uninstallation
  4. Section IV. Installation reference
    1. Appendix A. Installation scripts
      1.  
        Installation script options
    2. Appendix B. Tunable files for installation
      1.  
        About setting tunable parameters using the installer or a response file
      2.  
        Setting tunables for an installation, configuration, or upgrade
      3.  
        Setting tunables with no other installer-related operations
      4.  
        Setting tunables with an un-integrated response file
      5.  
        Preparing the tunables file
      6.  
        Setting parameters for the tunables file
      7.  
        Tunables value parameter definitions
    3. Appendix C. Troubleshooting installation issues
      1.  
        Restarting the installer after a failed network connection
      2.  
        About the VRTSspt RPM troubleshooting tools
      3.  
        Incorrect permissions for root on remote system
      4.  
        Inaccessible system
    4. Appendix D. Managing InfoScale digital signatures (Secure Boot environment)
      1.  
        Verify an InfoScale module signature key
      2.  
        Removing the InfoScale public key

Enrolling the InfoScale public key

To deploy InfoScale packages that contain digitally signed kernel modules, you first download the InfoScale public key. Then, import and enroll that key to the Machine Owner Key (MOK) database on each system.

Verify the following before you proceed:

  • Ensure that the Secure Boot feature is enabled on the system.

  • Ensure that you have administrative privileges on the system.

  • Ensure that you have console access to the systems (Web Console access in case of VMware virtual machines). Console access is required to access the UEFI Setup Screen during system startup.

Note:

To enroll the public key on SLES OS, Veritas recommends the following versions for the required rpms:

mokutil-0.4.0-150200.4.6.1.x86_64 or later, shim-15.4-4.7.1.x86_64 or later

To enroll the InfoScale public key

  1. To download the InfoScale public key, connect to a system using ssh and then type the following command:

    # wget publickey_location

    Here, publickey_location represents the source location of the public key.

    For example, to download the key directly from the Veritas SORT website, enter the following command:

    # wget https://sort.veritas.com/public/infoscale/keys/pubkey.der

    See Get the InfoScale cryptographic public keys (for Secure Boot-enabled systems).

  2. Verify that the key has downloaded successfully. Type the following command:

    # ls

    A key named pubkey.der appears in the list of local files and directories, as shown:

    Boot	etc	lib64	mnt_12345	proc	run	src	usr afs	bin	home	
media	sys	var	sbin	dev	lib mnt	opt	root	pubkey.der
  3. Import the downloaded public key on the system using the following command:

    # mokutil --import pubkey.der

  4. On the password prompt, assign a password for the public key.

    Then type the same password again to confirm the password.

    Note:

    Make a note of this password. The password is required in the subsequent step for enrolling the key in the system MOK.

    The same password is also required if you want to delete the key from the system.

  5. To add the imported public key to the Machine Owner Key (MOK) database on the system, switch to the console view of the system and then restart the system.
  6. At system boot, the UEFI key management screen appears for a few seconds. Quickly press any key to enter the MOK management interface.

    Note:

    If you miss the UEFI key management screen at startup, restart the system and try again.

  7. On the Perform MOK management screen, select Enroll MOK from the list of options that are displayed and press Enter.

  8. On the Enroll MOK screen, select Continue and press Enter.
  9. On the Enroll the key(s) screen, select Yes and press Enter.
  10. On the password prompt, type the password that you assigned to the public key earlier and then press Enter.

  11. On the Perform MOK management screen, select Reboot and press Enter to restart the system.

  12. To verify that the public key is successfully added, connect to the system again using ssh and type the following command at the terminal:

    # mokutil --list-enrolled

    The Veritas public key appears in the list of enrolled keys on the system. The command output resembles the following:

    Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:60:a1:4b:8d:3a:af:9:94:c4:a6:8:56:08:ce:0:84:bd:b8:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: O=Veritas Technologies LLC, CN=Veritas Technologies LLC Kernel
signing key/emailAddress=enterprise_technical_support@veritas.com
Validity
Not Before: Dec 13 12:31:12 2022 GMT
Not After I sep 26 12:31:12 2296 GMT

    Subject: O=Veritas Technologies LLC, CN=Veritas Technologies LLC Kernel
signing key/emailAddress=enterprise_technical_support@veritas.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:44:09:26:05:13:76:58:18:1:8f:f0: fe:4a:1d:
0b:6c:a5:01:94:2d:05:75:45:11:44:06:ad:2e:35:
2e:7e:20:7a:3e:8f:d2:3e:e2:c0:fb:44:0d:15:1b:
4c:b1:06:3:b9:93:fa:2d:5d:76:4:08:52:02:01:
de: f2:46:48:24:44d1:1a:3c:b9:39:0:73:24:04:
2c:dc: 58:99:75:81:b7:d1:ff:89:de: 1d: 8e: d9: ee:
6c:9a:ba:5e:20:26:a4:dd: 96:9e:82:0a:89:95:60:
00:5e:ba: 98:2:91:62:08:39:66:83:70:84:b6:54:
2f:50:7a:00:9:56:7d:fe: e2:5:8a:b6:63:7a:ce:
47:33:44:04:20:e3: d6:74:51:0:96: da: 20:80:ff:
21:e4:96:eb:27:dc:93:24:dd:e3:53:5c:5e:ec:47:
08:28:d3:88:ae:27:8c:11:80:C4:47:04:46:ff:54:
95:13:98:d6:14:9:01:87:1a:6b:07:4:8:72:d7:

    The process of enrolling the InfoScale public key on the system is now complete.

    Repeat these steps on all the systems where you intend to deploy the InfoScale packages that contain digitally signed kernel modules.