Metro Node:無密碼 SSH 至節點或導向器失敗

Summary: 本文討論在嘗試存取任何 Metro 節點/導向器時的問題,系統會提示您輸入密碼。這不是預期的行為,因為在使用服務帳戶時,Metro Node 支援節點/導向器之間的無密碼 SSH。

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

受影響的 metro node 硬體:
Dell 硬體:Metro Node-mn114/mn215
Dell 硬體:Metro Node - 本機或 Metro

注意:Metro node mn215 僅支援 Metro Node 作業系統 8.0.0 及更新版本。

 

受影響的 metro node 作業系統版本:
Dell 軟體:Metro Node 作業系統 7.x
Dell 軟體:Metro Node 作業系統 8.x

 

問題:
嘗試使用服務帳戶透過 SSH 連接至任何 Metro Node 節點或控制器時,系統會提示您輸入下列密碼:

範例:(以下輸出顯示節點 B 無法執行節點 A 的無密碼 SSH)

service@director-1-1-b:~> ssh 128.221.252.35
Password:

 

症狀:
所有董事報告 director-x-y-z : Systemd IO error: Cannot determine the state of system 在「叢集狀態」輸出上,如下所示:

範例:

VPlexcli:/> cluster status
WARNING: There are unreachable directors: director-1-1-A. Connectivity may still have errors even if none are reported.

Cluster cluster-1
        operational-status:            degraded
        transitioning-indications:     disk(s) not visible from all directors,meta data problem
        transitioning-progress:
        health-state:                  degraded
        health-indications:            director-1-1-A : Systemd IO error:  Cannot determine the state of system services

        local-com:                     connectivity: NONE

LC-00 ports - FAIL - Failed to determine expected connectivity.
LC-01 ports - FAIL - Failed to determine expected connectivity.

Cluster Name Port Group MTU  Connectivity Status
------------ ---------- ---- ------------ -----------
cluster-1    LC-00      1500 fail         all-enabled
             LC-01      1500 fail         all-enabled
cluster-2    LC-00      1500 fail         all-enabled
             LC-01      1500 fail         all-enabled

     man-com:                       connectivity: NONE

MC-01 ports - FAIL - Failed to determine expected connectivity.
MC-00 ports - FAIL - Failed to determine expected connectivity.

Cluster Name Port Group MTU  Connectivity Status
------------ ---------- ---- ------------ -----------
cluster-1    MC-00      1500 fail         all-enabled
             MC-01      1500 fail         all-enabled
cluster-2    MC-00      1500 fail         all-enabled
             MC-01      1500 fail         all-enabled

Cluster cluster-2
        operational-status:            ok
        transitioning-indications:
        transitioning-progress:
        health-state:                  ok
        health-indications:
        local-com:                     ok
        man-com:                       ok

wan-com: ok

 

Cause

如果將服務目錄權限修改為完全存取 (777) (讀取、寫入和執行權限),則可能會出現此問題

 

Resolution

因應措施步驟:

  1. 以服務使用者身分登入受影響的節點,然後從 service/Linux 提示字元輸入以下命令,前往 service-maintenance-window:

    sudo /usr/sbin/service-maintenance-window -f

  2. 檢查並更改為受影響節點上的服務目錄定義的許可權,如下所示:

    範例:(依症狀區段影響的 metro node node-A)

    From:
director-1-1-a:/home # ll
total 28
drwxr-x---  6 admin      users  4096 Aug 20  2021 admin
drwxr-x---  6 eseservice users  4096 Aug 20  2021 eseservice
drwx------  2 root       root  16384 Mar  3  2022 lost+found
drwxrwxrwx 11 service    users  4096 May 20 05:08 service

To:
director-1-1-a:/home # chmod 750 service
director-1-1-a:/home # ll
total 28
drwxr-x---  6 admin      users  4096 Aug 20  2021 admin
drwxr-x---  6 eseservice users  4096 Aug 20  2021 eseservice
drwx------  2 root       root  16384 Mar  3  2022 lost+found
drwxr-x--- 11 service    users  4096 May 20 05:08 service

  3. 嘗試以服務使用者身分 SSH 返回受影響的節點,並確認您是否可以使用無密碼 SSH,如下所示:

    範例:(以下輸出顯示節點 B 可以成功執行節點 A 的無密碼 SSH)

    service@director-1-1-b:~> ssh 128.221.252.35
Last login: Mon May 20 05:32:04 2024 from 10.107.104.132
service@director-1-1-a:~>

  4. 再次執行叢集狀態命令,確認未出現任何錯誤:

    VPlexcli:/> cluster status
Cluster cluster-1
        operational-status:            ok
        transitioning-indications:
        transitioning-progress:
        health-state:                  ok
        health-indications:
        local-com:                     ok
        man-com:                       ok


Cluster cluster-2
        operational-status:            ok
        transitioning-indications:
        transitioning-progress:
        health-state:                  ok
        health-indications:
        local-com:                     ok
        man-com:                       ok


wan-com: ok

 

Additional Information

*使用中 chmod 在絕對模式下*
在絕對模式下,許可權以數位形式表示(準確地說是八進位系統)。在此系統中,每個文件許可權都由一個數位表示。

 

r (讀取) = 4
W (寫入) = 2
x (執行) = 1
– (無許可權) = 0
使用這些數值,可以組合它們,因此可以使用一個數位來表示整個許可權集。

 

編號 權限
0
1 –x
2 -w-
3 個 (亦即 2+1) -WX
4 r–
5 個 (亦即 4+1) R-X
6 個 (亦即 4+2) RW-
7 個 (亦即 4+2+1) RWX

 

Affected Products

metro node, metro node mn-114, metro node mn-215
Article Properties
Article Number: 000225209
Article Type: Solution
Last Modified: 21 May 2024
Version:  1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.