META TOPICPARENT |
name="AdministrationGuide" |
Installazione front end (WS-Pgrade)
yum install mysql mysql-server httpd mod_ssl
service mysqld start
mysqladmin -u root password '*****'
mysql -u root -p
grant all on *.* to 'root'@'%' identified by '*****';
create user 'liferay'@'localhost' identified by 'liferayPassword';
create database liferay;
grant all on liferay.* to 'liferay'@'localhost' identified by 'liferayPassword';
create user 'PortalUser'@'localhost' identified by 'PortalUserPassword';
create database PortalUser;
grant all on PortalUser.* to 'PortalUser'@'localhost' identified by 'PortalUserPassword';
flush privileges;
chkconfig mysqld on
service httpd start
chkconfig httpd on
vim /etc/httpd/conf.d/ssl.conf
SSLCertificateFile /root/hostcert.pem
SSLCertificateKeyFile /root/hostkey.pem
SSLCACertificateFile /etc/grid-security/certificates/INFN-CA-2006.pem
vim /etc/httpd/conf.d/redirect.conf
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
vim /etc/httpd/conf.d/proxy_ajp.conf
ProxyPass / ajp://localhost:8009/
service httpd restart
mkdir guse-3.5.4
cd guse-3.5.4
wget http://downloads.sourceforge.net/project/guse/3.5.4/guse-3.5.4.tgz?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fguse%2Ffiles%2F3.5.4%2F&ts=1366111871&use_mirror=garr
tar -zxf guse-3.5.4.tgz
cd
chown root:root -R guse-3.5.4
wget http://downloads.sourceforge.net/project/lportal/Liferay%20Portal/6.1.0%20GA1/liferay-portal-tomcat-6.1.0-ce-ga1-20120106155615760.zip?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Flportal%2Ffiles%2FLiferay%2520Portal%2F6.1.0%2520GA1%2F&ts=1366112303&use_mirror=garr
yum install unzip
unzip liferay-portal-tomcat-6.1.0-ce-ga1-20120106155615760.zip
mv liferay-portal-6.1.0-ce-ga1/ /opt/liferay-portal-6.1.0
yum install tomcat6
mv /etc/grid-security/host* ./
cp hostcert.pem hostcert-tomcat.pem
cp hostkey.pem hostkey-tomcat.pem
chown tomcat:tomcat host*-tomcat*
chown tomcat:tomcat -R /opt/liferay-portal-6.1.0
vim .bash_profile
alias startTomcat="su -s /bin/sh - tomcat -c /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/startup.sh"
alias stopTomcat="su -s /bin/sh - tomcat -c /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/shutdown.sh"
source .bash_profile
mkdir ~/bin
vim bin/restartTomcat
#! /bin/sh
echo "Stopping TOMCAT..."
su -s /bin/sh tomcat -c /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/startup.sh
echo "TOMCAT Stopped"
sleep 10
echo "Starting TOMCAT..."
su -s /bin/sh tomcat -c /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/shutdown.sh
echo "TOMCAT Started"
chmod a+x bin/restartTomcat
vim /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/setenv.sh
JAVA_OPTS="$JAVA_OPTS -Dfile.encoding=UTF8 -Dorg.apache.catalina.loader.WebappClassLoader.ENABLE_CLEAR_REFERENCES=false -Duser.timezone=GMT+2 -Xmx1024m -XX:MaxPermSize=1024m -Dorg.apache.jasper.compiler.Parser.STRICT_QUOTE_ESCAPING=false"
startTomcat
scp -r root@flyback.cnaf.infn.it:/upload_files /
chown tomcat:tomcat -R /upload_files
yum install MySQL-python pexpect myproxy fetch-crl
touch /var/lock/subsys/fetch-crl-cron
[Copiare script per proxy e vo]
chmod a+x /upload_files/get_vo_info.py
crontab -e
0 0 * * * /upload_files/get_vo_info.py
[Configuro UI sul backend]
yum install nfs-utils
mkdir /etc/vomses
mount -t nfs gridlab04.cnaf.infn.it:/etc/vomses/ /etc/vomses
[deploy IGI Portlet: Registration Login VO-Manager Hook: control-panel landing-page]
chown tomcat:tomcat /opt/liferay-portal-6.1.0/deploy/*
mysql -u root -p
create database guse;
create user 'guse'@'localhost' identified by 'gusePassword';
create user 'guse'@'guse.cnaf.infn.it' identified by 'gusePassword';
GRANT ALL PRIVILEGES ON *.* TO 'guse'@'localhost' WITH GRANT OPTION;
GRANT ALL PRIVILEGES ON *.* TO 'guse'@'guse.cnaf.infn.it' WITH GRANT OPTION;
GRANT SUPER ON *.* TO 'guse'@'localhost';
GRANT SUPER ON *.* TO 'guse'@'guse.cnaf.infn.it';
flush privileges;
mysql -u guse -pgusePassword guse < guse-3.5.4/sql/guse_tables.sql
mysql -u guse -pgusePassword guse < guse-3.5.4/sql/guse_table_mess.sql
mysql -u guse -pgusePassword guse < guse-3.5.4/sql/guse_tables_index.sql
cd guse-3.5.4/sql/
vim statistics.properties
DBUSER=guse
DBNAME=guse
DBPASS=gusePassword
DBHOST=localhost
./stat_sql_install.sh
cp guse-3.5.6/tomcatlibs/* /opt/liferay-portal-6.1.0/tomcat-7.0.23/lib/
rm -rf /opt/liferay-portal-6.1.0/tomcat-7.0.23/lib/javaee-api-5.0-1.jar
chown tomcat:tomcat /opt/liferay-portal-6.1.0/tomcat-7.0.23/lib/*
[Sostituire jce con bcprov e cancellare javaee*.jar]
stopTomcat
startTomcat
[vanno modificati information.war e dci_bridge_service.war]
chown tomcat:tomcat -R guse-3.5.4/webapplications/*
[deploy di wspgrade.war e statvisualizer.war]
su -s /bin/sh tomcat -c /opt/liferay-portal-6.1.0/tomcat-7.0.23/bin/startup.sh
[registrare un utente]
vim /etc/exports
/opt/liferay-portal-6.1.0/tomcat-7.0.23/temp/users/ 131.154.101.34(ro,sync,no_root_squash)
/opt/liferay-portal-6.1.0/tomcat-7.0.23/temp/users/ 131.154.101.65(ro,sync,all_squash,anonuid=91,anongid=91)
service rpcbind start
chkconfig rpcbind on
service nfs start
chkconfig nfs on
[Modificare description.jsp e WorkflowImportPortlet.java]
[Deploy Job Importer]
[get wnodes and stratuslab rpm]
yum localinstall stratuslab-cli-user-2.8-1.noarch.rpm
yum localinstall wnodes_cli-1.1.0-8.el6.noarch.rpm
[installare gateone]
scp -r flyback.cnaf.infn.it:/root/gateone64-standalone ./
./gateone.sh start
[deploy wnodes portlet modificare file main.js]
[Deploy ASM portlet]
rpm -ivh http://emisoft.web.cern.ch/emisoft/dist/EMI/3/sl6/x86_64/base/emi-release-3.0.0-2.el6.noarch.rpm
yum install lcg-util lcg-info lcg-infosites lfc
[Messa in sicurezza macchina]
[Configurare iptables]
vim /etc/sudoers
dmichelotto ALL=(ALL) NOPASSWD: ALL
mbenci ALL=(ALL) NOPASSWD: ALL
useradd dmichelotto
passwd dmichelotto
[copia chiame pubblica su account dmichelotto]
su - dmichelotto
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
useradd mbenci
passwd mbenci
[copia chiave pubblica su account mbenci]
su - mbenci
mkdir .ssh
chmod 700 .ssh
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
vim /etc/ssh/sshd_config
PasswordAuthentication no
service sshd restart
Installazione Back End (gUSE)
mv /etc/grid-security/host* ./
vim .bash_profile [ADD]
export GUSE_PREFIX="/opt/guse"
export JAVA_OPTS="-server -Xms256m -Xmx1024m -XX:MaxPermSize=512m -Dfile.encoding=UTF8 -Duser.timezone=CEST - Djava.security.auth.login.config=/opt/guse/apache-tomcat-6.0.36/conf/jaas.config"
export X509_USER_PROXY=x509up
export CATALINA_OPTS="-DcrlUpdateInterval=0s -DcrlEnabled=false -Dorg.globus.tcp.port.range=20000,25000"
export GUSE_BACKEND_HOST=gridlab04.cnaf.infn.it
export GUSE_FRONTEND_HOST=gridlab02.cnaf.infn.it
export GUSE_MYSQL_SERVER=gridlab02.cnaf.infn.it:3306
export IS_GUSE_BACKEND=true
yum install tomcat6 tomcat6-admin-webapps tomcat6-webapps
service tomcat6 start
chkconfig tomcat6 on
mkdir guse-3.5.6
cd guse-3.5.6
wget http://downloads.sourceforge.net/project/guse/3.5.4/guse-3.5.4.tgz?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fguse%2Ffiles%2F3.5.4%2F&ts=1366111871&use_mirror=garr
tar -zxf guse-3.5.4.tgz
cd
chown root:root -R guse-3.5.4
rpm -ivh http://emisoft.web.cern.ch/emisoft/dist/EMI/3/sl6/x86_64/base/emi-release-3.0.0-2.el6.noarch.rpm
yum install emi-ui
/opt/glite/yaim/bin/yaim -v -s siteinfo/site-info.def -n UI
/opt/glite/yaim/bin/yaim -c -d 6 -s siteinfo/site-info.def -n UI 2>&1 | tee /root/conf_UI.`hostname -s`.`date +%Y-%m-%d-%H-%M-%S`.log
yum install nfs-utils
vim /etc/exports
/etc/vomses 131.154.101.107(ro,sync,no_root_squash)
service rpcbind start
chkconfig rpcbind on
service nfs start
chkconfig nfs on
[Posso deployare portlet]
cp guse-3.5.4/tomcatlibs/* /usr/share/tomcat6/lib
[deploy altri war]
service tomcat6 start
[inizializzare wspgrade Se inizializzazione non va compilare a m riavviare]
mount -t nfs portal.italiangrid.it:/opt/liferay-portal-6.1.0/tomcat-7.0.23/temp/users/ /usr/share/tomcat6/temp/users/
[editare classi wspgrade]
vim /usr/share/tomcat6/conf/tomcat6.conf
X509_USER_PROXY="x509up”
CATALINA_OPTS="-DcrlUpdateInterval=0s -DcrlEnabled=false -Dorg.globus.tcp.port.range=20000,25000"
vim /usr/share/tomcat6/conf/tomcat-users.xml
<role rolename="tomcat"/>
<role rolename="role1"/>
<role rolename="manager"/>
<user username="tomcat" password="tomcat" roles="tomcat"/>
<user username="both" password="tomcat" roles="tomcat,role1"/>
<user username="role1" password="tomcat" roles="role1"/>
<user username="manager" password="managerpass" roles="manager"/>
[replace LinuxWrapperForGrid Grid_glite]
service tomcat6 start
[Messa in sicurezza macchina]
[Configurare iptables]
vim /etc/sudoers
dmichelotto ALL=(ALL) NOPASSWD: ALL
mbenci ALL=(ALL) NOPASSWD: ALL
useradd dmichelotto
passwd dmichelotto
[copia chiame pubblica su account dmichelotto]
su - dmichelotto
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
useradd mbenci
passwd mbenci
[copia chiame pubblica su account mbenci]
su - mbenci
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
vim /etc/ssh/sshd_config
PasswordAuthentication no
service sshd restart
Migrazione Utenti e JOB
[copia database liferay, portaluser e guse]
[cambiare cas configuration]
[cambiare portlet id liferay e halfback]
[cambiare service urls per guse]
[copia folder users, repository, storage, dci_bridge]
chown tomcat:tomcat -R /usr/share/tomcat6/temp
[su front end]
stopTomcat
startTomcat
[su back end]
service tomcat6 restart
[init services]
[lasciare creare a ws pgrade le varie cartelle per lo storage delle ASM riavviare e copiarci dentro le varie cartelle]
Installazione DIRAC
rpm -ivh http://emisoft.web.cern.ch/emisoft/dist/EMI/3/sl6/x86_64/base/emi-release-3.0.0-2.el6.noarch.rpm
yum install emi-ui
/opt/glite/yaim/bin/yaim -v -s siteinfo/site-info.def -n UI
/opt/glite/yaim/bin/yaim -c -d 6 -s siteinfo/site-info.def -n UI 2>&1 | tee /root/conf_UI.`hostname -s`.`date +%Y-%m-%d-%H-%M-%S`.log
[Segui guida per installare https://github.com/DIRACGrid/DIRACDocs/blob/master/source/AdministratorGuide/InstallingDIRACService/index.rst e configura con https://github.com/DIRACGrid/DIRACDocs/blob/master/source/AdministratorGuide/MultiVO/index.rst]
[Messa in sicurezza macchina]
[Configurare iptables]
vim /etc/sudoers
dmichelotto ALL=(ALL) NOPASSWD: ALL
mbenci ALL=(ALL) NOPASSWD: ALL
useradd dmichelotto
passwd dmichelotto
[copia chiame pubblica su account dmichelotto]
su - dmichelotto
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
useradd mbenci
passwd mbenci
[copia chiame pubblica su account mbenci]
su - mbenci
cat id_rsa.pub .ssh/authorized_keys
chmod 600 .ssh/authorized_keys
ctrl + d
vim /etc/ssh/sshd_config
PasswordAuthentication no
service sshd restart
-- TWikiAdminUser - 2014-04-22
META TOPICMOVED |
by="BaseUserMapping_333" date="1398162799" from="IGIPortal.Guidediinstallazione" to="IGIPortal.GuideInstallazione" |
|