RHEL7: How to get started with OpenLMI.

Last updated on (12,281 views) - CertDepot No Comments ↓
Share this link
Google+0
LinkedIn0

OpenLMI Presentation

OpenLMI stands for Open Linux Management Infrastructure.

It’s a new way to manage a set of servers remotely from a unique client.

There are two configuration steps:

  • server side configuration that gives instructions to apply on a remotely managed server and
  • client side configuration that details instructions for the client.

Server configuration

To allow remote server management, you need to install the OpenLMI package:

[srv]# yum install -y openlmi

Then, you need to start the component in charge of receiving orders (the object broker pegasus):

[srv]# systemctl start tog-pegasus
[srv]# systemctl enable tog-pegasus

To be able to receive orders, the server firewall needs to be opened to WBEM port (Web-Based Enterprise Management):

[srv]# firewall-cmd --permanent --add-port 5989/tcp

Even though SELinux experts are working on it, it is still necessary to put SELinux in permissive mode for the time being:

[srv]# setenforce 0

Or, replace enforcing by permissive in the /etc/selinux/config file and reboot.

Finally, a password must be given to the pegasus user:

[srv]# passwd pegasus

Client configuration

To allow a client to manage a set of remote servers, you need to install the OpenLMI-tools package:

[clt]# yum install -y openlmi-tools

Then, you need to add a new yum repository in order to get the OpenLMI scripts easily:

[clt]# cd /etc/yum.repos.d
[clt]# wget "http://www.openlmi.org/sites/default/files/repo/rhel7/noarch/openlmi-scripts.repo"

Now, you can install the OpenLMI scripts:

[clt]# yum install "openlmi-scripts*"

To allow the client to connect to the server, you need to get the certificate of the remote server (called here srv):

[clt]# scp root@srv:/etc/Pegasus/server.pem /etc/pki/ca-trust/source/anchors/srv-cert.pem

Finally, the certificate needs to be added to the client truststore:

[clt]# update-ca-trust extract

Configuration test

To test the configuration, type the following command to connect to the server (called here srv) from the client:

[clt]# lmi -h srv
lmi> service show httpd.service
username: pegasus
password:
 Name=httpd.service
 Caption=The Apache HTTP Server
 Enabled=False
 Active=False
 Status=Stopped
lmi> exit

Or, alternatively:

[clt]# lmi -h srv service show httpd.service
username: pegasus
password:
 Name=httpd.service
 Caption=The Apache HTTP Server
 Enabled=False
 Active=False
 Status=Stopped

Sources: Russ Doty’s blog and OpenLMI website.

Additional Resources

In addition, you can watch the following videos:

(No Ratings Yet)
Loading...

Leave a Reply

Upcoming Events (Local Time)

There are no events.

Follow me on Twitter

Archives

xhampster
vceplus-200-125    | boson-200-125    | training-cissp    | actualtests-cissp    | techexams-cissp    | gratisexams-300-075    | pearsonitcertification-210-260    | examsboost-210-260    | examsforall-210-260    | dumps4free-210-260    | reddit-210-260    | cisexams-352-001    | itexamfox-352-001    | passguaranteed-352-001    | passeasily-352-001    | freeccnastudyguide-200-120    | gocertify-200-120    | passcerty-200-120    | certifyguide-70-980    | dumpscollection-70-980    | examcollection-70-534    | cbtnuggets-210-065    | examfiles-400-051    | passitdump-400-051    | pearsonitcertification-70-462    | anderseide-70-347    | thomas-70-533    | research-1V0-605    | topix-102-400    | certdepot-EX200    | pearsonit-640-916    | itproguru-70-533    | reddit-100-105    | channel9-70-346    | anderseide-70-346    | theiia-IIA-CIA-PART3    | certificationHP-hp0-s41    | pearsonitcertification-640-916    | anderMicrosoft-70-534    | cathMicrosoft-70-462    | examcollection-cca-500    | techexams-gcih    | mslearn-70-346    | measureup-70-486    | pass4sure-hp0-s41    | iiba-640-916    | itsecurity-sscp    | cbtnuggets-300-320    | blogged-70-486    | pass4sure-IIA-CIA-PART1    | cbtnuggets-100-101    | developerhandbook-70-486    | lpicisco-101    | mylearn-1V0-605    | tomsitpro-cism    | gnosis-101    | channel9Mic-70-534    | ipass-IIA-CIA-PART1    | forcerts-70-417    | tests-sy0-401    | ipasstheciaexam-IIA-CIA-PART3    | mostcisco-300-135    | buildazure-70-533    | cloudera-cca-500    | pdf4cert-2v0-621    | f5cisco-101    | gocertify-1z0-062    | quora-640-916    | micrcosoft-70-480    | brain2pass-70-417    | examcompass-sy0-401    | global-EX200    | iassc-ICGB    | vceplus-300-115    | quizlet-810-403    | cbtnuggets-70-697    | educationOracle-1Z0-434    | channel9-70-534    | officialcerts-400-051    | examsboost-IIA-CIA-PART1    | networktut-300-135    | teststarter-300-206    | pluralsight-70-486    | coding-70-486    | freeccna-100-101    | digitaltut-300-101    | iiba-CBAP    | virtuallymikebrown-640-916    | isaca-cism    | whizlabs-pmp    | techexams-70-980    | ciscopress-300-115    | techtarget-cism    | pearsonitcertification-300-070    | testking-2v0-621    | isacaNew-cism    | simplilearn-pmi-rmp    | simplilearn-pmp    | educationOracle-1z0-809    | education-1z0-809    | teachertube-1Z0-434    | villanovau-CBAP    | quora-300-206    | certifyguide-300-208    | cbtnuggets-100-105    | flydumps-70-417    | gratisexams-1V0-605    | ituonline-1z0-062    | techexams-cas-002    | simplilearn-70-534    | pluralsight-70-697    | theiia-IIA-CIA-PART1    | itexamtips-400-051    | pearsonitcertification-EX200    | pluralsight-70-480    | learn-hp0-s42    | giac-gpen    | mindhub-102-400    | coursesmsu-CBAP    | examsforall-2v0-621    | developerhandbook-70-487    | root-EX200    | coderanch-1z0-809    | getfreedumps-1z0-062    | comptia-cas-002    | quora-1z0-809    | boson-300-135    | killtest-2v0-621    | learncia-IIA-CIA-PART3    | computer-gcih    | universitycloudera-cca-500    | itexamrun-70-410    | certificationHPv2-hp0-s41    | certskills-100-105    | skipitnow-70-417    | gocertify-sy0-401    | prep4sure-70-417    | simplilearn-cisa    |
http://www.pmsas.pr.gov.br/wp-content/    | http://www.pmsas.pr.gov.br/wp-content/    |