How to un-configure Veritas Storage Foundation High Availability cluster from using Single Sign-on Security provided by Symantec Product Authentication Service

Problem

How to un-configure Veritas Storage Foundation High Availability for Windows (SFW-HA) cluster from using Single Sign-on security provided by Symantec Product Authentication Service and configuring VCS User Privileges.

Solution

This procedure configures the use of VCS User Privileges and disables the use of Single Sign-on security.

1. Save the cluster configuration. This can be done by typing the following command through the Command Line Interface (CLI):

haconf -dump -makero


2. Stop the "Veritas High Availability Engine" (had.exe) service on all nodes.  This can be done by stopping the service in Windows, or by typing the following command through the CLI:

hastop -all -force


3. Stop the "Veritas Command Server" (CmdServer) service on all nodes.  This can be done by stopping the service in Windows, or by typing the following command on each server:

net stop cmdserver


4. From each node in the cluster, remove the '.secure' file from the %VCS_HOME%\conf\config directory

Note: %VCS_HOME% represents the SFW-HA installation directory.  By default, this is C:\Program Files\VERITAS\Cluster Server.


5. Restart the "Veritas Command Server" (CmdServer) service on all nodes.  This can be done by starting the service in Windows, or by typing the following command on each server:

net start cmdserver


6. Open the main.cf file in a text editor such as Notepad.  This file is located under the %VCS_HOME%\conf\config directory.


7. In the main.cf file, set the SecureClus attribute to 0

For example:

SecureClus = 0

For example:
cluster VCSCluster9495 (
UserNames = { admin = gmnFmhMjnInnLvnHmk }
Administrators = { admin }
SecureClus = 0
CredRenewFrequency = 0
CounterInterval = 5
)


8. Save the cluster configuration changes.  This can be done from Notepad by clicking on File > Save.

9. Copy the modified main.cf file to each server in the cluster.  The default file location is in the %VCS_HOME%\conf\config directory on each server.

10. Restart the "Veritas High Availability Engine" on all nodes.  This can be done from within Windows, or by typing the following command:

hastart -all

11. Make the cluster configuration writeable. This can be done by typing the following command:

haconf -makerw

12. Add a login for the cluster. This can be done by typing the following command:

hauser -add Admin -priv Administrator

Note: "Admin" can be substituted with another name.

13. Save and close the cluster configuration. This can be done by typing the following command:

haconf -dump -makero
 

Terms of use for this information are found in Legal Notices.

Search

Survey

Did this article answer your question or resolve your issue?

No
Yes

Did this article save you the trouble of contacting technical support?

No
Yes

How can we make this article more helpful?

Email Address (Optional)