Cyrus Frontend Instance Configuration
From Syscore
Currently, the frontends are just zones on the servers that are housing the backends. This describes the procedure for doing their installs, from creating the zone to configuring credentials. Most everything is taken care of by cfengine.
[edit]
Zone Creation
mkdir -p /local/zones zonecfg -z $server-fe.mail.umbc.edu
This stuff is done within zonecfg:
create set zonepath=/local/zones/$server-fe.mail.umbc.edu zonecfg:ms3-fe.mail.umbc.edu> remove inherit-pkg-dir dir=/lib zonecfg:ms3-fe.mail.umbc.edu> remove inherit-pkg-dir dir=/sbin zonecfg:ms3-fe.mail.umbc.edu> remove inherit-pkg-dir dir=/usr zonecfg:ms3-fe.mail.umbc.edu> add fs zonecfg:ms3-fe.mail.umbc.edu:fs> set dir=/opt zonecfg:ms3-fe.mail.umbc.edu:fs> set special=/opt zonecfg:ms3-fe.mail.umbc.edu:fs> set type=lofs zonecfg:ms3-fe.mail.umbc.edu:fs> set options=ro zonecfg:ms3-fe.mail.umbc.edu:fs> end zonecfg:ms3-fe.mail.umbc.edu> add fs zonecfg:ms3-fe.mail.umbc.edu:fs> set dir=/afs zonecfg:ms3-fe.mail.umbc.edu:fs> set special=/afs zonecfg:ms3-fe.mail.umbc.edu:fs> set type=lofs zonecfg:ms3-fe.mail.umbc.edu:fs> end zonecfg:ms3-fe.mail.umbc.edu> add net zonecfg:ms3-fe.mail.umbc.edu:net> set address=$serverip zonecfg:ms3-fe.mail.umbc.edu:net> set physical=nge0 zonecfg:ms3-fe.mail.umbc.edu:net> end
zoneadm -z $server-fe.mail.umbc.edu install rm /local/zones/$server-fe.mail.umbc.edu/root/etc/init.d/afs cp /etc/name_to_sysnum /local/zones/$server-fe.mail.umbc.edu/root/etc zoneadm -z $server-fe.mail.umbc.edu boot zlogin -C $server-fe.mail.umbc.edu
(go through the sysidconfig stuff) Do an initial cfengine & a reboot
[edit]
Credentials
(this is in a state of flux right now, it'll probably change before going production)
Copy the /etc/ssl contents from another frontend server, make sure cyrus can read it.
Copy the keytab from another frontend server, it should already have current kt entries for
mail/new.mail.umbc.edu imap/new.mail.umbc.edu pop/new.mail.umbc.edu sieve/new.mail.umbc.edu lmtp/new.mail.umbc.edu cyrus/fe
...and create the following entries with ank -randkey, then ktadd them:
host/$server-fe.mail.umbc.edu
And you're done. The rest is in cfengine.
