Manualshelf

Veritas Storage Foundation 5.1 SP1 for Oracle RAC Administrator"s Guide (5900-1512, April 2011)

ManualsBrandsHP ManualsSoftwareHP-UX 11i Volume Management (LVM/VxVM) Software
61626364656667686970
In both the configurations, VCS provides local start and stop of the CP server
process, taking care of dependencies such as NIC, IP address, etc.. Moreover, VCS
also serves to restart the CP server process in case the process faults.
To make the CP server process highly available, you must perform the following
tasks:
Install and configure SFHA on the CP server systems.
Configure the CP server process as a failover service group.
Configure disk-based I/O fencing to protect the shared CP server database.
Note: Symantec recommends that you do not run any other applications on the
single node or SFHA cluster that is used to host CP server.
A single CP server can serve multiple SF Oracle RAC clusters. A common set of
CP servers can serve up to 128 SF Oracle RAC clusters.
About secure communication between the SF Oracle RAC
cluster and CP server
In a data center, TCP/IP communication between the SF Oracle RAC cluster and
CP server must be made secure. The security of the communication channel
involves encryption, authentication, and authorization.
The CP server node or cluster needs to confirm the authenticity of the SF Oracle
RAC cluster nodes that communicate with it as a coordination point and only
accept requests from known SF Oracle RAC cluster nodes. Requests from unknown
clients are rejected as non-authenticated. Similarly, the fencing framework in SF
Oracle RAC cluster must confirm that authentic users are conducting fencing
operations with the CP server.
The encryption and authentication service for CP server is provided by Symantec
Product Authentication Service. To enable Symantec Product Authentication
Service, the VRTSat package is installed on the SF Oracle RAC clusters as well as
CP server, as a part of VCS product installation.
Figure 1-11 displays a schematic of secure communication between the SF Oracle
RAC cluster and CP server. An authentication broker is configured on CP server
and each SF Oracle RAC cluster node which authenticates clients such as users
or services, and grants them a product credential.
Overview of Veritas Storage Foundation for Oracle RAC
About preventing data corruption with I/O fencing
66