[INS-06006] Passwordless SSH connectivity not set up between the following node

I got ” [INS-06006] Passwordless SSH connectivity not set up between the following node  ” error in Oracle database creation on Exadata.

 

[INS-06006] Passwordless SSH connectivity not set up between the following node

 

Details of error are in the DBCA LOG as follows.

[INS-06006] Passwordless SSH connectivity not set up between the following node(s): [msdbadm02].

   

 

Passwordless SSH connectivity not set up between the following node

This [INS-06006] error is related with the Passwordless SSH connectivity not set up between the Cluster nodes

To solve this error, You need to set up the Passwordless SSH connectivity using the following steps.

 

Step-1: Firsty backup the .ssh directory under /home/oracle for the first Node.

[[email protected]:/home/oracle:> cp -r .ssh/ .ssh_ye/

[[email protected]:/home/oracle:> ls -all
total 16
drwxr-xr-x 4 oracle oinstall 256 May 16 15:59 .
drwxr-xr-x 9 bin bin 256 May 15 17:28 ..
-rw------- 1 oracle oinstall 1248 May 16 16:09 .bash_history
-rwxr----- 1 oracle oinstall 254 May 15 17:28 .profile
drwx------ 2 oracle oinstall 256 May 16 16:04 .ssh
drwxr-xr-x 2 oracle oinstall 256 May 16 15:58 .ssh_ye

 

Step-2: Remove the old .ssh directory and create the new one, grant the permission.

[[email protected]:/home/oracle:> rm -r .ssh

[[email protected]:/home/oracle:> mkdir ~/.ssh
[[email protected]:/home/oracle:> chmod 700 .ssh

 

Step-3: Now run the following command to generate RSA public and private key for first node, press Enter for all inputs.

/usr/bin/ssh-keygen -t rsa

 

[[email protected]:/home/oracle:> /usr/bin/ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/oracle/.ssh/id_rsa): 
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in /home/oracle/.ssh/id_rsa.
Your public key has been saved in /home/oracle/.ssh/id_rsa.pub.
The key fingerprint is:
60:79:0f:25:7f:40:83:e9:43:ff:e8:c3:38:91:45:f8 [email protected]
The key's randomart image is:
+--[ RSA 2048]----+
|        .==      |
|       .=+.o     |
|      +oo+. .    |
|     . oooE.     |
|        S+.o     |
|        o . .    |
|         =       |
|        o +      |
|         . .     |
+-----------------+

 

 

 

Perform the same steps on the Second node.

 

Step-4: Firsty backup the .ssh directory under /home/oracle for the first Node.

[[email protected]:/home/oracle:> cp -r .ssh/ .ssh_ye/

[[email protected]:/home/oracle:> ls -all
total 16
drwxr-xr-x 4 oracle oinstall 256 May 16 15:59 .
drwxr-xr-x 9 bin bin 256 May 15 17:28 ..
-rw------- 1 oracle oinstall 1248 May 16 16:09 .bash_history
-rwxr----- 1 oracle oinstall 254 May 15 17:28 .profile
drwx------ 2 oracle oinstall 256 May 16 16:04 .ssh
drwxr-xr-x 2 oracle oinstall 256 May 16 15:58 .ssh_ye

 

Step-5: Remove the old .ssh directory and create the new one, grant the permission.

[[email protected]:/home/oracle:> rm -r .ssh

[[email protected]:/home/oracle:> mkdir ~/.ssh
[[email protected]:/home/oracle:> chmod 700 .ssh

 

Step-6: Now run the following command to generate RSA public and private key for second node, press Enter for all inputs.

/usr/bin/ssh-keygen -t rsa

 

[[email protected]:/home/oracle:> /usr/bin/ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/oracle/.ssh/id_rsa): 
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in /home/oracle/.ssh/id_rsa.
Your public key has been saved in /home/oracle/.ssh/id_rsa.pub.
The key fingerprint is:
a0:36:08:6e:1b:84:41:95:5a:cd:52:bd:6c:6c:94:87 [email protected]
The key's randomart image is:
+--[ RSA 2048]----+
|o...=.. o        |
|.. + o E .       |
|o.o . = o        |
|oo . . B         |
| +. + o S        |
|. o. .           |
| .               |
|                 |
|                 |
+-----------------+

 

Step-7: Now copy the id_rsa.pub file from first node to the second node as /home/oracle/.ssh/authorized_keys as follows.

[[email protected]:/home/oracle:> scp id_rsa.pub msdbdbadm02:/home/oracle/.ssh/authorized_keys
The authenticity of host 'msdbdbadm02 (192.168.63.206)' can't be established.
RSA key fingerprint is bd:14:aa:9d:da:ab:0c:ba:fd:d0:26:b2:f4:67:9e:46.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'msdbdbadm02,192.168.63.206' (RSA) to the list of known hosts.
[email protected]'s password: 
id_rsa.pub                                                                                        100%  401     0.4KB/s   00:00    
[[email protected]:/home/oracle/.ssh:>

 

Step-8: Copy the id_rsa.pub file from second node to the first node as /home/oracle/.ssh/authorized_keys as follows.

[[email protected]:/home/oracle/.ssh:> scp id_rsa.pub msdbdbadm01:/home/oracle/.ssh/authorized_keys
The authenticity of host 'msdbdbadm01 (192.168.63.205)' can't be established.
RSA key fingerprint is bd:14:aa:9d:da:ab:0c:ba:fd:d0:26:b2:f4:67:9e:46.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'msdbdbadm01,192.168.63.205' (RSA) to the list of known hosts.
[email protected]'s password: 
id_rsa.pub                                                                                        100%  401     0.4KB/s   00:00    
[[email protected]:/home/oracle/.ssh:>

 

Step-9: Now append the RSA public key to the authorized_key file on node1 and node2

[[email protected]:/home/oracle/.ssh:>cat id_rsa.pub >>authorized_keys

[[email protected]:/home/oracle/.ssh:>cat id_rsa.pub >>authorized_keys

 

 

 

Step-10: Now SSH Passwordless communication has been established between msdbdbadm01 and msdbdbadm02. You can test it as follows.

[[email protected]:/home/oracle/.ssh:>ssh msdbdbadm02 date
Fri Apr 05 16:15:19 EEST 2020


[[email protected]:/home/oracle/.ssh:>ssh msdbdbadm01 date
Fri Apr 05 16:15:26 EEST 2020



oracle:msdbdbadm01:/home/oracle:> ssh msdbdbadm02
Last unsuccessful login: Tue Apr 05 15:48:01 EEST 2020 on ssh from msdbdbadm01.deveci.local
Last login: Tue May 20 14:28:19 EEST 2020 on /dev/pts/0 from msdbdbadm01.deveci.local
*******************************************************************************
*                                                                             *
*                                                                             *
*                                                                             *
*                            Authorized uses only.                            *
*                                                                             *
*                 All activity may be monitored and reported                  *
*                                                                             *
*                                                                             *
*                                                                             *
*                                                                             *
*******************************************************************************
#############################################
 
run setenv select oracle_home or grid_home
 
#############################################

oracle:msdbdbadm02:/home/oracle:> ssh msdbdbadm01
Last unsuccessful login: Tue Apr 05 16:58:31 EEST 2020 on ssh from msdbdbadm02.deveci.local
Last login: Tue May 20 14:34:48 EEST 2020 on /dev/pts/3 from msdbdbadm02.deveci.local
*******************************************************************************
*                                                                             *
*                                                                             *
*                                                                             *
*                            Authorized uses only.                            *
*                                                                             *
*                 All activity may be monitored and reported                  *
*                                                                             *
*                                                                             *
*                                                                             *
*                                                                             *
*******************************************************************************
#############################################
 
run setenv select oracle_home or grid_home
 
#############################################
oracle:msdbdbadm01:/home/oracle:>

 

Passwordless SSH Connectivity for Oracle user between two nodes have been set up.

 

Setup passwordless SSH via sshUserSetup.sh Oracle sh.

There is a “sshUserSetup.sh” file under “sshsetup” directory in the Grid and Database Setup for Oracle 11gR2 and beyond.

Run this sshUserSetup.sh file to set up this passwordless SSH connectivity.

sshUserSetup.sh syntax is as follows.

./sshUserSetup.sh -user <user name> [ -hosts "<space separated hostlist>" | -hostfile <absolute path of cluster configuration file> ] [ -advanced ] [ -verify] [ -exverify ] [ -logfile <desired absolute path of logfile> ] [-confirm] [-shared] [-help] [-usePassphrase] [-noPromptPassphrase]


[[email protected]:/home/oracle/media/sshsetup:> ./sshUserSetup.sh -user oracle -hosts "msdbdbadm01 msdbdbadm02" -noPromptPassphrase
The output of this script is also logged into /tmp/sshUserSetup_2020-04-01-20-01-06.log
Hosts are msdbdbadm01 msdbdbadm02
user is oracle
Platform:- Linux
Checking if the remote hosts are reachable
PING msdbdbadm01.localdomain (192.168.63.205) 56(84) bytes of data.
64 bytes from msdbdbadm01.localdomain (192.168.63.205): icmp_seq=1 ttl=64 time=0.018 ms
64 bytes from msdbdbadm01.localdomain (192.168.63.205): icmp_seq=2 ttl=64 time=0.017 ms
64 bytes from msdbdbadm01.localdomain (192.168.63.205): icmp_seq=3 ttl=64 time=0.017 ms
64 bytes from msdbdbadm01.localdomain (192.168.63.205): icmp_seq=4 ttl=64 time=0.019 ms
64 bytes from msdbdbadm01.localdomain (192.168.63.205): icmp_seq=5 ttl=64 time=0.018 ms

--- msdbdbadm01.localdomain ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 3999ms
rtt min/avg/max/mdev = 0.017/0.017/0.019/0.004 ms
PING msdbdbadm02.localdomain (192.168.63.206) 56(84) bytes of data.
64 bytes from msdbdbadm02.localdomain (192.168.63.206): icmp_seq=1 ttl=64 time=0.110 ms
64 bytes from msdbdbadm02.localdomain (192.168.63.206): icmp_seq=2 ttl=64 time=0.265 ms
64 bytes from msdbdbadm02.localdomain (192.168.63.206): icmp_seq=3 ttl=64 time=0.254 ms
64 bytes from msdbdbadm02.localdomain (192.168.63.206): icmp_seq=4 ttl=64 time=0.101 ms
64 bytes from msdbdbadm02.localdomain (192.168.63.206): icmp_seq=5 ttl=64 time=0.321 ms

 

Passwordless SSH Connectivity has been established again with sshUserSetup.sh.

 

Second Case:

There is a bug in the 11.2.0.4 version and it is fixed in 12.1.0.2

The workaround is to either allow OUI or manually (note 300548.1) setup ssh user equivalence for the installing user, then in command line window, ensure ssh doesn’t prompt for password for both real hostname and lower case hostname.

For example:

$ ssh RACNODE1 date                    ====>> real hostname for node1
Fri Nov 8 10:01:03 PST 2013      
$ ssh racnode1 date                    ====>> lower case hostname for node1
Fri Nov 8 10:01:04 PST 2013
$ ssh RACNODE2 date
Fri Nov 8 10:01:05 PST 2013
$ ssh racnode2 date
Fri Nov 8 10:01:06 PST 2013

 

In the case of upgrade, the alternate workaround is to update inventory to set to lower case nodename instead of real hostname:

 

$ <OLD_GI_HOME>/oui/bin/runInstaller -updateNodelist ORACLE_HOME=<OLD_GI_HOME> "CLUSTER_NODES={racnode1,racnode2}" CRS=true

 

Note in above command it’s racnode1,racnode2 in lower case despite the hostname is upper case.

 

In addition, verify if there is a mismatch in Hostname Definition (Case Sensitivity) between DNS & /etc/hosts. For example: lower case in DNS & upper case in /etc/hosts OR vice-versa etc.

 

Do you want to learn Linux System Administration for Beginners, then read the following articles.

https://ittutorial.org/linux-administration-tutorial-for-beginners/

 

 

Do you want to learn Oracle Database for Beginners, then read the following articles.

https://ittutorial.org/oracle-database-19c-tutorials-for-beginners/

 4,938 views last month,  1 views today

About Mehmet Salih Deveci

I am Founder of SysDBASoft IT and IT Tutorial and Certified Expert about Oracle & SQL Server database, Goldengate, Exadata Machine, Oracle Database Appliance administrator with 10+years experience.I have OCA, OCP, OCE RAC Expert Certificates I have worked 100+ Banking, Insurance, Finance, Telco and etc. clients as a Consultant, Insource or Outsource.I have done 200+ Operations in this clients such as Exadata Installation & PoC & Migration & Upgrade, Oracle & SQL Server Database Upgrade, Oracle RAC Installation, SQL Server AlwaysOn Installation, Database Migration, Disaster Recovery, Backup Restore, Performance Tuning, Periodic Healthchecks.I have done 2000+ Table replication with Goldengate or SQL Server Replication tool for DWH Databases in many clients.If you need Oracle DBA, SQL Server DBA, APPS DBA,  Exadata, Goldengate, EBS Consultancy and Training you can send my email adress [email protected].-                                                                                                                                                                                                                                                 -Oracle DBA, SQL Server DBA, APPS DBA,  Exadata, Goldengate, EBS ve linux Danışmanlık ve Eğitim için  [email protected] a mail atabilirsiniz.

Leave a Reply