You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »

CentOS 7 is centrally supported at SLAC for the following platforms:

  • VMware virtual machine
  • OpenStack virtual machine
  • Bare metal server
  • Desktop workstation - under development.  If you wish to help testing, email unix-admin@slac.stanford.edu

Although RHEL 7 is also available if required by your application for support, CentOS 7 is preferred and recommended instead.

Step-by-step guide

These are the steps to install and configure CentOS 7 at SLAC for a headless bare metal server, or virtual machine in VMware or OpenStack:

 

  1. Install CentOS 7 using either the Minimal or the DVD ISO available here (available on the SLAC network or VPN):

    http://yum.slac.stanford.edu/iso/centos/7

     

  2. Log into your new CentOS 7 host. 
    Become root by using sudo or /bin/su. 
    Install Chef by running this command as root:

    curl -s http://yum.slac.stanford.edu/go-chef | /bin/sh

     

  3. Before you exit your root prompt, you need to modify this file:

    /etc/security/access.netgroup.conf

    Add a line that looks like this (replace 'ksa' with your username):

    + : ksa : ALL

    Make sure to add that line above the last line.  Here is an example of what the file might look like if you wanted to grant login access to SLAC users ksa and vanilla:

    + : root : LOCAL  134.79.0.0/16 172.16.0.0/12
    + : ksa : ALL
    + : vanilla : ALL
    + : @u-scs-staff : ALL
    - : ALL : ALL

     

  4. And still before you exit your root prompt, create a sudoers entry for yourself inside the /etc/sudoers.d directory. 
    You can copy and paste the following (replace 'ksa' with your username):

    cat > /etc/sudoers.d/user-ksa << EOF
    ksa   ALL=ALL
    EOF

     

 

After you install Chef using the go-chef script, your CentOS 7 host will be configured for central authentication using Unix Kerberos.

Here are some of the configuration items that will be configured by Chef:

  • cron
  • logrotate
  • rsyslog
  • /etc/motd
  • root password
  • kerberos
  • ssh
  • shells
  • sssd
  • ntp
  • yum
  • yum-cron
  • sudo for unix-admin
  • login access for unix-admin

 

These are the configuration items Scientific Computing Services (SCS) is working on next:

  • AFS client
  • NFS client
  • login access for users
  • sudo access for users
  • GDM login on video console for a desktop

 

In addition, the ITDS Desktop Support team are currently testing CentOS 7 on their lab machines. 

 

Please send any questions to unix-admin@slac.stanford.edu

 

  • No labels