Multiple questions on installation

[chiensh]

We have installed TrinityX to provision an HPC cluster. After conducting some tests, we are considering the possibility of adding an additional login node. Currently, there seems to be only one entry available to define the FQDN for a login node.

Could you please advise how we can install an additional login node with the following setup?

• One login node dedicated to providing OOD (Open OnDemand) services for users, with no direct SSH login under normal circumstances.
• Another login node dedicated to traditional SSH logins via tools like PuTTY or terminal access. i.e. no OOD is required on this node.

Additionally, we are curious if it is possible to add an HA (High Availability) controller after the installation has already been completed.

Thanks!

[aphmschonewille]

To limit ssh to a/any (login) node, have a look at how filters are done in /etc/sssd.conf (typically a regular node image). to make it less image dependable, maybe a luna post section can be used (e.g. something with sed to replace some parts?). If all the OOD login nodes should filter ssh, then you can change this straight into the login image sssd.conf

Having an ssh login node comes close to a regular node. I'd re-use/clone a node image for this purpose and also change the sssd.conf filters to not limit ssh.

Don't forget to pack after an image change.

[aphmschonewille]

Unfortunately it is not possible to make a non HA setup into an HA setup at a later stage. The biggest reasons for are shared disks, certificates, hostnames, etc etc which would take longer to workout compared to a reinstall with HA enabled from the get go.