Currently Implemented Conga Feature Set
General Agent Features
- Runs on RHEL4 or RHEL5
- HIGHLY Secure (has been thru security audit) interface to agent
- SSL connection
- Offers fingerprint for inspection before password is necessary to avoid M-I-T-M attacks
- Password shredding
- Agent runs as a non-root process
- Ability to queue remote processes and then check on their progress
- Agent will persist its task list through a reboot
- Capability to read, search or edit any log or file on the system or upload any file to a system
- Can start, stop, or restart any system service; or specify its boot behavior (remote chkconfig)
- Modular deployment mechanism with discovery capability for new modules
- Offers Non-authenticated response as to whether the system is in a cluster, and if it is, what the name of the cluster currently is (self-discovery)
General Administrative functions
- Add a system to be administered to the database (secure connection, SSO)
- Add a cluster to be administered
- View security certs before trusting a remote system to be added
- Single sign-on after authentication
- Remove a system or cluster from the administrative database
- Add or delete a user
- Assign a user permissions to administer systems of clusters
- Re-Authenticate a system or cluster of systems
- Integrated online user manual
- Context sensitive pop-up help, where needed, throughout UI
Cluster
- Implemented for RHEL4 and RHEL5 Cluster Suite
- Create a cluster (Physical or Virtual)
- Identify Nodes
- Download necessary RPMs
- Install RPMs
- Install initial cluster.conf configuration file
- Reboot machine
- Start cluster daemons
- UI will show progress through the above steps graphically
- Stop a cluster (one click)
- Restart a cluster
- Add a node to an existing cluster
- Remove a node from a cluster (Note: 2-node to 3-node case handles here)
- Start or stop cluster services on a node (join or leave)
- Fence a node using the configured means for doing so (diagnostic tool)
- Reboot a node
- Retrieve, edit, delete and propogate the cluster.conf file
- Manage fencing for a cluster
- Configure shared or single system fencing
- Establish a primary level and a backup level for fencing each node
- Configure an arbitrary number of fence methods for each level
- Dual power supply fencing syntax in conf file is auto-generated
- View system logs (or any log or file for that matter) for any node in a cluster (or an individual managed system, for that matter)
- Grep thru logs or files for keywords, or specify a date/time range to search through
- Quorum disk (and associated heuristics) configuration
- With RHEL4, choice of DLM or GuLM lock manager
- View cluster status:
- General health of cluster at a glance
- Quorum state
- Node membership
- uptime
- Location of services (virtual or otherwise)
- Ability to retrieve info even from node that has clustered software stopped on it
- Able to exchange/aggregate info from all nodes into single report, available to all nodes (even stopped ones)
- Create and configure a service to run on the cluster
- Build services from individual resources (lego approach), or:
- Easy configuration for the following common services, out of the box:
- Cluster file systems (GFS1 or GFS2)
- NFS version 3 or 4 clients as well as exports
- Samba
- Apache
- MySQL
- PostGres
- OpenLDAP
- LVM
- Tomcat 5
- Arbitrarily declared scripts
- Start, restart, stop, or relocate (to any node) a cluster service
- Create and configure a virtual service (xen guest as a cluster service)
- Start, restart, stop, migrate, or relocate a virtual service
- Health of a services runing on cluster at a glance
- creation, configuration, and deletion of cluster Failover Domains
- Set exclusive and autostart attributes for services in a failover domain
- Configure prioritized order for nodes in a failover domain
- Choose membership for a failover domain from list of available nodes
- Configure shared storage for a cluster (clustered volume groups, snapshots, GFS1 and GFS2 mount points and general config, etc.)
Package management an installation
- Retrieve a list of currently installed packages with versions and descriptions
- Query for a specific package
- Uprade any currently installed package
- Install a package or set of packages - and query for progress
- Remove a package
System Services (remote chkconfig)
- Start, restart, or stop a service
- Enable or disable a service at boot time
- Reboot a system
Storage configuration
- GUARENTEED SERIALIZED MUTATION TO A SYSTEM'S STORAGE
- Manages the following items:
- Partition tables
- LVM (clustered or not)
- Software raid
- Configuration of filesystems, their properties, mountpoints
- View disk info
- Graphical view of physical and logical volumes
- Retrieve disk vendor/model/size/scsi address/scsi id/type
- Create/modify/delete/view partition tables
- View size and type for existing partition tables
- Create/delete/edit partition properties:
- Get size/whether bootable/whether primary or extended/partition number
- format as ext3
- Control hashed tree option
- Get jounaling enabled state/clean state/number of blocks/UUID/block size/label/mountable status
- initialize as swap
- Get/set /etc/fstab mountpoint
- Get/set current mountpoint
Create/modify/delete PVs, LVs, VGs
enable/disable clustered lvm (get/set locking type in /etc/lvm/lvm.conf)
VGs:
- Create and destroy
- Add physical volumes
- add logical volumes
- Get/set clustered attribute
- Get name/extent size/total extents/size/used extents/max phys volumes/max logical volumes/attributes/UUID
LVs:
- Create/delete
- Create and delete LV snapshots
- When creating, ability to create empty, ext3, gfs, gfs2, or swap:
- For ext3, ability to set properties
- For gfs and gfs2:
- set unique name, journal size, mountpoint, mount after create, add to fstab, number of journals, whether clustered
- For swap:
- Set label/add to fstab/activate after creation
SNMP (snmpd) and CIM (top-pegasus)
- Retrieve detailed cluster status
- Retrieve node list, services running and their locations, vote info, quorum, and per node status information