From 162398acbc3e9479bd23a1511669361937dce2ba Mon Sep 17 00:00:00 2001 From: Andy Ning Date: Wed, 17 Aug 2022 10:05:02 -0400 Subject: [PATCH] Add pmon configuration file for sssd This is part of the change to replace nslcd with sssd to support multiple secure ldap backends. This change added pmon configuration file for sssd so that it is monitored by pmon. Test Plan on Debian (SX and DX): PASS: Package build, image build. PASS: System deployment. PASS: After controller is unlocked, sssd is running. PASS: ldap user creation by ldapadduser and ldapusersetup. PASS: ldap user login on console. PASS: ldap user remote login by oam IP address: ssh @ PASS: ldap user login by local ldap domain within controllers: ssh @controller PASS: For DX system, same ldap functions still work properly after swact. PASS: Kill sssd process, verify that it is brought up by pmon. Story: 2009834 Task: 46064 Signed-off-by: Andy Ning Change-Id: I701a4cbbda0f900dafd0456aad63132b62d8424f --- mtce/debian/deb_folder/mtce.install | 2 +- mtce/debian/deb_folder/rules | 2 +- mtce/src/pmon/scripts/sssd.conf | 16 ++++++++++++++++ 3 files changed, 18 insertions(+), 2 deletions(-) create mode 100644 mtce/src/pmon/scripts/sssd.conf diff --git a/mtce/debian/deb_folder/mtce.install b/mtce/debian/deb_folder/mtce.install index c9dddae5..b94b2cec 100644 --- a/mtce/debian/deb_folder/mtce.install +++ b/mtce/debian/deb_folder/mtce.install @@ -24,7 +24,7 @@ etc/pmon.d/hbsClient.conf etc/pmon.d/mtcClient.conf etc/pmon.d/mtcalarm.conf etc/pmon.d/mtclogd.conf -etc/pmon.d/nslcd.conf +etc/pmon.d/sssd.conf etc/pmon.d/sshd.conf etc/pmon.d/syslog-ng.conf etc/services.d/controller/mtcTest diff --git a/mtce/debian/deb_folder/rules b/mtce/debian/deb_folder/rules index 276f92bb..a9c1dfc5 100644 --- a/mtce/debian/deb_folder/rules +++ b/mtce/debian/deb_folder/rules @@ -112,7 +112,7 @@ override_dh_auto_install: install -m 644 -p -D pmon/scripts/acpid.conf $(PMONDIR)/acpid.conf install -m 644 -p -D pmon/scripts/sshd.conf $(PMONDIR)/sshd.conf install -m 644 -p -D pmon/scripts/syslog-ng.conf $(PMONDIR)/syslog-ng.conf - install -m 644 -p -D pmon/scripts/nslcd.conf $(PMONDIR)/nslcd.conf + install -m 644 -p -D pmon/scripts/sssd.conf $(PMONDIR)/sssd.conf install -m 644 -p -D fsmon/scripts/fsmon.conf $(PMONDIR)/fsmon.conf install -m 644 -p -D scripts/mtclogd.conf $(PMONDIR)/mtclogd.conf install -m 644 -p -D alarm/scripts/mtcalarm.pmon.conf $(PMONDIR)/mtcalarm.conf diff --git a/mtce/src/pmon/scripts/sssd.conf b/mtce/src/pmon/scripts/sssd.conf new file mode 100644 index 00000000..a6e9ee41 --- /dev/null +++ b/mtce/src/pmon/scripts/sssd.conf @@ -0,0 +1,16 @@ +[process] +process = sssd +service = sssd +pidfile = /var/run/sssd.pid +style = lsb ; ocf or lsb +severity = major ; minor, major, critical +restarts = 3 ; restart retries before error assertion +interval = 5 ; number of seconds to wait between restarts +debounce = 20 ; number of seconds that a process needs to remain + ; running before degrade is removed and retry count + ; is cleared. +startuptime = 5 ; Seconds to wait after process start before starting the debounce monitor +mode = passive ; Monitoring mode: passive (default) or active + ; passive: process death monitoring (default: always) + ; active : heartbeat monitoring, i.e. request / response messaging + ; ignore : do not monitor or stop monitoring