2.6
Access to a Reprise License Manager (RLM) server is required when using
The RLM Server can run multiple licenses. If your company already uses an RLM Server, you do not need to install a new one for
The RLM v12.1 (build:2) release resolved memory leak and security issues. The RLM package available with Moab HPC Suite 9.0.2, contains the v12.1 (build:2) release. Adaptive Computing strongly recommends that your RLM Server is v12.1 (build:2).
This topic contains instructions on how to install an RLM Server.
In this topic:
If your site is running firewall software on its hosts, you will need to configure the firewall to allow connections to the necessary ports.
These instructions assume you are using the default ports. If your configuration will use other ports, then substitute your port numbers when opening the ports.
On the RLM Server do the following:
- Open the RLM Server port (5053) and the RLM Web Interface port (5054).
[root]# iptables-save > /tmp/iptables.mod root]# vi /tmp/iptables.mod # Add the following lines immediately *before* the line matching # "-A INPUT -j REJECT --reject-with icmp-host-prohibited" -A INPUT -p tcp --dport 5053:5054 -j ACCEPT [root]# iptables-restore < /tmp/iptables.mod [root]# service iptables save
- If Remote Visualization is part of your configuration, open the Remote Visualization port (57889).
[root]# iptables -A INPUT -p tcp --dport 57889 -j ACCEPT [root]# service iptables save
- If Nitro is part of your configuration, open the ISV adapativeco port for the Adaptive license-enabled products (for example: 5135).
[root]# iptables-save > /tmp/iptables.mod [root]# vi /tmp/iptables.mod # Add the following lines immediately *before* the line matching # "-A INPUT -j REJECT --reject-with icmp-host-prohibited" -A INPUT -p tcp --dport 5135 -j ACCEPT [root]# iptables-restore < /tmp/iptables.mod [root]# service iptables save
On the host where the RLM Server will reside, do the following:
- Download the latest RLM build (ac-rlm-<version>.tar.gz). from the Adaptive Computing Moab HPC Suite Download Center.
- As the root user, run each of the following commands in order.
[root]# tar xzvf ac-rlm-<version>.tar.gz [root]# cd ac-rlm-<version>
- Create a non-root user and group (rlm is used in the example).
[root]# groupadd -r rlm [root]# useradd -r -g rlm -d /opt/rlm -c "A non-root user under which to run Reprise License Manager" rlm
- Create a directory and install the tarball files in that location (we are using /opt/rlm as the install location in the example).
[root]# mkdir -p -m 0744 /opt/rlm [root]# cd /opt/rlm [root]# tar -xzvf /tmp/ac-rlm-<version>.tar.gz --strip-components=1 [root]# chown -R rlm:rlm /opt/rlmThe --strip-components=1 removes the "ac-rlm-<version>/" from the relative path so that they are extracted into the current directory.
- Install the startup scripts.
If you are using a user:group other than rlm:rlm or a location other than /opt/rlm, then edit the following files to reflect those changes after copying them.
[root]# cp init.d/rlm /etc/init.d
- Start the services and configure the RLM Server to start automatically at system reboot.
[root]# chkconfig --add rlm [root]# chkconfig rlm on [root]# service rlm start
2.6.3 Change the Default Passwords
The RLM Web interface includes two usernames (admin and user) by default. These usernames have the default password "changeme!".
If you do not change this password, RLM, and Remote Visualization, will not be secure. For tips on choosing a good password, see https://www.us-cert.gov/ncas/tips/ST04-002.
Do the following for both the user and the admin usernames:
- Using a web browser, navigate to your RLM instance. (http://<RLM_host>:5054; where <RLM_host> is the IP address or name of the RLM Server Host).
- Log in.
- Select Change Password and change the password according to your password security process.
The password for "user" will be needed as part of the Remote Visualization installation.