X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/352b09c94caa1cf92972d28f7820276ed0ac84e4..8ca57d340d0322282d95545983397952112abce3:/doc/install/install-webshell.html.textile.liquid diff --git a/doc/install/install-webshell.html.textile.liquid b/doc/install/install-webshell.html.textile.liquid index 4040fcf54f..12b413d5d3 100644 --- a/doc/install/install-webshell.html.textile.liquid +++ b/doc/install/install-webshell.html.textile.liquid @@ -26,7 +26,7 @@ Arvados supports @webshell@, which allows ssh access to shell nodes via the brow h2(#prerequisites). Prerequisites -# "Install workbench":{{site.baseurl}}/install/install-workbench-app.html +# "Install Workbench 2":{{site.baseurl}}/install/install-workbench2-app.html # "Set up a shell node":{{site.baseurl}}/install/install-shell-server.html h2(#configure). Update config.yml @@ -65,7 +65,7 @@ server { location /shell.ClusterID { if ($request_method = 'OPTIONS') { - add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type'; add_header 'Access-Control-Max-Age' 1728000; @@ -99,13 +99,13 @@ Note that the location line in the nginx config matches your shell node hostname For additional shell nodes with @shell-in-a-box@, add @location@ and @upstream@ sections as needed. -{% assign arvados_component = 'shellinabox libpam-arvados' %} +{% assign arvados_component = 'shellinabox libpam-arvados-go' %} {% include 'install_packages' %} h2(#config-shellinabox). Configure shellinabox -h3. Red Hat and Centos +h3. Alma/CentOS/Red Hat/Rocky Edit @/etc/sysconfig/shellinaboxd@: @@ -146,12 +146,11 @@ SHELLINABOX_ARGS="--disable-ssl --no-beep --service=/she h2(#config-pam). Configure pam -Use a text editor to create a new file @/etc/pam.d/shellinabox@ with the following configuration. Options that need attention are marked in red. +Use a text editor to create a new file @/etc/pam.d/shellinabox@ with the following configuration. Options that need attention are marked in red. 
-# This example is a stock debian "login" file with libpam_arvados
-# replacing pam_unix, and the "noprompt" option in use. It can be
-# installed as /etc/pam.d/shellinabox .
+# This example is a stock debian "login" file with pam_arvados
+# replacing pam_unix. It can be installed as /etc/pam.d/shellinabox .
 
 auth       optional   pam_faildelay.so  delay=3000000
 auth [success=ok new_authtok_reqd=ok ignore=ignore user_unknown=bad default=die] pam_securetty.so
@@ -160,7 +159,11 @@ session [success=ok ignore=ignore module_unknown=ignore default=bad] pam_selinux
 session       required   pam_env.so readenv=1
 session       required   pam_env.so readenv=1 envfile=/etc/default/locale
 
-auth [success=1 default=ignore] pam_python.so /usr/lib/security/libpam_arvados.py ClusterID.example.com shell.ClusterID.example.com noprompt
+# The first argument is the address of the API server.  The second
+# argument is this shell node's hostname.  The hostname must match the
+# "hostname" field of the virtual_machine record.
+auth [success=1 default=ignore] /usr/lib/pam_arvados.so ClusterID.example.com shell.ClusterID.example.com
+
 auth    requisite            pam_deny.so
 auth    required            pam_permit.so
 
@@ -180,5 +183,8 @@ session [success=ok ignore=ignore module_unknown=ignore default=bad] pam_selinux
 
 h2(#confirm-working). Confirm working installation
 
-A user should be able to log in to the shell server, using webshell via workbench. Please refer to "Accessing an Arvados VM with Webshell":{{site.baseurl}}/user/getting_started/vm-login-with-webshell.html
+We recommend using the "Cluster diagnostics tool.":diagnostics.html
+
+Here are some other checks you can perform manually.
 
+A user should now be able to log in to the shell server, using webshell via workbench. Please refer to "Accessing an Arvados VM with Webshell":{{site.baseurl}}/user/getting_started/vm-login-with-webshell.html