案例说明:

kingbaseES R6集群用户密码修改,需要修改两处:

 1)修改数据库用户密码(alter user);

 2)修改.encpwd文件中用户密码;

可以通过sys_monitor.sh change_password一键同时修改数据库内部用户密码和.encpwd文件中密码。

案例测试版本:

test=# select version();

                                                       version

----------------------------------------------------------------------------------------------------------------------

 KingbaseES V008R006C003B0010 on x86_64-pc-linux-gnu, compiled by gcc (GCC) 4.1.2 20080704 (Red Hat 4.1.2-46), 64-bit

(1 row)

集群架构:

sys_monitor.sh change_password user new_password —修改集群使用的用户的密码

描述:

sys_monitor.sh change_password user new_password判断用户是否为集群使用的用户,如果是则修改用户密码,如果不是则提示用户集群未使用该用户,请使用sql方式修改用户密码。

选项:

以下是脚本执行参数:

change_password: 脚本调用修改用户密码函数

user: 要进行修改密码的用户,只能是集群初始化时指定的用户和esrep

new_password: 用户的新密码

注意事项:

1.必须在集群所有节点状态正常的情况下才能执行修改密码操作

2.sys_monitor.sh change_password 用户名 '密码' 使用一键修改密码功能时 密码参数必须使用''括起来

3.用户必须是已经使用.encpwd免密配置文件配置了免密的用户才能进行修改密码,否则会提示集群未使用该用户,请使用sql alter user命令进行修改密码

一、查看esrep用户原密码

1).encpwd文件

 [kingbase@node1 ~]$ cat .encpwd

*:*:*:system:MTIzNDU2

*:*:*:esrep:S2luZ2Jhc2VoYTExMA==

[kingbase@node1 ~]$ echo 'S2luZ2Jhc2VoYTExMA=='|base64 -d

Kingbaseha110

2)数据库用户密码

用户密码登录测试(‘Kingbaseha110’):

[kingbase@node3 bin]$ ./ksql -U esrep -W esrep

Password:

ksql (V8.0)

Type "help" for help.

二、一键修改esrep用户密码

[kingbase@node3 bin]$ ./sys_monitor.sh  --help

Usage: ./sys_monitor.sh {start|stop|restart|stoplocal|set [--restart]|change_password user password}

[kingbase@node3 bin]$ ./sys_monitor.sh change_password esrep 'beijing'

 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string

----+---------+---------+-----------+----------+----------+----------+----------+---------------------------------------------------------------------------------------------------------------------------------------------------

 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host=192.168.7.248 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 3  | node243 | primary | * running |          | default  | 100      | 26       | host=192.168.7.243 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host=192.168.7.249 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3

ALTER ROLE

三、新密码登录测试

# 新的用户密码登录(‘beijing’):

[kingbase@node3 bin]$ ./ksql -U esrep -W esrep

Password:

ksql (V8.0)

Type "help" for help.

# 查看.encpwd文件

[kingbase@node3 ~]$ cat .encpwd

*:*:*:system:MTIzNDU2

*:*:*:esrep:YmVpamluZw==

[kingbase@node3 ~]$ echo 'YmVpamluZw=='|base64 -d

beijing

# 所有节点密码都已经被修改

[kingbase@node1 ~]$ cat .encpwd

*:*:*:system:MTIzNDU2

*:*:*:esrep:YmVpamluZw==

[kingbase@node2 ~]$ cat .encpwd

*:*:*:system:MTIzNDU2

*:*:*:esrep:YmVpamluZw==

四、重启集群测试

[kingbase@node3 bin]$ ./sys_monitor.sh restart

2021-03-01 13:07:08 Ready to stop all DB ...

There is no service "node_export" running currently.

There is no service "postgres_ex" running currently.

There is no service "node_export" running currently.

There is no service "postgres_ex" running currently.

There is no service "node_export" running currently.

There is no service "postgres_ex" running currently.

2021-03-01 13:07:18 begin to stop repmgrd on "[192.168.7.248]".

2021-03-01 13:07:18 repmgrd on "[192.168.7.248]" already stopped.

2021-03-01 13:07:18 begin to stop repmgrd on "[192.168.7.243]".

2021-03-01 13:07:19 repmgrd on "[192.168.7.243]" already stopped.

2021-03-01 13:07:19 begin to stop repmgrd on "[192.168.7.249]".

2021-03-01 13:07:20 repmgrd on "[192.168.7.249]" already stopped.

2021-03-01 13:07:20 begin to stop DB on "[192.168.7.248]".

waiting for server to shut down.... done

server stopped

2021-03-01 13:07:21 DB on "[192.168.7.248]" stop success.

2021-03-01 13:07:21 begin to stop DB on "[192.168.7.249]".

sys_ctl: directory "/home/kingbase/cluster/R6HA/KHA/kingbase/data" does not exist

2021-03-01 13:07:23 DB on "[192.168.7.249]" stop success.

2021-03-01 13:07:23 begin to stop DB on "[192.168.7.243]".

waiting for server to shut down..... done

server stopped

2021-03-01 13:07:25 DB on "[192.168.7.243]" stop success.

2021-03-01 13:07:25 Done.

2021-03-01 13:07:25 Ready to start all DB ...

2021-03-01 13:07:25 begin to start DB on "[192.168.7.243]".

waiting for server to start.... done

server started

2021-03-01 13:07:27 execute to start DB on "[192.168.7.243]" success, connect to check it.

2021-03-01 13:07:28 DB on "[192.168.7.243]" start success.

2021-03-01 13:07:28 Try to ping trusted_servers on host 192.168.7.248 ...

2021-03-01 13:07:30 Try to ping trusted_servers on host 192.168.7.243 ...

2021-03-01 13:07:33 Try to ping trusted_servers on host 192.168.7.249 ...

2021-03-01 13:07:36 begin to start DB on "[192.168.7.248]".

waiting for server to start.... done

server started

2021-03-01 13:07:37 execute to start DB on "[192.168.7.248]" success, connect to check it.

2021-03-01 13:07:38 DB on "[192.168.7.248]" start success.

2021-03-01 13:07:38 begin to start DB on "[192.168.7.249]".

sys_ctl: directory "/home/kingbase/cluster/R6HA/KHA/kingbase/data" does not exist

2021-03-01 13:07:40 execute to start DB on "[192.168.7.249]" failed.

 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string

----+---------+---------+-----------+----------+----------+----------+----------+---------------------------------------------------------------------------------------------------------------------------------------------------

 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host=192.168.7.248 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 3  | node243 | primary | * running |          | default  | 100      | 26       | host=192.168.7.243 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host=192.168.7.249 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3

2021-03-01 13:07:40 The primary DB is started.

2021-03-01 13:07:45 Success to load virtual ip [192.168.7.240/24] on primary host [192.168.7.243].

2021-03-01 13:07:45 Try to ping vip on host 192.168.7.248 ...

2021-03-01 13:07:47 Try to ping vip on host 192.168.7.243 ...

2021-03-01 13:07:50 Try to ping vip on host 192.168.7.249 ...

2021-03-01 13:07:53 begin to start repmgrd on "[192.168.7.248]".

[2021-03-01 13:08:03] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"

[2021-03-01 13:08:03] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:53 repmgrd on "[192.168.7.248]" start success.

2021-03-01 13:07:53 begin to start repmgrd on "[192.168.7.243]".

[2021-03-01 13:07:54] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"

[2021-03-01 13:07:54] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:54 repmgrd on "[192.168.7.243]" start success.

2021-03-01 13:07:54 begin to start repmgrd on "[192.168.7.249]".

[2021-03-01 13:06:04] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"

[2021-03-01 13:06:04] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:56 repmgrd on "[192.168.7.249]" start success.

 ID | Name    | Role    | Status    | Upstream | repmgrd | PID   | Paused? | Upstream last seen

----+---------+---------+-----------+----------+---------+-------+---------+--------------------

 1  | node248 | standby |   running | node243  | running | 2625  | no      | 0 second(s) ago

 3  | node243 | primary | * running |          | running | 22122 | no      | n/a

 4  | node249 | standby |   running | node243  | running | 16939 | no      | n/a

2021-03-01 13:08:08 Done.

# 查看集群节点状态信息

[kingbase@node3 bin]$ ./repmgr cluster show

 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string

----+---------+---------+-----------+----------+----------+----------+----------+---------------------------------------------------------------------------------------------------------------------------------------------------

 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host=192.168.7.248 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 3  | node243 | primary | * running |          | default  | 100      | 26       | host=192.168.7.243 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2

 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host=192.168.7.249 user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3

KingbaseES R6 集群sys_monitor.sh change_password一键修改集群用户密码的更多相关文章

  1. KingbaseES R6 集群一键修改集群和数据库参数测试案例

    ​ 案例说明: 集群环境修改集群或数据库参数,需要在每个node上都要修改,在每个节点而执行修改操作,容易出现漏改或节点上参数不一致等错误:在KingbaseES V8R6的集群中增加了,一键修改参数 ...

  2. KingbaseES R3 集群一键修改集群用户密码案例

    案例说明: 在KingbaseES R3集群的最新版本中增加了kingbase_monitor.sh一键修改集群用户密码的功能,本案例是对此功能的测试. kingbaseES R3集群一键修改密码说明 ...

  3. KingbaseES R6 集群禁用 root ssh 后需要修改集群为es_server 案例

    案例说明: 在生产环境下,由于安全需要,主机间不允许建立root用户的ssh信任连接,这样导致KingbaseES R6 repmgr集群,通过sys_monitor.sh脚本启动集群时,节点之间不能 ...

  4. KingbaseES R3 集群修改system用户密码方案

    方案说明: 对于kingbaseES R3集群修改system密码相比单机环境有一定的复杂性,需要修改的位置如下: 1)数据库中system用户密码,可以用alter user命令修改 2)在reco ...

  5. 网页一键加入QQ群

    三步简单实现功能:网页提供加入qq群按钮  让他人一键加入qq群 第一步:进入qq群官网:http://qun.qq.com/join.html 第二步:选择需要加入的群并生成网页代码 第三步:在网页 ...

  6. KingbaseES R6 集群修改ssh端口执行sys_backup.sh备份案例

    数据库环境:** test=# select version(); version ---------------------------------------------------------- ...

  7. KingbaseES R6 通过脚本构建集群案例

      案例说明: KingbaseES V8R6部署一般可采用图形化方式快速部署,但在生产一线,有的服务器系统未启用图形化环境,所以对于KingbaseES V8R6的集群需采用手工字符界面方式部署,本 ...

  8. KingbaseES R6 主备流复制集群创建级联复制案例

    案例环境: 数据库: test=# select version(); version -------------------------------------------------------- ...

  9. KingbaseES R6 集群修改物理IP和VIP案例

    在用户的实际环境里,可能有时需要修改主机的IP,这就涉及到集群的配置修改.以下以例子的方式,介绍下KingbaseES R6集群如何修改IP. 一.案例测试环境 操作系统: [KINGBASE@nod ...

随机推荐

  1. SAP MM- BAPI_PO_CHANGE 更新PO version 信息(version management)

    目的 Version 信息的Complated 字段,自动打勾 实例程序 *&--------------------------------------------------------- ...

  2. 整理orcal常用sql语句

    1.表插入列 alter table XMJ_ONE add column1 NUMBER(38) default 0;comment on column XMJ_ONE.column1 is '字段 ...

  3. UiPath手把手教程

    UiPath下载安装与激活 链接: https://pan.baidu.com/s/1o5Ur-QNTxsnlhi97-losJQ 提取码: 9dmf 复制这段内容后打开百度网盘手机App,操作更方便 ...

  4. STM32 移植 RT-Thread 标准版的 FinSH 组件

    一.移植准备 开发版STM32F10xC8T6 准备好移植RT-Thread的移植工程 没动手移植过RT-Thread的小伙伴,可以看RT-Thread移植到stm32 我这里是将控制台信息打印到串口 ...

  5. 华为HMS Core携手超图为三维GIS注入新动能

    6月30日,在2022(第五届)GIS软件技术大会GIS基础软件新技术板块论坛上,华为联合超图推出了基于HMS Core 3D Engine开发的高保真三维GIS插件,通过3D渲染技术助力三维GIS实 ...

  6. Codeforces Round #802 (Div. 2)

    题集链接 A Optimal Path 水 代码 #include <bits/stdc++.h> #define endl "\n" using namespace ...

  7. PTA(BasicLevel)-1023 组个最小数

    一. 问题定义 给定数字 0-9 各若干个.你可以以任意顺序排列这些数字,但必须全部使用.目标是使得最后得到的数尽可能小(注意 0 不能做首位). 例如:给定两个 0,两个 1,三个 5,一个 8,我 ...

  8. SpringBoot配置文件读取过程分析

    整体流程分析 SpringBoot的配置文件有两种 ,一种是 properties文件,一种是yml文件.在SpringBoot启动过程中会对这些文件进行解析加载.在SpringBoot启动的过程中, ...

  9. Codeforces Round #801 (Div. 2) and EPIC Institute of Technology Round(C,D题解)

    Codeforces Round #801 (Div. 2) and EPIC Institute of Technology Round C - Zero Path 在这道题目中,不可以真正地进行寻 ...

  10. Mybatis源码解读-插件

    插件允许对Mybatis的四大对象(Executor.ParameterHandler.ResultSetHandler.StatementHandler)进行拦截 问题 Mybatis插件的注册顺序 ...