Hi Doe,
Unison is for syncing two distinct filesystems. If you are using a single
shared filesystem, there is no need for syncing.
Looking forward to hearing your results!
-Matt
On Feb 22, 2016 19:20, "Song, Doe-Hyun" wrote:
> Carl, It was the SE Linux issue. We allow httpd to access nfs file system.
>
> Matt, we launched both apaches. I will let you know if things work after
> several days running with the configuration.
> However, I wonder if we need to synchronize Sessions between two apaches
> as Christian did with unison?
> Please let me know if HA configuration for Apache is necessary.
>
> Thanks,
> Doe
>
> -Original Message-
> From: cas-user@apereo.org [mailto:cas-user@apereo.org] On Behalf Of
> Waldbieser, Carl
> Sent: Monday, February 22, 2016 10:51 AM
> To: Song, Doe-Hyun
> Cc: cas-user@apereo.org; Matt Smith
> Subject: Re: [cas-user] Mod_Auth_Cas Timeout Synchronization on Two Apache
> Servers.
>
> Is SE Linux running?
>
> [root]# getenforce
> Enforcing
>
> If so, try turning off SE linux temporarily to test:
>
> [root]# setenforce 0
>
> Test, then turn it back on:
>
> [root]# setenforce 1
>
> If it worked in permissive mode, you can try the following to look at the
> audit log from the command line:
>
> [root]# sealert -a /var/log/audit/audit.log
>
> But you may need to install the package that has `sealert` for get what
> that is at the moment.
>
> Thanks,
> Carl
>
>
> - Original Message -
> From: "Song, Doe-Hyun"
> To: "waldbiec"
> Cc: cas-user@apereo.org, "Matt Smith"
> Sent: Monday, February 22, 2016 10:24:34 AM
> Subject: RE: [cas-user] Mod_Auth_Cas Timeout Synchronization on Two Apache
> Servers.
>
> Carl and Matt,
>
> Thanks for your help.
> Unfortunately, I can create the foo or foo2 files and apache is the user
> to run httpd. We use Red Hat.
>
>
> [root@webarms02q dhs]# su apache -s /bin/bash -c "touch
> /mnt/tnsag/cas/cas_cache/foo2"
> [root@webarms02q dhs]# cd /mnt/tnsag/cas/cas_cache
> [root@webarms02q cas_cache]# ll
> total 0
> -rw-r--r--. 1 apache apache 0 Feb 22 10:11 foo
> -rw-r--r--. 1 apache apache 0 Feb 22 10:14 foo2
> [root@webarms02q cas_cache]# ps aux | grep httpd
> apache 307 0.0 0.1 422616 14900 ?Sl 08:32 0:01
> /usr/sbin/httpd
> apache 310 0.0 0.1 422616 14896 ?Sl 08:32 0:02
> /usr/sbin/httpd
> apache 313 0.0 0.1 422616 14924 ?Sl 08:32 0:01
> /usr/sbin/httpd
> apache 366 0.0 0.1 422616 14828 ?Sl 08:57 0:00
> /usr/sbin/httpd
> root 646 0.0 0.0 110172 848 pts/0S+ 10:14 0:00 grep httpd
> root 21988 0.0 0.1 266112 14436 ?Ss Feb19 0:21
> /usr/sbin/httpd
> apache 31507 0.0 0.1 422616 14936 ?Sl 01:58 0:03
> /usr/sbin/httpd
> apache 32360 0.0 0.1 422616 14924 ?Sl 05:49 0:02
> /usr/sbin/httpd
> apache 32432 0.0 0.1 422616 14900 ?Sl 06:10 0:02
> /usr/sbin/httpd
> apache 32637 0.0 0.1 422616 14908 ?Sl 07:43 0:02
> /usr/sbin/httpd
> apache 32642 0.0 0.1 422616 14940 ?Sl 07:43 0:02
> /usr/sbin/httpd
> apache 32707 0.0 0.1 422616 14920 ?Sl 08:03 0:02
> /usr/sbin/httpd
> apache 32756 0.0 0.1 422616 14908 ?Sl 08:27 0:01
> /usr/sbin/httpd
> apache 32759 0.0 0.1 422616 14840 ?Sl 08:28 0:01
> /usr/sbin/httpd
> [root@webarms02q cas_cache]# cat /etc/issue
> Red Hat Enterprise Linux Server release 6.5 (Santiago)
> Kernel \r on an \m
> [root@webarms02q cas_cache]# uname -a
> Linux webarms02q 2.6.32-431.5.1.el6.x86_64 #1 SMP Fri Jan 10 14:46:43 EST
> 2014 x86_64 x86_64 x86_64 GNU/Linux
> [root@webarms02q cas_cache]# uname -r
> 2.6.32-431.5.1.el6.x86_64
>
>
>
> -Original Message-
> From: Waldbieser, Carl [mailto:waldb...@lafayette.edu]
> Sent: Friday, February 19, 2016 4:08 PM
> To: Song, Doe-Hyun
> Cc: cas-user@apereo.org; Matt Smith
> Subject: Re: [cas-user] Mod_Auth_Cas Timeout Synchronization on Two Apache
> Servers.
>
> Yes, and make sure that is the user running the web service:
>
> # ps aux | grep httpd
>
> The user will need permissions down every folder.
> If all else fails, are you runnning SE Linux? That can sometimes restrict
> access to files.
>
> Thanks,
> Carl
>
> - Original Message -
> From: "Matt Smith"
> To: "Song, Doe-Hyun"
> Cc: "waldbiec" , cas-user@apereo.org
> Sent: Friday, February 19, 2016 3:46:35 PM
> Subject: Re: [cas-user] Mod_Auth_Cas Timeout Synchronization on Two Apache
> Servers.
>
> Can you confirm that the Apache user can write to that directory ?
>
> # su apache -s /bin/bash -c "touch /mnt/tnsag/cas/cas_cache/foo"
>
> -Matt
>
> On Fri, Feb 19, 2016 at 3:29 PM, Song, Doe-Hyun wrote:
>
> > Unfortunately, apache owns the directory.
> >
> >
> > [root@webarms01q cas]# pwd
> > /mnt/tnsag/cas
> > [root@webarms01q cas]# ll
>