Repurposing hosts across trusted domains
This topic applies only to Windows hosts. If a repurposed compute host is added to a cluster that belongs to a different Windows domain, the consumer execution users defined for the cluster may not have sufficient privileges to start the agent on the repurposed host. For this reason, you should always add the cluster administrator to the local host's admin group for all clusters.
Note: Multicluster only
supports host repurposing across trusted domains.
If you want to repurpose a host to a target cluster in a different
domain, the target cluster properties must be configured as follows:
- Add the cluster administrator operating system user and password using the smcadmin execuser add command.
- On the multicluster management console, navigate to the Cluster Properties page; refer to Viewing or changing cluster properties in the federation cluster using the multicluster management console. In the Compute Host Administrator menu, select the administrator operating system user from the previous step.
- On the Cluster Properties page, set Automatically add the compute host administrator to the local administrator group to true.
Examples
For the following scenarios, assume
ClusterA has hosts that initially belong to Domain1 and ClusterB has
hosts that initially belong to Domain2.
- Scenario 1: Repurpose hosts that belong to Domain1 from ClusterA to ClusterB.
Steps 1 to 3 must be done for ClusterB.
- Scenario 2: Repurpose hosts that belong to Domain1 from ClusterB to ClusterA.
No configuration is required for ClusterA.
- Scenario 3: Repurpose hosts that belong to Domain2 from ClusterB to ClusterA.
Steps 1 to 3 must be done for ClusterA.
After some time, hosts from Domain1 and Domain2 may get mixed up in ClusterA and ClusterB. To avoid errors, all clusters that can accept a host from another domain must be configured with steps 1 to 3.