Propagating system settings from the model system (System A) to System B and System C

To propagate system settings to multiple endpoint systems, use the Synchronize Functions wizard in iSeries™ Navigator. The wizard can propagate system settings such as a network authentication service configuration. To propagate the network authentication service configuration to the target systems, complete these steps:

1. In iSeries Navigator, expand Management Central (SystemMC1) > System Groups.

2. Right-click MyCo system group and select System Values > Synchronize Functions. This launches the Synchronize Functions Wizard.

3. On the Welcome page, review the information about the Synchronize Functions wizard, and click Next. The Welcome page lists the functions that you can choose to synchronize later in the wizard.

   When you propagate network authentication service configuration among systems, sensitive information like passwords are sent across the network. You should use SSL to protect this information, especially if it is being sent outside your local area network (LAN). See Scenario: Securing all connections to your Management Central server with SSL for details.

4. On the Model System page, select System A as the model system, and click Next. This model system will be used as a base for synchronizing the network authentication service configuration to other systems.

5. On the Target Systems and Groups page, select MyCo system group. Click Next.

6. On the What to Update page, select Network Authentication Service (Kerberos). Click Verify configuration. After the configuration has been verified, click Next.

   If the verification of the network authentication service does not complete successfully, then there might be a problem with the network authentication service configuration on the model system. To recover from this error, check the configuration on the model system, fix the configuration and then return to Step 2 in these instructions.

7. On the Network Authentication Service page, select i5/OS Kerberos Authentication and enter systema123 in the Password and Confirm password fields. Click Next.

   This password is used for the keytab entry on each target system. If your security policy requires a different password on each system, then you can skip this step. Instead, after you complete this wizard, you can manually add the keytab entries to individual systems and enter a different password for each system.

8. On the Summary page, verify that the appropriate settings are listed on this page. Click Finish.

9. By default, a dialog box is displayed that indicates the Synchronize Functions task has started. However, if you have changed the default setting, this dialog box is not displayed. Click OK.

10. The Synchronize Functions Status dialog box is displayed. Verify that the task has completed successfully. Assume that the task completed successfully on all the endpoint systems except System D. Because System D is running OS/400^® V5R2, it does not support the Synchronize Functions wizard.

    To recover from this error, manually configure network authentication service on System D so that it matches the configuration on the model system (System A).

Parent topic: