KingbaseES R6 集群sys_monitor.sh change_password一键修改集群用户密码


kingbaseES R6集群用户密码修改,需要修改两处:

 1)修改数据库用户密码(alter user);

可以通过sys_monitor.sh change_password一键同时修改数据库内部用户密码和.encpwd文件中密码。


test=# select version();
 KingbaseES V008R006C003B0010 on x86_64-pc-linux-gnu, compiled by gcc (GCC) 4.1.2 20080704 (Red Hat 4.1.2-46), 64-bit
(1 row)


sys_monitor.sh change_password user new_password —修改集群使用的用户的密码

sys_monitor.sh change_password user new_password判断用户是否为集群使用的用户,如果是则修改用户密码,如果不是则提示用户集群未使用该用户,请使用sql方式修改用户密码。

change_password: 脚本调用修改用户密码函数
user: 要进行修改密码的用户,只能是集群初始化时指定的用户和esrep
new_password: 用户的新密码


2.sys_monitor.sh change_password 用户名 '密码' 使用一键修改密码功能时 密码参数必须使用''括起来
3.用户必须是已经使用.encpwd免密配置文件配置了免密的用户才能进行修改密码,否则会提示集群未使用该用户,请使用sql alter user命令进行修改密码



 [kingbase@node1 ~]$ cat .encpwd 

[kingbase@node1 ~]$ echo 'S2luZ2Jhc2VoYTExMA=='|base64 -d



[kingbase@node3 bin]$ ./ksql -U esrep -W esrep
ksql (V8.0)
Type "help" for help.


[kingbase@node3 bin]$ ./sys_monitor.sh  --help
Usage: ./sys_monitor.sh {start|stop|restart|stoplocal|set [--restart]|change_password user password}

[kingbase@node3 bin]$ ./sys_monitor.sh change_password esrep 'beijing'
 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string                                                                                                                                
 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 3  | node243 | primary | * running |          | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3


# 新的用户密码登录(‘beijing’):

[kingbase@node3 bin]$ ./ksql -U esrep -W esrep
ksql (V8.0)
Type "help" for help.

# 查看.encpwd文件

[kingbase@node3 ~]$ cat .encpwd

[kingbase@node3 ~]$ echo 'YmVpamluZw=='|base64 -d

# 所有节点密码都已经被修改

[kingbase@node1 ~]$ cat .encpwd 

[kingbase@node2 ~]$ cat .encpwd 


[kingbase@node3 bin]$ ./sys_monitor.sh restart
2021-03-01 13:07:08 Ready to stop all DB ...
There is no service "node_export" running currently.
There is no service "postgres_ex" running currently.
There is no service "node_export" running currently.
There is no service "postgres_ex" running currently.
There is no service "node_export" running currently.
There is no service "postgres_ex" running currently.
2021-03-01 13:07:18 begin to stop repmgrd on "[]".
2021-03-01 13:07:18 repmgrd on "[]" already stopped.
2021-03-01 13:07:18 begin to stop repmgrd on "[]".
2021-03-01 13:07:19 repmgrd on "[]" already stopped.
2021-03-01 13:07:19 begin to stop repmgrd on "[]".
2021-03-01 13:07:20 repmgrd on "[]" already stopped.
2021-03-01 13:07:20 begin to stop DB on "[]".
waiting for server to shut down.... done
server stopped
2021-03-01 13:07:21 DB on "[]" stop success.
2021-03-01 13:07:21 begin to stop DB on "[]".
sys_ctl: directory "/home/kingbase/cluster/R6HA/KHA/kingbase/data" does not exist
2021-03-01 13:07:23 DB on "[]" stop success.
2021-03-01 13:07:23 begin to stop DB on "[]".
waiting for server to shut down..... done
server stopped
2021-03-01 13:07:25 DB on "[]" stop success.
2021-03-01 13:07:25 Done.
2021-03-01 13:07:25 Ready to start all DB ...
2021-03-01 13:07:25 begin to start DB on "[]".
waiting for server to start.... done
server started
2021-03-01 13:07:27 execute to start DB on "[]" success, connect to check it.
2021-03-01 13:07:28 DB on "[]" start success.
2021-03-01 13:07:28 Try to ping trusted_servers on host ...
2021-03-01 13:07:30 Try to ping trusted_servers on host ...
2021-03-01 13:07:33 Try to ping trusted_servers on host ...
2021-03-01 13:07:36 begin to start DB on "[]".
waiting for server to start.... done
server started
2021-03-01 13:07:37 execute to start DB on "[]" success, connect to check it.
2021-03-01 13:07:38 DB on "[]" start success.
2021-03-01 13:07:38 begin to start DB on "[]".
sys_ctl: directory "/home/kingbase/cluster/R6HA/KHA/kingbase/data" does not exist
2021-03-01 13:07:40 execute to start DB on "[]" failed.
 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string                                                                                                                                
 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 3  | node243 | primary | * running |          | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3
2021-03-01 13:07:40 The primary DB is started.
2021-03-01 13:07:45 Success to load virtual ip [] on primary host [].
2021-03-01 13:07:45 Try to ping vip on host ...
2021-03-01 13:07:47 Try to ping vip on host ...
2021-03-01 13:07:50 Try to ping vip on host ...
2021-03-01 13:07:53 begin to start repmgrd on "[]".
[2021-03-01 13:08:03] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"
[2021-03-01 13:08:03] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:53 repmgrd on "[]" start success.
2021-03-01 13:07:53 begin to start repmgrd on "[]".
[2021-03-01 13:07:54] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"
[2021-03-01 13:07:54] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:54 repmgrd on "[]" start success.
2021-03-01 13:07:54 begin to start repmgrd on "[]".
[2021-03-01 13:06:04] [NOTICE] using provided configuration file "/home/kingbase/cluster/R6HA/KHA/kingbase/bin/../etc/repmgr.conf"
[2021-03-01 13:06:04] [NOTICE] redirecting logging output to "/home/kingbase/cluster/R6HA/KHA/kingbase/hamgr.log"

2021-03-01 13:07:56 repmgrd on "[]" start success.
 ID | Name    | Role    | Status    | Upstream | repmgrd | PID   | Paused? | Upstream last seen
 1  | node248 | standby |   running | node243  | running | 2625  | no      | 0 second(s) ago    
 3  | node243 | primary | * running |          | running | 22122 | no      | n/a                
 4  | node249 | standby |   running | node243  | running | 16939 | no      | n/a                
2021-03-01 13:08:08 Done.

# 查看集群节点状态信息

[kingbase@node3 bin]$ ./repmgr cluster show
 ID | Name    | Role    | Status    | Upstream | Location | Priority | Timeline | Connection string                                                                                                                                
 1  | node248 | standby |   running | node243  | default  | 90       | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 3  | node243 | primary | * running |          | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=2
 4  | node249 | standby |   running | node243  | default  | 100      | 26       | host= user=esrep dbname=esrep port=54321 connect_timeout=10 keepalives=1 keepalives_idle=10 keepalives_interval=1 keepalives_count=3

