It usually depends on the users home filesystem.
The list of known nodes, and authorized keys (the user would have to generate one) are stored in the users home directory (.ssh/. If the users home directory is accessible via all the nodes (usually would be), then the list of nodes would allow a user to access all of them without a password. The authorized keys would automatically be available via the home directory mount.
The configuration of each node would have to allow for RSA authentication and PubkeyAuthentication (both are usually the default).
The only pain is getting the "known hosts" to include all the keys for each node.
This could be done once by the admin, then added to the skeleton structure used when adding users to the front end nodes. This would immediately give the user access to all nodes.
Access to the users home directory is usually done by NFS, but using gluserfs is an alternative (and for clusters, it might be faster as it allows for multiple servers to distribute the I/O load).
Last edited by jpollard; 03-29-2015 at 08:25 AM.
|