订阅

UiPath Automation Suite

UiPath Automation Suite 指南

验证多节点 HA 就绪生产设置中的先决条件

在使用专用脚本安装 Automation Suite 之前,请验证您的多节点 HA 就绪生产环境是否满足要求。

概述


在安装 Automation Suite 之前,最好验证安装先决条件和基础架构是否准备就绪。 在执行安装之前,您可以使用validateUiPathASReadiness.sh脚本评估您的环境并生成摘要。

ValidationDescription
Hardware requirementsValidates that each machine in the cluster meets the hardware requirements. The check takes into account the following aspects:
server, agent, or tainted node;
online or offline system;
single-node evaluation profile or multi-node HA-ready production profile.
Disk partitioning and configurationValidates that you properly partitioned and configured the disk. The check takes into account the following aspects:
server or agent node;
online or offline system;
primary or secondary server node.
SQL Server connectivityValidates the connectivity to the configured SQL Server and database. The check takes into account the following aspects:
connectivity to the SQL Server host (endpoint) on a given endpoint;
connectivity to the principal database if create_db is set to true;
create database (dbcreator) permissions if create_db is set to true;
create schema (db_ddladmin), read (db_datareader), and write (db_datawriter) permissions;
connectivity to the database when create_db is set to false;
special requirements for each service. For instance, for Insights, the script checks the columnstore index, json support, and whether SQL Server compatibility level is >= 130;
connectivity to the database and SQL Server with integrated authentication.
Server certificateChecks that the server certificate you provided is valid. The check takes into account the following aspects:
the certificate file format is .pem, i.e. Base64-encoded DER certificate;
the private key length is at least 2048;
Extended Key Usage and TLS Web Server Authentication, required for accessing Automation Suite on iOS devices;
Subject Alternative Name for all the required DNS entries;
server certificate and private key match;
the CA bundle you provided is actually the issuer of the server certificate;
the certificate validity is more than 30 days.
Token-signing certificateChecks that the token-signing certificate you provided is valid. The check takes into account the following aspects:
the certificate is in pfx format;
the password for decrypting the certificate is valid;
the certificate validity is more than 30 days.
ProxyValidates that you properly configure the proxy. The check takes into account the following aspects:
https_proxy, http_proxy, and no_proxy are set as environment variables on the machine;
the proxy server is reachable.
ConnectivityValidates that all machines can connect to each other, that all the required URLs are on the firewall allowlist, and more. The check takes into account the following aspects:
the FQDN of Automation Suite and the FQDN of all the other subdomains are resolvable from the machine;
in an online setup, all the external URLs are reachable from the machine;
all servers, agents, and tainted nodes can connect to each other on the required ports;
the outbound connections (URLs) are resolvable via all the nameservers present in /etc/resolve.conf;
if any of the URLs is not resolvable via all the nameservers, then at least one nameserver can resolve all the URLs;
either the TCP or UDP protocol is allowed;
fixed_rke_address is set to port 9345 and 6443;
a response is issued when a call is made to the FQDN on port 443.
System servicesValidates that system services are properly configured. The check takes into account the following aspects:
nm-cloud-setup.service, nm-cloud-setup.timer, firewalld are disabled;
iscsi-initiator-utils is installed and enabled;
auditd is properly configured for --backlog_wait_time set as 1;
logrotate is properly configured.
Software requirementsValidates that all the required software is installed. If some software is not installed, the install-uipath.sh installer attempts to install it.

 

使用脚本验证安装先决条件


下载脚本

📘

离线安装

对于离线安装,您必须在可访问互联网的计算机上执行此步骤,且此计算机可访问已部署 Automation Suite 的离线计算机。将文件从联机计算机复制到第一台目标计算机。

必备程序脚本与安装程序一起打包在名为sf-installer.zip的存档中,支持工具捆绑为sf-infra.tar.gz ,仅供离线使用。 您需要这些文件来生成有关计划安装 Automation Suite 的所有计算机的报告。

Installation typeFiles to download
Onlinesf-installer.zipMandatory. For download instructions, see sf-installer.zip.
Offlinesf-installer.zipMandatory. For download instructions, see sf-installer.zip.
sf-infra.tar.gzMandatory. For download instructions, see sf-infra.tar.gz.

准备使用脚本

  1. 通过运行以下命令成为根用户:
sudo su -
  1. 运行以下命令,将文件复制到/opt/UiPathAutomationSuite/{version}文件夹:
VERSION="" #add the version number you are trying to install. Ex: for 2022.4.0 Set VERSION="2022.4.0"

mkdir -p /opt/UiPathAutomationSuite/${VERSION}

# For below command replace the /path/to where actually the files are present.

cp /path/to/sf-installer.zip /opt/UiPathAutomationSuite/${VERSION}

# Additionally for offline, copy sf-infra.tar.gz as well to /opt/UiPathAutomationSuite/{VERSION} folder

cp /path/to/sf-infra.tar.gz /opt/UiPathAutomationSuite/${VERSION}

cd /opt/UiPathAutomationSuite/${VERSION}
  1. 通过运行以下命令解压缩包:
unzip sf-installer.zip -d installer
  1. 通过运行以下命令分配必要的权限并导航到脚本文件夹:
chmod -R 755 installer
cd installer

Script parameters

要查看帮助部分和支持的标志,请运行以下命令:

./validateUiPathASReadiness.sh --help
单击此处查看输出。
***************************************************************************************

validateUiPathASReadiness.sh Runs pre-install validation checks

Usage:
  validateUiPathASReadiness.sh [command]
  validateUiPathASReadiness.sh [flags]

Available Commands:
  validate-packages                                     Validate that required packages are installed
  install-packages                                      Install required packages. If --install-type offline, this will also install offline required packages

Arguments:
 -i|--input                                             Specify cluster config json file. Defaults to /opt/UiPathAutomationSuite/cluster_config.json
 -d|--debug                                             Debug mode to get additional details helpful for debugging
 -m|--machines                                          Comma separated IP address / hostnames of all the machines
 -n|--node-type                                         Possible values [server|agent|taskmining|asrobots|gpu]. Defaults to server
 --install-type                                         Possible values [online|offline]. Defaults to online
 --prereq-bundle </uipath/offline_bundle.tar.gz>        Specify the path to the prereq bundle
 --prereq-tmp-folder </uipath>                          Specify parent directory for the temporary install folder
 --kubeconfig                                           Specify path to the kubeconfig file
 -h|--help                                              Display help

***************************************************************************************

下表描述了运行脚本时可以使用的参数:

ParameterDescription
-i|--inputAccepts the cluster_config.json file as input. This file defines the parameters, settings, and preferences applied to the UiPath services deployed via Automation Suite. For details, see Advanced Installation Experience.

If you do not provide this file, the script will trigger the interactive experience to collect these inputs. The file will then be generated on your behalf.
-d|--debugDebug mode to get additional details helpful for debugging.
-m|--machinesAccepts comma-separated IP address / hostnames of all the machines. This is required to check the connectivity between all the nodes on the required port.

The parameter is mandatory for multi-node HA-ready production installations. In addition to that, the parameter is also required if you plan to add a Task Mining, GPU, or Automation Suite Robots node in a single-node evaluation cluster.
-n|--node-typeAccepts the type of the current node. Possible values are: server, agent, task-mining, gpu, and asrobots.
The default value is server.
--install-typeAccepts the installation method: online or offline.
The default value is online.
--prereq-bundleAccepts the absolute path where the sf-infra.tar.gz is located.
--prereq-tmp-folderAccepts the absolute path where sf-infra.tar.gz bundle will be temporarily extracted. If this path is not provided, the installer will select the /tmp folder.
--kubeconfigSpecify the path to the kubeconfig file.
validate-packagesValidates the required RPM packages.
install-packagesInstalls the required RPM packages for online installation.
install-packages --install-type offlineInstalls the RPM required packages for offline installation.

 

验证多节点 HA 就绪生产设置

在第一台服务器计算机上

  1. 要验证第一台服务器计算机,请运行以下命令:

在线

./validateUiPathASReadiness.sh \
  --node-type server \ 
  --install-type online \ 
  --machines "10.0.1.8, 10.0.1.9" #replace with actual machine IPs of all the nodes in cluster

离线

./validateUiPathASReadiness.sh \
  --node-type server \ 
  --install-type offline \ 
  --prereq-bundle ../sf-infra.tar.gz \ 
  --prereq-tmp-folder /opt/UiPathAutomationSuite/tmp \
  --machines "10.0.1.8, 10.0.1.9" #replace with actual machine IPs of all the nodes in cluster

执行此脚本后,它将在/opt/UiPathAutomationSuite文件夹下生成一个cluster_config.json文件。 所有其他计算机上都需要此文件。

  1. 要在其他计算机上复制cluster_config.json文件,请运行以下命令:
scp /opt/UiPathAutomationSuite/cluster_config.json <username>@<node dns>:/opt/UiPathAutomationSuite

📘

提示:

如果由于权限错误而无法将文件复制到/opt/UiPathAutomationSuite文件夹,则可以将其临时复制到新计算机上的/var/tmp ,然后将其移动到/opt/UiPathAutomationSuite

或者,您也可以通过运行以下命令来提供对新计算机上/opt/UiPathAutomationSuite文件夹的完全访问权限 ( 777 ): chmod -R 777 /opt/UiPathAutomationSuite

在其他服务器计算机上

要验证其他服务器计算机,请运行以下命令:

在线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type server \ 
  --install-type online \ 
  --machines "10.0.1.8, 10.0.1.9" #replace with actual machine IP of all the nodes in cluster

离线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type server \ 
  --install-type offline \
  --prereq-bundle ../sf-infra.tar.gz \ 
  --prereq-tmp-folder /opt/UiPathAutomationSuite/tmp \
  --machines "10.0.1.8, 10.0.1.9" #replace with actual machine IP of all the nodes in cluster

在代理计算机上

要验证代理计算机,请运行以下命令:

在线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type agent \
  --install-type online \
  --machines "10.0.1.8, 10.0.1.9" # replace with actual machine IP of all the nodes in cluster

离线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type agent \
  --install-type offline \ #replace with offline for airgap
  --prereq-bundle ../sf-infra.tar.gz \ 
  --prereq-tmp-folder /opt/UiPathAutomationSuite/tmp \
  --machines "10.0.1.8, 10.0.1.9" # replace with actual machine IP of all the nodes in cluster

在专用代理计算机上

To validate the Task Mining, GPU, or Automation Suite Robots machines, run the following command:

📘

备注:

确保使用合适的参数来标识您的专用代理节点:

  • 对于 Task Mining 计算机,请使用--node-type task-mining
  • 对于 GPU 计算机,请使用--node-type gpu
  • 对于 Automation Suite 机器人计算机,请使用--node-type asrobots

在线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type task-mining \ #replace with gpu for GPU node or asrobots for Automation Suite Robots node
  --install-type online \
  --machines "10.0.1.8, 10.0.1.9" # replace with actual machine IP of all the nodes in cluster

离线

./validateUiPathASReadiness.sh \
  --input /opt/UiPathAutomationSuite/cluster_config.json \
  --node-type task-mining \ #replace with gpu for GPU node or asrobots for Automation Suite Robots node
  --install-type offline \ 
  --prereq-bundle ../sf-infra.tar.gz \ 
  --prereq-tmp-folder /opt/UiPathAutomationSuite/tmp \
  --machines "10.0.1.8, 10.0.1.9" # replace with actual machine IP of all the nodes in cluster

2 个月前更新


验证多节点 HA 就绪生产设置中的先决条件


在使用专用脚本安装 Automation Suite 之前,请验证您的多节点 HA 就绪生产环境是否满足要求。

建议的编辑仅限用于 API 参考页面

您只能建议对 Markdown 正文内容进行编辑,而不能建议对 API 规范进行编辑。