Workflow for manual NSP RHEL OS installation

Purpose

The following is the sequence of high-level actions required to install an instance of the RHEL OS for use in an NSP system.

Stages
 

Using the RHEL installer, choose “Minimal Install” as the Software Selection for the OS.


Prevent the accidental deployment of an unsupported RHEL version, perform To lock the RHEL OS version.


Install the required OS package set.

  1. For an NSP deployer host or NSP cluster member, install the packages listed in Required RHEL OS packages for NSP container elements.

  2. For a component that is deployed outside the container environment, install the packages listed in Required RHEL OS packages for ancillary NSP components.


Remove specific OS packages that are installed by default but not required.

  1. For an NSP deployer host or NSP cluster member, remove the packages listed in RHEL OS packages to remove from NSP container elements.

  2. For a component that is deployed outside the container environment, remove the packages listed in RHEL OS packages to remove from ancillary components.


Perform any additional package configuration described in Special OS requirements, as required.


If required, add the packages listed in Required additional OS packages, NFM-P single-user client or client delegate server.


Perform To apply the RHEL 8 swappiness workaround to resolve the RHEL swappiness issue.


If FIPS is not enabled at the OS level, perform To verify the rngd service startup to ensure that the RHEL rngd service is loaded and running.


Perform To enable the NSP crypto-policy function on a manually installed RHEL OS to secure the OS using a RHEL crypto-policy setting.

Note: You must enable the crypto-policy function before you attempt to install any NSP software on a station.


10 

Perform To set the default Python version to configure the default Python language version to the version required by the NSP.


11 

On an NSP deployer host or NSP cluster station, perform To create the nsp user on a manually installed NSP cluster RHEL OS to create the RHEL nsp user.


12 

Perform To disable the RHEL firewalld service to ensure that the RHEL firewalld service is inactive during NSP component deployment.


13 

Optionally, perform To set the default umask to 0027 to limit non-root-user file and directory access.