Granting Privileges for the aspera Account

You must access the MySQL database to grant access privileges for the user root. This requires accessing the database on the node that you selected as the primary node with the MySQL root password and then granting privileges for the user root from either Orchestrator server.

Retrieve the MySQL root account password from the /opt/aspera/common/mysql/database.rb.yml file on the primary server.

Copy the password in /opt/aspera/orchestrator/config/database.yml file as follows:

root@10.0.143.100]# cat /opt/aspera/common/mysql/database.rb.yml
                        [client]
                        user 	= root
                        password = RAAp2jRGIdfUoTBL3ttr
                        host 	= localhost 
                        port 	= 4406

On the same Orchestrator server system (primary), log in to mysql as root using the password value you retrieved from the .my.cnf file as shown below:

[root@10.0.143.100]# /opt/aspera/common/mysql/bin/mysql –uroot –hlocalhost –pRAAp2jRGIdfUoTBL3ttr

Note: There is no space between the -p option and the password value.

If the command is successful, you will be presented with the MySQL environment:

Welcome to the MySQL monitor.  Commands end with  ; or  \g
                        Your MySQL connection id is 45
                        Server version:  5.1.67 Source distribution
                        …
                        Type ‘help ;’ or’\h’ for help.  Type \\c’ to clear the current input statement.
                        [(none)] mysql>

Run the following commands using the default password value of root for the user root and replacing the IP addresses with the IP addresses of the Aspera Orchestrator servers in your environment.
In the example below, the user is the value following the string "*.* to and the password is the value following the string identified by.
```
mysql> grant all privileges on *.* to 'root'@'10.0.115.100' identified by ‘aspera' ;
                        Query OK, 0 rows affected (0.00 sec)
                        mysql> grant all privileges on *.* to 'root'@'10.0.115.101' identified by ‘aspera' ;
                        Query OK, 0 rows affected (0.00 sec)
```
Note: Include the quote marks exactly as shown (‘root’@’10.0.115.100’ and ‘root’) and make sure to include the final semicolon symbol ";" which must be separated from the previous string with a space (‘aspera' ;).
Enter quit to exit the MySQL environment.
To verify that the changes have been implemented, log into MySQL using the root account and the IP address of the system where you ran the mysql command:
```
[root@10.0.143.100]# cd /opt/aspera/common/mysql/bin/
                        [root@10.0.143.100]# ./mysql –uroot –h10.0.115.100 –paspera
```
Note: As shown in the example above, there is no space between -u and root and -p and aspera.

If you are able to access the MySQL environment, the changes were successfully implemented. If you do not see the message, Welcome to the MySQL monitor (as shown in Step 2), re-run the mysql> grant all privileges statements—as shown in Step 3—with the root account.

Note: Attempting to log in using the address of the other server will fail at this point. This will be resolved once the MySQL database is shared by both systems and is run from the active server.