manualshive.com logo in svg

Novell iFOLDER 3.x, Administrator'S Manual

Download the free Administrator's Manual for Novell iFolder 3.x from manualshive.com. This comprehensive manual provides detailed instructions on how to set up and manage iFolder, a robust file syncing and sharing solution. Get access to essential information and troubleshooting tips for optimal performance.

Share
Download
background image

12

Novell iFolder 3.x Security Administrator Guide

no

vd

ocx (

E

NU)

  

01

 F

ebr
ua

ry 
200
6

2.2  Using SSL for Enterprise Server - iManager 

Communications

By default, the Novell iFolder 3.

x

 plug-in to iManager uses SSL for communications to the iFolder 

enterprise server being managed. For most deployments, this setting should not be changed. If the 
iManager server and the iFolder enterprise server are on the same computer, SSL is not required. For 
HTTP connections, the password is passed in the clear. 

For information, see “

Accessing the Novell iFolder 3 Plug-In for iManager

” in the 

Novell iFolder 

3.x Administration Guide

.

2.3  Using SSL for Enterprise Server - Client 

Communications

By default, the iFolder enterprise server is configured to require SSL. All client communication to 
the server is encrypted using the SSL protocol. For most deployments, this setting should not be 
changed because iFolder uses HTTP BASIC for authentication, which means passwords are sent to 
the server in the clear.

For information, see “

Configuring the Enterprise Server for SSL Communications with the iFolder 

Client

” in the 

Novell iFolder 3.x Administration Guide

.

If you disable SSL for server-client communications, you should use a VPN (virtual private 
network) for communications over wireless networks and outside the firewall. For information, see 

Section 4.3, “Securing Communications with a VPN If SSL Is Disabled,” on page 21

.

2.4  Using SSL for Enterprise Server - Web 

Access Server Communications

By default, the iFolder enterprise server is configured to communicate with the iFolder Web Access 
server via SSL. For most deployments, this setting should not be changed. If the Web Access server 
co-exists on the same machine as the iFolder enterprise server, an administrator can reconfigure to 
disable SSL, which increases the performance of local communications between the two servers. 

For information, see “

Configuring the Web Access Server for SSL Communications with the 

Enterprise Server

” in the 

Novell iFolder 3.x Administration Guide

.

2.5  Using SSL for Web Access Server - Users’ 

Web Browser Communications

By default, the iFolder Web Access server is configured to require SSL. All Web-browser-based 
communication to the Web Access server is encrypted using the SSL protocol. In most deployments, 
this setting should not be changed because iFolder uses Forms-based authentication for browser 
communications, which means passwords are sent to the server in the clear. For information, see 

Configuring the Web Access Server for SSL Communications with Web Browsers

” in the 

Novell 

iFolder 3.x Administration Guide

.

If you disable SSL for server-client communications, you should use a VPN (virtual private 
network) for communications over wireless networks and outside the firewall. For information, see 

Section 4.3, “Securing Communications with a VPN If SSL Is Disabled,” on page 21

.

Summary of Contents for iFOLDER 3.x

Page 1: ...Novell w w w n o v e l l c o m novdocx ENU 01 February 2006 Novell iFolder 3 x Security Administrator Guide iFolder 3 x A u g u s t 1 5 2 0 0 6 S E C U R I T Y A D M I N I S T R A T O R G U I D E...

Page 2: ...export or import deliverables You agree not to export or re export to entities on the current U S export exclusion lists or to any embargoed or terrorist countries as specified in the U S export laws...

Page 3: ...ademarks For a list of Novell trademarks see the Novell Trademark and Service Mark list http www novell com company legal trademarks tmlist html Third Party Materials All third party trademarks are th...

Page 4: ...novdocx ENU 01 February 2006...

Page 5: ...Securing the iFolder Proxy User Password 14 2 13 Using Synchronize Now to Remove Users Effective Immediately 15 2 14 Controlling Access to the iFolder Data Store 15 2 15 Controlling Access to the iFol...

Page 6: ...6 Novell iFolder 3 x Security Administrator Guide novdocx ENU 01 February 2006...

Page 7: ...version of the Novell iFolder 3 x Security Administrator Guide visit the Novell iFolder 3 x documentation Web site http www novell com documentation ifolder3 index html For emerging issues with Novel...

Page 8: ...n a cross reference path A trademark symbol TM etc denotes a Novell trademark An asterisk denotes a third party trademark When a single pathname can be written with a backslash for some platforms or a...

Page 9: ...ecure SSL for server to LDAP server communications iManager Novell iFolder 3 System LDAP Settings Port Is Secure Select Yes to enable SSL deselect Yes No to disable SSL Yes SSL enabled Yes SSL enabled...

Page 10: ...iFolder Admin users User specified None Users with limited administrator rights such as for a specific iFolder server Port for iManager to server communications iManager Novell iFolder 3 select any ta...

Page 11: ...page 14 Section 2 11 Ensuring Privilege Separation for the iFolder Proxy User on page 14 Section 2 12 Securing the iFolder Proxy User Password on page 14 Section 2 13 Using Synchronize Now to Remove U...

Page 12: ...tion 4 3 Securing Communications with a VPN If SSL Is Disabled on page 21 2 4 Using SSL for Enterprise Server Web Access Server Communications By default the iFolder enterprise server is configured to...

Page 13: ...Medium security cipher suites such as RC4 and RSA Remove from consideration any ciphers that do not authenticate such as Anonymous Diffie Hellman ADH ciphers Disable the Low Export and Null cipher sui...

Page 14: ...server after configuring the iFolder enterprise server and before the iFolder service is started for the first time The restart of Apache is forced at the end of the configuration process which starts...

Page 15: ...list is periodically updated based on the LDAP synchronization interval Whenever you remove users from a LDAP Search DN or remove contexts from the Search DN list you should synchronize the list imme...

Page 16: ...Virus Scanner Settings for iFolder Traffic in the iFolder User Guide for Novell iFolder 3 x 2 19 Backing Up the iFolder Server Backup of iFolder user data and configuration data should be performed r...

Page 17: ...Security Best Practices for Novell iFolder 3 x 17 novdocx ENU 01 February 2006 conditions and are handled by a company whose reputation rests on its ability to handle your media properly...

Page 18: ...18 Novell iFolder 3 x Security Administrator Guide novdocx ENU 01 February 2006...

Page 19: ...older 3 x 3 2 Configuring Client Side Virus Scanners for iFolder Communications Because iFolder is a cross platform distributed solution there is a possibility of a virus infection on one platform mig...

Page 20: ...20 Novell iFolder 3 x Security Administrator Guide novdocx ENU 01 February 2006...

Page 21: ...uder 4 3 Securing Communications with a VPN If SSL Is Disabled We recommend configuring Novell iFolder 3 x to use SSL HTTPS connections for all data exchanges between its different components because...

Page 22: ...sing MAC address filtering is practical for small networks but it is a time consuming administrative effort for large networks Use an anonymous Service Set Identifier SSID by turning off the SSID broa...

Page 23: ...Within a dated entry changes are grouped and sequenced according to where they appear in the document itself Each change entry provides a link to the related topic and a brief description of the chang...

Reviews:

No comments

Related manuals for iFOLDER 3.x

Juniper JUNOSE 11.2 Configuration Manual preview
JUNOSE 11.2
Brand: Juniper Pages: 772
Amazon VBA Manual preview
VBA
Brand: Amazon Pages: 60
Cisco Unity Express 8.0 Voice-Mail System User Manual preview
Unity Express 8.0 Voice-Mail System
Brand: Cisco Pages: 50
Cisco TELEPRESENCE MANAGEMENT SUITE PROVISIONING Troubleshooting Manual preview
TELEPRESENCE MANAGEMENT SUITE PROVISIONING
Brand: Cisco Pages: 16
Cisco Unified MeetingPlace H.323/SIP Administrator'S Manual preview
Unified MeetingPlace H.323/SIP
Brand: Cisco Pages: 54
Cisco PVDM2 24DM - Digital Modem Module User Manual preview
PVDM2 24DM - Digital Modem Module
Brand: Cisco Pages: 48
Cisco TELEPRESENCE MANAGEMENT SUITE SECURE SERVER Configuration Manual preview
TELEPRESENCE MANAGEMENT SUITE SECURE SERVER
Brand: Cisco Pages: 34
Cisco SGACL Configuration Manual preview
SGACL
Brand: Cisco Pages: 8
Cisco Unified Videoconferencing Manager Installation Manual preview
Unified Videoconferencing Manager
Brand: Cisco Pages: 22
Cisco SMART BUSINESS COMMUNICATIONS SYSTEM Feature Reference preview
SMART BUSINESS COMMUNICATIONS SYSTEM
Brand: Cisco Pages: 27
Cisco MDS 9222i - Multiservice Modular Fabric Switch Release Note preview
MDS 9222i - Multiservice Modular Fabric Switch
Brand: Cisco Pages: 40
Cisco MCS 7825 Series Installation Manual preview
MCS 7825 Series
Brand: Cisco Pages: 20
Cisco Surveillance Media Server Installing And Upgrading preview
Surveillance Media Server
Brand: Cisco Pages: 14
Cisco OL-5490-01 User Manual preview
OL-5490-01
Brand: Cisco Pages: 92
Cisco TelePresence Movi 4.1 Administrator'S Manual preview
TelePresence Movi 4.1
Brand: Cisco Pages: 29
Cisco MeetingPlace Video Integration Administrator'S Manual preview
MeetingPlace Video Integration
Brand: Cisco Pages: 84
Cisco SMTP Administration Manual preview
SMTP
Brand: Cisco Pages: 48
Cisco UC520-8U-4FXO-K9 Getting Started preview
UC520-8U-4FXO-K9
Brand: Cisco Pages: 54

Brands by name

Popular brands

Load more brands