Novell IFOLDER 3 - ADMINISTRATION Скачать руководство пользователя страница 133 | Manualshive

Страница: 133 / 148

background image

Managing SSL Certificates for Apache

C

no

vd

ocx (

E

NU)

01

F

ebr
ua

ry
200
6

133

C

Managing SSL Certificates for
Apache

This section discusses how to acquire and manage SSL certificates for your Novell

®

iFolder

®

3.

x

servers.

•

Section C.1, “Generating an SSL Certificate for the Server,” on page 133

•

Section C.2, “Generating a Self-Signed SSL Certificate for Testing Purposes,” on page 134

•

Section C.3, “Configuring Apache to Point to an SSL Certificate on an iFolder Server,” on
page 135

•

Section C.4, “Configuring Apache to Point to an SSL Certificate on a Shared Volume for an
iFolder Cluster,” on page 135

C.1 Generating an SSL Certificate for the Server

Using SSL requires that you install an SSL certificate from on each iFolder enterprise server and
Web Access server in your domain. Users accept the certificates to enable communications with the
servers.

The certificate can be a self-signed certificate or a certificate from a trusted certificate authority. A
self-signed certificate is usually used only for internal iFolder services, where the server’s identity is
not likely to be spoofed. The trusted CA signature on the certificate attests that the public key
contained in the certificate belongs to the person, organization, server, or other entity noted in the
certificate. It assures users that they are accessing a valid, non-spoofed resource. If the information
does not match or the certificate has expired, an error message warns the user.

Browsers are typically preconfigured to trust well-known certificate authorities. If you use a
Certificate Authority that is not configured into browsers by default, it is necessary to load the
Certificate Authority certificate into the browser, enabling the browser to validate server certificates
signed by that Certificate Authority.

To acquire SSL certificates for use in an operational public-key infrastructure (PKI), use one of the
following methods, depending on your network needs:

• Use the self-signed certificate that is created and enabled for the server by default during the

server install.

• Use the services of a third-party certificate authority to get trusted certificate, then use it instead

of accepting the default certificate during the sever install.

Whichever method you use, the certificate is automatically used for the Apache Web Server
configuration. If it does not automaticially configure the certificate for the Apache Web Server, see
the following:

•

Section C.3, “Configuring Apache to Point to an SSL Certificate on an iFolder Server,” on
page 135

•

Section C.4, “Configuring Apache to Point to an SSL Certificate on a Shared Volume for an
iFolder Cluster,” on page 135

«
...
131
132
133
134
135
...
»

Содержание IFOLDER 3 - ADMINISTRATION

Страница 1: ...Novell w w w n o v e l l c o m novdocx ENU 01 February 2006 Novell iFolder 3 x Administration Guide iFolder 3 x A u g u s t 1 5 2 0 0 6 A D M I N I S T R A T I O N G U I D E...

Страница 2: ...export or import deliverables You agree not to export or re export to entities on the current U S export exclusion lists or to any embargoed or terrorist countries as specified in the U S export laws...

Страница 3: ...ademarks For a list of Novell trademarks see the Novell Trademark and Service Mark list http www novell com company legal trademarks tmlist html Third Party Materials All third party trademarks are th...

Страница 4: ...novdocx ENU 01 February 2006...

Страница 5: ...thentication 19 1 4 9 File Synchronization and Data Management 19 1 4 10 Synchronization Log 19 1 4 11 iFolder Client APIs 20 1 5 What s Next 20 2 What s New 21 2 1 What s New in Novell iFolder 3 2 OE...

Страница 6: ...4 Novell iManager 2 5 48 5 5 Mono 48 5 6 Client Computers 49 5 7 Web Browser 49 6 Installing and Configuring iFolder Services 51 6 1 Installing iFolder on an Existing OES Linux Server 51 6 2 Configuri...

Страница 7: ...88 8 4 5 Modifying the iFolder Proxy User Password 88 8 4 6 Synchronizing the iFolder User List with the LDAP Server 89 8 5 Configuring System Policies 90 8 5 1 Viewing the Current System Policies 90...

Страница 8: ...bout an iFolder 111 11 4 Configuring Policies for an iFolder 111 11 5 Sharing an iFolder 112 11 5 1 Adding a Member 113 11 5 2 Setting the iFolder Access Right for a Member 113 11 5 3 Removing a Membe...

Страница 9: ...1 4 Clustering iFolder 3 x Servers with Novell Cluster Services for Linux 142 E 1 5 Managing the SSL Certificate for the Apache Web Server 143 E 1 6 Product History 143 E 2 May 24 2006 143 E 2 1 Prere...

Страница 10: ...10 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 11: ...x A Configuration Files on page 117 Appendix B Clustering iFolder 3 x Servers with Novell Cluster Services for Linux on page 125 Appendix C Managing SSL Certificates for Apache on page 133 Appendix D...

Страница 12: ...ll com documentation edir873 treetitl html Novell iManager 2 5 documentation http www novell com documentation imanager25 treetitl html Novell Linux Desktop 9 product site http www novell com products...

Страница 13: ...n 1 3 Enterprise Server Sharing on page 17 Section 1 4 Key Components of iFolder on page 17 Section 1 5 What s Next on page 20 1 1 Benefits of iFolder for the Enterprise Benefits of iFolder to the ent...

Страница 14: ...an organization s regular network backup operations iFolder makes it easier for IT managers to ensure that all of an organization s critical data is protected 1 1 3 Reliable Data Security With Novell...

Страница 15: ...tive network or Internet connection 1 1 6 Scalable Deployment iFolder easily scales from small to large environments You can install iFolder on multiple servers allowing your iFolder environment to gr...

Страница 16: ...most recent version of documents to all authorized users of the shared iFolder All that the iFolder owner and iFolder members need is an active network connection and the iFolder client Novell iFolde...

Страница 17: ...intervals with the LDAP directory services Local files are automatically backed up to the server at regular intervals and on demand iFolder data on the server can be backed up to backup media and rest...

Страница 18: ...can access data in their local iFolders at any time it does not matter if they are logged in to their server accounts or if they are connected to the network or Internet The iFolder client allows use...

Страница 19: ...that account Users create an iFolder and the enterprise server makes it available to the specified list of users A user can have a separate account on each enterprise server A user s level of membersh...

Страница 20: ...it http forge novell com modules xfmod docman group_id 1372 1 5 What s Next Before you install iFolder review the following sections What s New on page 21 Planning iFolder Services on page 31 Coexiste...

Страница 21: ...r common name or e mail address The iFolder Admin User configures the option during installation and the setting applies to all users For information see Section 6 2 Configuring the iFolder Enterprise...

Страница 22: ...d files and download files to any of their iFolders All iFolders for the account are available whether the user is the owner or a member Remote and Policy Based Administration Administrators manage iF...

Страница 23: ...by the iFolder owner For each member of an iFolder specify the user s level of access with Full Control Read Write and Read Only rights Allows administrators to transfer ownership of a shared iFolder...

Страница 24: ...hronize No Yes Administrator can specify file types to include or exclude by setting system wide individual account or individual iFolder policies Allows administrators to enable or disable the iFolde...

Страница 25: ...page on the OES Linux server Default location of the iFolder directory on a client Windows C Documents and Settings username My Documents iFolder userna me Home Linux home userid ifolder userid Macint...

Страница 26: ...ach computer according to your needs at each location Share an iFolder with other users Not as designed but it is possible The administrator can create a username for this purpose Membership in the iF...

Страница 27: ...as No An owner can specify a quota for each iFolder but the total combined administrative quotas for all owned iFolders cannot exceed the user s quota or the system wide quota if there is no user quot...

Страница 28: ...for NetWare servers only For iFolder 2 1 5 and later Novell NetStorage for Novell Open Enterprise Server both Linux and NetWare servers iFolder 3 x Web Access for Novell Open Enterprise Server for Li...

Страница 29: ...ypted data transfer Yes with the encrypted iFolder option The Blowfish algorithm is applied with a user specified passphrase Yes with HTTPS SSL connections for data transfer WebDAV protocol support Ye...

Страница 30: ...30 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 31: ...rking from different workstations at different times multiple users can be concurrently modifying files and synchronizing them Whenever a user adds a new member to an iFolder the workload on the serve...

Страница 32: ...n eDirectory satisfies the following naming requirements Conforms to standard e mail naming conventions Is unique in the directory For example if two identical e mail addresses exist in the directory...

Страница 33: ...e server Whenever iFolders are orphaned ownership is transferred to the iFolder Admin user for reassignment to another user or for deletion You initially specify the iFolder Admin user during the iFol...

Страница 34: ...les The password stored on the system for the iFolder Proxy user must match the password stored in the iFolder Proxy user s eDirectory object If you ever modify the iFolder Proxy user password in eDir...

Страница 35: ...r user without interruption of service and loss of memberships and data the new container must be added as a Search DN before the user is moved If the user is moved to a different container that is no...

Страница 36: ...r a single path component is 255 bytes For filenames the maximum length includes the dot and file extension Names of iFolders folders and files are case insensitive however case is preserved If filena...

Страница 37: ...e file that is implemented as a collection of linked files do not try to synchronize them in an iFolder Do not try to synchronize your GroupWise data by making the GroupWise archive cache or remote di...

Страница 38: ...er than one of the supported languages To avoid problems in your Web browser s Languages setting set the first language preference in the list to a supported language such as English NOTE In the initi...

Страница 39: ...y 2006 3 7 3 Web Access Configuration File Use the opt novell ifolder3 webaccess Web config file to configure HTTP runtime parameters for your iFolder Web Access server For information see Section 9 4...

Страница 40: ...40 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 41: ...der 3 x runs with the default Apache 2 Worker configuration that comes with OES The separate instances of Apache run in parallel with no interaction between them You must use different IP addresses fo...

Страница 42: ...ts parent folders to a next generation iFolder For more information see Section 2 5 Comparison of 2 1x and 3 x Client Features and Capabilities on page 25 4 3 Migrating from iFolder 2 1x to 3 x Server...

Страница 43: ...stence and Migration Issues 43 novdocx ENU 01 February 2006 3 2 After users have successfully migrated their files to the new system you can determine the need to maintain a 2 1x server in your enviro...

Страница 44: ...44 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 45: ...e We recommend that you store the users iFolder data on a separate volume 5 2 Enterprise Server We recommend that you install iFolder 3 x enterprise server and Web Access server after your OES Linux s...

Страница 46: ...m device NSS volumes are configured after the install is complete If you plan to use NSS volumes some deployment scenarios require that you modify the partitioning to use EVMS Enterprise Volume Manage...

Страница 47: ...ther Components We recommend that your iFolder enterprise server and Web Access server run on separate dedicated servers For small office use both enterprise server and Web access server can run on th...

Страница 48: ...mentation edir873 edir873 data afxkmdi html Make sure your LDAP objects comply with the naming conventions for your LDAP services For information see Section 3 3 Naming Conventions for Usernames and P...

Страница 49: ...formation see the latest version of the online documentation on the Novell iFolder 3 x Documentation Web site http www novell com documentation ifolder3 5 6 Client Computers The iFolder client support...

Страница 50: ...50 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 51: ...system is installed and all storage services are configured The following procedure describes how to install iFolder enterprise server iFolder Web access server or both of the servers on an existing O...

Страница 52: ...vell iFolder 3 then select its check box to signify that you want to install the RPMs for Novell iFolder 3 and its dependencies iFolder 3 Web Access In the left Selections menu locate and select Novel...

Страница 53: ...Login Based on Which LDAP Attribute options These parameter settings cannot be modified after the initial configuration Install Settings Description LDAP Server Configuration Local or Remote Directory...

Страница 54: ...lume the store path might be media nss NSSVOL ifolder3 data If you use an NSS volume you must set up NSS file system trustee rights for the Web services user object wwwrun before restarting your web s...

Страница 55: ...ommands at the prompt etc init d apache2 start rcapache2 start 7 Go to Novell iManager to install the Novell iFolder 3 plug in or to manage iFolder services For information see Installing the Novell i...

Страница 56: ...Access you must manually remove the old URL from the WebLink section in the var opt novell tomcat4 webapps welcome WEB INF XMLData ifolder3 xml file Install Settings Description Web Access Alias The...

Страница 57: ...gured on page 58 6 4 1 Prerequisites Novell iManager 2 5 If you have not already done so install Novell iManager 2 5 on the same or different server as your iFolder server For information see Novell i...

Страница 58: ...art Tomcat sometimes requires several minutes to fully initialize Wait at least 5 minutes before trying to log in to iManager 7 Verify that the plug in is enabled by opening iManager in a Web browser...

Страница 59: ...ick Update 13 Wait for the Completed message then click OK to continue 14 Verify that the plug in is enabled by opening iManager in a Web browser and checking to see if the Novell iFolder 3 plug in ap...

Страница 60: ...ator on the left 4 In Roles and Tasks click Novell iFolder 3 System The Connect Login page opens 5 Log in to connect to the iFolder 3 x enterprise server you want to manage For information see Section...

Страница 61: ...oned as iFolder users 1 In iManager expand the Novell iFolder 3 role select System then wait for the page to refresh 2 Select LDAP to open the System page to the LDAP tab then click Modify 3 Repeat th...

Страница 62: ...nd Synchronize now to enforce your changes For information see Section 8 4 6 Synchronizing the iFolder User List with the LDAP Server on page 89 6 7 Distributing the iFolder Client to Users After you...

Страница 63: ...1 of the Novell iFolder 3 x enterprise server 2 In the left navigator click iFolder 3 x to open the iFolder 3 x Welcome page 6 7 3 Downloading the iFolder Client On the iFolder 3 x Welcome page users...

Страница 64: ...er 3 x supports only the version of Mono included in the install software The iFolder client for Linux or Macintosh supports only the version of Mono included in the install software for those platfor...

Страница 65: ...fore you uninstall iFolder The users still have a local copy of all their data which might not be the most up to date version depending on when they last synchronized their files When the server is re...

Страница 66: ...66 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 67: ...page 78 Section 7 9 Moving iFolder Data from One iFolder Server to Another on page 79 7 1 Starting iFolder Services iFolder services start whenever you reboot the system or whenever you start Apache...

Страница 68: ...g Services http logging apache org log4net The following parameters are modifiable Parameters Description Examples Location and name of the log file value pathname The location of the log file Specify...

Страница 69: ...imias config 3 Start the iFolder server by entering the following command as root user Level of Simias Services messages level value status Use only for the Simias log The type of messages or level of...

Страница 70: ...A standard System Independent Data Format SIDF The TSA for iFolder TSAIF provides an implementation of the SMS API for an iFolder store Backup applications such as nbackup 1 can make use of its featur...

Страница 71: ...t delete it from the server using a client or the iFolder 3 plug in for iManager Deleting the iFolder is not necessary to restore any or all of the files in the iFolder the difference is in what metad...

Страница 72: ...the user interface The ID would need to be displayed to the backup administrator only when two Collections or two Collection owners have the same name and the backup administrator wants to perform an...

Страница 73: ...ts Simias data from the Collection store and recursively backup or restore each file and subdirectory in mySubdir along with its respective Simias data 7 6 5 SMSConfig Options The TSAIF command is not...

Страница 74: ...tely process a data set before proceeding to another data set The default value is 100 ReadAheadThrottle This sets the maximum number of data sets that the TSA caches simultaneously This prevents the...

Страница 75: ...les The following examples show how to perform typical TSAIF backup and restore operations using NBackup P password password The password to connect to the TSA The password can be supplied at runtime...

Страница 76: ...folder nbackup xvf owner sidf U root P password target type ifolder extract dir owner collection nbackup xvf full sidf U root P password target type ifolder extract dir owner collection If you are res...

Страница 77: ...kup After the iFolder server is restored they can copy these files or directories back into their respective iFolders 1 Notify users to save copies of iFolders or files that have changed since the tim...

Страница 78: ...pt novell ifolder3 simias SimiasFiles 62ba1844 6987 47fc 83ab 84bbd5d6130b MyiFolder 7 On the iFolder server use your normal file system restore procedures to restore the target file or directory from...

Страница 79: ...n is var opt novell ifolder3 simias Simias configuration file The default locations are var lib wwwrun local share simias Simias config or home wwwrun local share simias Simias config 4 Install and co...

Страница 80: ...80 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 81: ...ata hk42s9ot html bktitle 1 Open a Web browser to the following URL https svrname example com nps iManager html Replace svrname example com with the actual DNS name or IP address such as 192 168 1 1 o...

Страница 82: ...e specific iFolder server you want to manage The iFolder Admin username can be the same LDAP identity as your iManager Admin username depending on how you configure your iFolder system If you are not...

Страница 83: ...than the iFolder Admin user of the target server deselect Authenticate Using Current iManager Credentials then specify the iFolder Admin username and password 6 Click OK to connect to the iFolder ser...

Страница 84: ...ect LDAP to open the System page to the LDAP tab 3 View the following information Parameter Description Domain Descriptive name of the iFolder enterprise server Each server is an iFolder domain Host N...

Страница 85: ...list This password must match the password stored in the iFolder Proxy user s eDirectory object For information see Section 8 4 5 Modifying the iFolder Proxy User Password on page 88 Search DNs The LD...

Страница 86: ...rname should never change Keep the autogenerated iFolder Proxy username The iFolder Admin user or equivalent can use the iFolder 3 plug in for iManager to change the iFolder Proxy user identity in the...

Страница 87: ...e icon red X then click OK When you delete a DN from the Search DNs users in that DN are removed from the iFolder user list the next time the iFolder server synchronizes LDAP information During LDAP s...

Страница 88: ...ile administrators of the iFolder 3 x server computer must use every precaution to not inadvertently assign file system rights to the var lib wwwrun local share simias directory to unauthorized users...

Страница 89: ...onizing the iFolder User List with the LDAP Server The iFolder user list includes enterprise users that are provisioned for iFolder services The list is based on users found in the LDAP containers and...

Страница 90: ...the LDAP server retrieves and compiles a list of users in the specified Search DNs synchronizes the iFolder user list with it and automatically resets the interval timer for the LDAP Synchronization I...

Страница 91: ...data for each user account Larger values are more restrictive If the option is disabled the value is No Limit The interval timer is reset to the Synchronization Interval value at the end of a synchron...

Страница 92: ...ical limit is governed by the file system on the user s computer For example FAT32 volumes have a maximum file size of 4 GB minus 1 byte Default Value Disabled No Limit Enable File Type Restriction Sp...

Страница 93: ...rvices for the selected server Use the Administrators page in the Novell iFolder 3 plug in to iManager to add or remove the iFolder Admin right for users Only users who are in one of the contexts spec...

Страница 94: ...Section 8 7 2 Configuring the SSL Cipher Suites for the Apache Server on page 95 Section 8 7 3 Configuring the Enterprise Server for SSL Communications with the LDAP Server on page 95 Section 8 7 4 C...

Страница 95: ...nf httpd conf file 1 Stop the Apache server At a terminal console enter etc init d apache2 stop 2 Open the etc httpd conf httpd conf file in a text editor then locate the SSLCipherSuite directive in t...

Страница 96: ...imiasRequireSSL value yes add key SimiasSSLPort value 443 appSettings To configure insecure Web traffice with HTTP BASIC modify the value of SimiasRequireSSL to No and the SimiasSSLPort to 80 For exam...

Страница 97: ...s a root user enter the following command at the terminal console etc init d apache2 start 9 2 Stopping iFolder Web Access Services iFolder services stop whenever you stop the system or whenever you s...

Страница 98: ...utionTimeout 180 maxRequestLength 10240 To modify the httpRuntime parameters 1 Stop iFolder 2 Set the httpRuntime parameters on the iFolder Web Access server by editing the values in the opt novell if...

Страница 99: ...rver for SSL Communications with Web Browsers on page 101 Section 9 5 5 Configuring an SSL Certificate for the Web Access Server on page 101 For information on how to configure SSL traffic on the iFol...

Страница 100: ...ccess server via SSL For most deployments this setting should not be changed because iFolder uses HTTP BASIC for authentication which means passwords are sent to the server in the clear If the iFolder...

Страница 101: ...also sent in the clear The following Rewrite parameters control this behavior and are located in the etc apache2 conf d ifolder_web conf file LoadModule rewrite_module usr lib apache2 mod_rewrite so R...

Страница 102: ...102 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 103: ...ht create orphaned iFolders if the deleted user owned any iFolders IMPORTANT Whenever you move a user between contexts and you want to provide continuous service for the user make sure to add the targ...

Страница 104: ...whose iFolder account you want to manage then click the Name link for the User The User page opens to the General tab which displays the user s full name username and the last time the user logged in...

Страница 105: ...xclude from synchronization for the selected user s account The file manager files called thumbs db and DS_Store are never synchronized You do not need to keep these files and synchronizing them resul...

Страница 106: ...across all iFolders the user owns for the selected user account Deselect this option if there is no individual user quota or to accept the system wide quota for the selected user account Select this o...

Страница 107: ...nt by deselecting Account Enabled then click OK 10 6 Setting a User Account Quota 1 In iManager expand the Novell iFolder 3 role then select Set Users Account Quota 2 Search for the user whose account...

Страница 108: ...108 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 109: ...older is to be stored Each user decides where to set up the iFolder on his or her own computer If you want users to each store iFolders in the same relative location on their computers you must coordi...

Страница 110: ...ck OK Click Orphaned iFolders on the iFolders page or click the Orphaned iFolders role to retrieve a list of orphaned iFolders 3 Use one or more of the following search methods then click Search Selec...

Страница 111: ...cy tab then click Modify 4 Configure one or more of the following values then click OK to apply the new settings Parameter Description Owner The username of the owner of the selected iFolder For orpha...

Страница 112: ...en specify the list of file types to include when iFolder synchronizes files in the iFolder Type a file extension then click OK to add it to the list To edit an extension select the value click Edit t...

Страница 113: ...iFolder s Name link to open the iFolder management page to the General tab 3 Select the Members tab then click Add 4 Search for the user you want to make a member select the check box next to the use...

Страница 114: ...ace consumed by the iFolder on the server is charged against the user s quota Yes No No No Transfer ownership of an iFolder to another iFolder user Yes No No No Set a quota for the iFolder Yes No No N...

Страница 115: ...owner becomes a member of the iFolder and is assigned the Read Write right For orphaned iFolders the iFolder Admin user becomes the owner If the new owner is not currently a member of the iFolder a su...

Страница 116: ...lder services Orphaned iFolders are automatically assigned to the iFolder Admin user who serves as a temporary owner until the iFolder can be assigned or deleted Meanwhile the members of the iFolder c...

Страница 117: ...ame EnterpriseDescription value 20050525 Build 1 setting name AdminDN value cn iFolderAdmin o acme setting name Encoding value iso 8859 1 setting name EnterpriseID value 76c8cfd1 f876 4bc5 b7fd beb511...

Страница 118: ...Log Service assembly Simias enabled True type Thread class Simias Storage ChangeLog Service name LDAP to System Address Book Synchronization Service assembly Novell Simias Enterprise dll enabled True...

Страница 119: ...KeyToken 0738eb9f132ed756 sectionGroup configSections system web customErrors mode Off httpRuntime executionTimeout 180 maxRequestLength 1048576 take this out until we need it webServices soapExtensio...

Страница 120: ...s add key SimiasSSLPort value 443 add key Enterprise value True appSettings configuration A 3 Web config File for the Web Access Server By default the Web config file for the Web Access server is in t...

Страница 121: ...security purposes so that you do not display application detail information to remote clients customErrors defaultRedirect Error aspx mode On AUTHENTICATION This section sets the authentication polici...

Страница 122: ...GING Application level tracing enables trace log output for every page within an application Set trace enabled true to enable application trace logging If pageOutput true the trace information will be...

Страница 123: ...ication globalization requestEncoding utf 8 responseEncoding utf 8 system web appSettings add key SimiasUrl value https localhost add key SimiasCert value a_certification_key_goes_here appSettings loc...

Страница 124: ...124 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 125: ...older 3 x Services Your cluster must contain at least two OES Linux servers Each node in your iFolder 3 x cluster must satisfy the following Prerequisites and Guidelines on page 45 for iFolder 3 x Pre...

Страница 126: ...he cluster s shared volume 2c On each node Modify the node s Apache SSL configuration file to point to the key and certificate files on the shared volume 3 For each node in the cluster install iFolder...

Страница 127: ...start Open your Web browser to the iFolder server to make sure it is running http 192 168 1 1 simias10 Simias asmx Replace 192 168 1 1 with the IP address of the server node you are configuring If eve...

Страница 128: ...Node 1 in Step 4h For the iFolder Server URL specify SSL by using https in the URL and specify localhost as the location For example https localhost 5d Stop Apache on the node you are configuring At...

Страница 129: ...Browse for the Generic_IP_Service to Inherit From 7 Select Define Additional Properties then click Next 8 For the cluster Load Script use one of the sample load scripts as a guide then click Next For...

Страница 130: ...tc init d apache2 start return status exit 0 bin bash opt novell ncs lib ncsfuncs B 6 2 NSS File System If your shared volume uses the NSS file system use the following load script as a guide NSS File...

Страница 131: ...le Unload Script bin bash opt novell ncs lib ncsfuncs request service stop ignore_error etc init d apache2 stop del the IP address xx xx xx xx is your highly available IP address ignore_error del_seco...

Страница 132: ...ons to be closed before the umount is executed Add the following lines between the request to stop service and deleting the IP address stop service otherwise sleep 10 ignore_error fuser k MOUNT POINT...

Страница 133: ...ization server or other entity noted in the certificate It assures users that they are accessing a valid non spoofed resource If the information does not match or the certificate has expired an error...

Страница 134: ...ses but should not be used in an operational deployment especially when connections cross public communications networks such as the Internet 1 Make sure you have a valid DNS name registered to a vali...

Страница 135: ...y and cert files Replace the destination path with the location on the mounted volume where you want to store the key and cert files 4 For each node in the cluster edit the Apache SSL configuration fi...

Страница 136: ...ile and cert file on the shared volume by modifying the values for the following parameters SSLCertificateKeyFile mnt ifolder3 sharedkey filename key SSLCertificateFile mnt ifolder3 sharedkey filename...

Страница 137: ...ating Systems Support Version Type Description 3 0 Bundled A new code base in this next generation version supports multiple iFolders and member based sharing For information see Section 2 3 What s Ne...

Страница 138: ...Novell eDirectoryTM 8 7 3 8 7 3 8 7 3 Workstation Operating System iFolder Client 3 0 iFolder Client 3 1 iFolder Client 3 2 iFolder Client 3 4 Novell Linux Desktop v9 v9 v9 and later No SUSE Linux En...

Страница 139: ...Safari Macintosh IE 6 0 Firefox Safari Macintosh iFolder Management Interfaces 3 0 3 1 3 2 iFolder 3 plug in to iManager 2 5 Yes Yes Yes iFolder 3 plug in to YaST Yes Yes Yes iFolder 3 Web Access plug...

Страница 140: ...140 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006...

Страница 141: ...the related topic and a brief description of the change This document was updated on the following dates Section E 1 August 15 2006 on page 141 Section E 2 May 24 2006 on page 143 Section E 3 December...

Страница 142: ...ides where to set up the iFolder on his or her own computer If you want users to each store iFolders in the same relative location on their computers you must coordinate that behavior outside of iFold...

Страница 143: ...Certificate for the Server on page 133 YaST contains modules for the basic management of X 509 certificates This mainly involves the creation of CAs sub CAs and their certificates For more informatio...

Страница 144: ...e for login make sure the e mail address conforms to standard e mail naming conventions For example john smith example com or js1234 email example com Location Change Installing iFolder 3 0 This secti...

Страница 145: ...d below Section E 4 1 What s New on page 146 Location Change Section 8 4 Configuring the LDAP Settings for an iFolder Server on page 84 Information was modified for the LDAP Synchronization Interval S...

Страница 146: ...E 4 10 Product History of iFolder 3 x on page 148 E 4 1 What s New The following changes were made to this section E 4 2 Coexistence and Migration Issues for Novell iFolder 3 x The following change w...

Страница 147: ...S SP1 Linux to use the Minimal install pattern Section 5 1 File System on page 45 For OES SP1 iFolder supports storing iFolder data on NSS volumes on Linux Section 5 5 Mono on page 48 The version of M...

Страница 148: ...148 Novell iFolder 3 x Administration Guide novdocx ENU 01 February 2006 E 4 9 Managing SSL Certificates for Apache This section is new E 4 10 Product History of iFolder 3 x This section is new...

Отзывы:

Нет отзывов

Похожие инструкции для IFOLDER 3 - ADMINISTRATION

010-10307-00 - MapSource Fishing Hot Spots

Бренд: Garmin Страницы: 30

Бренд: Baracoda Страницы: 9

COLDFUSION 5-DEVELOPING

Бренд: MACROMEDIA Страницы: 438

External OEMR 2800

Бренд: Dell Страницы: 32

Encryption Key Manager

Бренд: Dell Страницы: 66

External OEMR 2950

Бренд: Dell Страницы: 22

Бренд: Dell Страницы: 10

DVS Simplified Appliance

Бренд: Dell Страницы: 73

Бренд: Dell Страницы: 75

External OEMR 850

Бренд: Dell Страницы: 162

External OEMR 2850

Бренд: Dell Страницы: 176

Бренд: Internet Security Systems Страницы: 126

DiskRescue 2009

Бренд: UNIBLUE Страницы: 26

PowerSuite 2010

Бренд: UNIBLUE Страницы: 13

Бренд: beat buddy Страницы: 33

Бренд: Autodesk Страницы: 10

Бренд: Oracle Страницы: 224

DREAMWEAVER 8-GETTING STARTED WITH...

Бренд: MACROMEDIA Страницы: 326

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды