Differences

This shows you the differences between two versions of the page.

--- hannibal:fileserver [2008/06/25 12:12]
Olivier Brugman created
+++ hannibal:fileserver [2015/04/12 01:08] (current)
Luc Nieland
@@ Line 4: / Line 4: @@
 We want all the daemons on or fileserver to use the same LDAP based source of sign-on for user management.
 So we need to have a LDAP-server and we need to configure PAM/NSSwitch on our server to connect to LDAP:
-  * Hannibal documentation on [[hannibal:ldap_directory|howto install a LDAP server]] for user authentication.
+  * Hannibal documentation on [[hannibal:fds|howto install a LDAP server]] for user authentication.
   * Hannibal documentation on [[hannibal:ldap-auth|howto turn a server into a LDAP-client]].
@@ Line 46: / Line 46: @@
 Install the software on the server (instance) that will mount the home-dir of it's users:
   apt-get install nfs-common portmap autofs
 Create /etc/auto.master
@@ Line 58: / Line 59: @@
 #
 </code>
 Create /etc/auto.home
 <code>
 #
-#*   -rsize=8192,wsize=8192,intr,fstype=nfs,soft,nosuid,tcp                  file.intra.example.com:/export/home/&
+#*   -fstype=nfs,vers=3,rsize=8192,wsize=8192,intr,fstype=nfs,soft,nosuid,tcp                  file.intra.example.com:/export/home/&
 #
-*  -rsize=8192,wsize=8192,timeo=14,intr,hard,tcp,nosuid,nfsvers=3,noatime    file.intra.example.com:/export/home/&
+*  -fstype=nfs,vers=3,rsize=8192,wsize=8192,timeo=14,intr,hard,tcp,nosuid,nfsvers=3,noatime    file.intra.example.com:/export/home/&
 #
 </code>
 As an alternative, add a line like this to /etc/fstab:
@@ Line 73: / Line 76: @@
-=====SMB/CIFS-protocol=====
+or more simple:
+  fileserver.intra.example.com:/home  /home  nfs defaults,vers=3
+When using NFS version 4 take /etc/idmapd.conf (and the startsetting in /etc/default/nfs-common) into account.
+=====SMB/CIFS-protocol=====
@@ Line 82: / Line 92: @@
 We used to run samba 3 in samba2-compatibility-mode. This was before we made the change to use the Fedora Directory Server as our preferred directory server. We keep some [[hannibal:samba_legacy|legacy documentation]] regarding samba 2 and the samba2-compatibility mode.
-We assume you are running the Fedora Directory Server with the LDAP-scheme for samba 3. In the chapter on [[hannibal:ldap_directory|installing the Fedora Directory Server]] we already described the custom LDAP-scheme that is required for Samba 3 usage ([[61samba.ldif]]).
+We assume you are running the Fedora Directory Server with the LDAP-scheme for samba 3. In the chapter on [[hannibal:fds|installing the Fedora Directory Server]] we already described the custom LDAP-scheme that is required for Samba 3 usage ([[61samba.ldif]]).
 ===Installation===
@@ Line 388: / Line 398: @@
 Now point you webdav-client of choise to http://yourwebserver/webdav and you should be prompted for login.
+====ssl====
+Create an Apache config. Use IP-based virtual hosting.
+Duplicate this config, for every extra virtual webdav server. Use an extra IP-number and set of SSLcertificates for for each webdav server.
+<code>
+<VirtualHost 192.0.32.11:80>
+        ServerName webdav.example.com
+        ServerAdmin webdavmaster@example.com
+        DocumentRoot /var/webdav.example.com/htdocs
+        <Directory />
+                Options FollowSymLinks
+                AllowOverride None
+        </Directory>
+        ErrorLog ${APACHE_LOG_DIR}/error.log
+        # Possible values include: debug, info, notice, warn, error, crit,
+        # alert, emerg.
+        LogLevel warn
+        CustomLog ${APACHE_LOG_DIR}/access.log combined
+</VirtualHost>
+<VirtualHost 192.0.32.11:443>
+ServerName webdav.example.com
+DocumentRoot /var/webdav.example.com/slash
+#
+SSLEngine on
+SSLProxyEngine on
+SSLCertificateFile     /var/webdav.example.com/ssl/webdav.example.com_cert.pem
+SSLCertificateKeyFile  /var/webdav.example.com/ssl/webdav.example.com_priv-key.pem
+SSLCACertificateFile   /var/webdav.example.com/ssl/ExampleCA_ca-pub-key-cert.pem
+#
+#DAVLockDB /tmp/DAVLock
+DAVMinTimeout 180
+LogLevel warn
+#
+Alias /hannibal   /var/webdav.example.com/hannibal
+  <Directory  /var/webdav.example.com/hannibal>
+   Dav On
+   AuthType Basic
+   AuthName "Solstice webdavshare voor Hannibal project"
+   AuthUserFile    /var/webdav.example.com/hannibal.htpasswd
+   require valid-user
+   #
+   # ## for browser-access:
+   Options +Indexes
+   IndexIgnore ..
+   IndexOptions -IconsAreLinks NameWidth=* FancyIndexing SuppressLastModified FoldersFirst
+   IndexOrderDefault Ascending Name
+  </Directory>
+</VirtualHost>
+</code>
+====clients====
+===OSX===
+This is build in.
+  Finder -> Go -> connect to server: https://webdav.example.com/hannibal
+===Linux===
+Install the module and userspace tooling:
+  apt-get install davfs2
+Make the mount:
+  mount -t davfs https://webdav.example.com/hannibal /home/luc/webdav-hannibal -o uid=1234,gid=1234
+===MS-win===
+Use ms-vista or newer, and add the CA-cert public key to the system store first.
+Now make the connection and map a driveletter:
+  net use W: https://webdav.example.com/hannibal /user:luc

HannibalWiki

User Tools

Site Tools

Differences

Page Tools