Basic iFolder howto… finally!!!

As promised, I have finally created a quick howto for setting up iFolder.  This is a really simple get your feet wet instruction set.  It runs through the basics and includes SSL, but doesn’t show you how to set up LDAP of any kind.  Someone else is going to help out with that howto.  This should be posted to the iFolder community site in the next week or so as time permits.

If anyone has something to add/change please leave a comment!

——————————————————————————-
Steps to setting up iFolder
——————————————————————————-

- Boot image of choice
- Log in as root (password: ifolder, please change this :)
- cd iFolder
- sh BuildSSL.sh
– Enter a pass phrase for server.key: (enter a pass phrase)
– Verify – Enter pass phrase for server.key: (verify the pass phrase)
– Enter pass phrase for server.key: (this is the pass phrase you just entered)
– Fillout information for certificate request (with your own data)
— Country Name (2 letter code) [AU]: US
— State or Province Name (full name) [Some-State]: UT
— Lacality Name (eg, city) []: Provo
— Organization Name (eg, company) [Internet Widgets Pty Ltd]: Novell
— Organizational Unit Name (eg, section)[]: SLED Accessibility
— Common Name (eg, YOUR name)[]: Stephen Shaw
— Email Address[]:sshaw{at}decriptor[dot]com
– A challenge password []: (I just hit enter, correct me)
– An optional companyname []: (I just hit enter, correct me)
– Enter pass phrase for server.key (this is the pass phrase from above)
– Enter pass phrase for server.key (the second time, this is the pass phrase from above)

That’s it for BuildSSL.sh

- Sh BuildiFolder.sh
- Server’s Data Path? [/var/simias/data]: (use default)
- Server Name? [Host1]: iFolder1 (up to you)
- SSL?[SSL]: (use default)
- Public URL? [http://ipaddress/simias10]: (use default)
- Private URL? [https://ipaddress/simias10]: (use default)
- Slave Server? [N]: (use default, unless it is a slave)
- System Name? [iFolder]: (use default)
- System Description? [iFolder Enterprise System]: (use what you want)
- Use Key Recovery Agent? [Y]: (use defaults if you want to be able to recovery forgotten pass phrases)
- Recovery Agent Certificate Path? [/var/simias/data]: (use default)
- Use LDAP? [Y]: N (for a simple setup we won’t use LDAP)
- System Admin? [admin]: (use default)
- System Admin Password? [novell]: (you will probably want to change this)
- Configure Apache? [N]: Y (make sure you do this)

- Web Alias? [/admin]: (use default)
- Require SSL? [Y]: (use default)
- Require SSL? [Y]: (use default)
- iFolder URL? [https://localhost:443/]: (use default)
- Redirect URL? []: (use default)
- Accept iFolder Server Certificate? [Y]: (use default)
- Web Alias? [/ifolder]: (use default)
- Require SSL? [Y]: (use default)
- Require Server SSL? [Y]: (use default)
- iFolder URL? [https://localhost:443/]: (use default)
- Redirect URL? []: (use default)
- Accept iFolder Server Certificate? [Y]: (use default)

——————————————————————————-
Errata
——————————————————————————-
- delete the commented line out of /usr/lib/simias/webaccess/iFolders.aspx around line 84

——————————————————————————-
Testing the setup
——————————————————————————-
- goto https://ipaddress/admin (user: admin pass: novell, unless you changed it)
- You will very likely have to add an exception for the cert
- create a user
- Change the Home Server and don’t forget to hit save at the bottom

- goto https://ipaddress/ifolder (use the user you just created)
- login

- download the client and see if you can connect.

——————————————————————————-
Congrats, if you got this far then it should be working

Tags: , , ,

54 Responses to Basic iFolder howto… finally!!!

  1. sshaw says:

    Unfortunately you have to use ldap. There is Norway to change passwords otherwise

  2. Nick Yeates says:

    I see the same issues that Al Bsharah reported:
    1 apache doesnt start
    2 vmware throughput and networking and packet flow is messed up

    pings dont go through, it uses wrong IP addresses when looking at tcpdump output, some stuff will load, other things wont. Mac client wont connect.

    I really wanna use this product, but man every which way i implement it, I cannot get it running.

  3. sshaw says:

    @Nick Yeates
    The apache problem is a known issue and is already fixed in the next yet to be released version of the appliance. A simple ‘chkconfig apache2 on’ should fix that issues (as root of course).

    As for the networking, I’m not sure why you are having problems with that. Can you give me more details about how you set it up? network mode in vmware? http/https? etc?

  4. jc says:

    Thank you for this article very interesting.

    I have a little problem with my installation IFOLDER + LDAP. I’m using ldap but i can’t create compatible users to synchronise with ifolder.

    All is ok for both of the configuration. But when synchronization happens, no user is detected? I don’t know where do i have to create them.

    Is it necessary a user in a specific organizational unit ?

    I hope that someone could help me.

    Thanks

    ———-SIMIAS CONF—————————————————————————————————————

    objectClass: value :top
    OpenLDAP
    Creating cn=ifolderadmin,dc=example,dc=com…
    Skipped (User Exists)
    Creating cn=simiasproxy,dc=example,dc=com…
    Checking cn=simiasproxy,dc=example,dc=com…
    Done
    Skipped (User Exists)
    Checked cn=simiasproxy,dc=example,dc=com…
    Checking cn=ifolderadmin,dc=example,dc=com…
    Done
    Adding LDAP settings to /var/simias/data/simias/Simias.config…
    Checking cn=simiasproxy,dc=example,dc=com…
    Done
    Done
    Configuring User Movement plugin..

    Configuring Ldap plugin..

    Setting up Log4Net file…
    Done
    Setting up permissions…
    Done

    SUCCESS

    —————————————————————LDAP configuration——————————————-

    # Exportation LDIF pour :
    # Généré par phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) pour August 26, 2010 3:26 pm
    # Serveur: My LDAP Server (127.0.0.1)
    # Portée de la recherche: sub
    # Filtre de recherche: (objectClass=*)
    # Entrées totales: 5

    dn: dc=example,dc=com
    objectClass: top
    objectClass: dcObject
    objectClass: organization
    o: novell
    dc: example

    dn: cn=admin,dc=example,dc=com
    objectClass: simpleSecurityObject
    objectClass: organizationalRole
    cn: admin
    description: LDAP administrator
    userPassword: novell

    dn: cn=ifolderadmin,dc=example,dc=com
    sn: ifolderadmin
    givenName: ifolderadmin
    displayName: ifolderadmin
    userPassword: novell
    objectClass: inetOrgPerson
    uid: ifolderadmin
    cn: ifolderadmin

    dn: cn=simiasproxy,dc=example,dc=com
    sn: simiasproxy
    givenName: simiasproxy
    displayName: simiasproxy
    userPassword: novell
    objectClass: inetOrgPerson
    uid: simiasproxy
    cn: simiasproxy

    dn: ou=novell,dc=example,dc=com
    objectClass: organizationalUnit
    objectClass: top
    ou: novell

    ———————————SIMIAS.LOG————————————————————————————————————————————————

    2010-08-26 17:13:08,393 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
    2010-08-26 17:13:38,394 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
    2010-08-26 17:14:08,395 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
    2010-08-26 17:14:38,396 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
    2010-08-26 17:15:08,397 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
    2010-08-26 17:15:38,398 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove – UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned

Leave a Reply

Name and Email Address are required fields. Your email will not be published or shared with third parties.