Basic iFolder howto… finally!!!
As promised, I have finally created a quick howto for setting up iFolder. This is a really simple get your feet wet instruction set. It runs through the basics and includes SSL, but doesn’t show you how to set up LDAP of any kind. Someone else is going to help out with that howto. This should be posted to the iFolder community site in the next week or so as time permits.
If anyone has something to add/change please leave a comment!
——————————————————————————-
Steps to setting up iFolder
——————————————————————————-
– Boot image of choice
– Log in as root (password: ifolder, please change this π
– cd iFolder
– sh BuildSSL.sh
— Enter a pass phrase for server.key: (enter a pass phrase)
— Verify – Enter pass phrase for server.key: (verify the pass phrase)
— Enter pass phrase for server.key: (this is the pass phrase you just entered)
— Fillout information for certificate request (with your own data)
— Country Name (2 letter code) [AU]: US
— State or Province Name (full name) [Some-State]: UT
— Lacality Name (eg, city) []: Provo
— Organization Name (eg, company) [Internet Widgets Pty Ltd]: Novell
— Organizational Unit Name (eg, section)[]: SLED Accessibility
— Common Name (eg, YOUR name)[]: Stephen Shaw
— Email Address[]:sshaw{at}decriptor[dot]com
— A challenge password []: (I just hit enter, correct me)
— An optional companyname []: (I just hit enter, correct me)
— Enter pass phrase for server.key (this is the pass phrase from above)
— Enter pass phrase for server.key (the second time, this is the pass phrase from above)
That’s it for BuildSSL.sh
– Sh BuildiFolder.sh
– Server’s Data Path? [/var/simias/data]: (use default)
– Server Name? [Host1]: iFolder1 (up to you)
– SSL?[SSL]: (use default)
– Public URL? [http://ipaddress/simias10]: (use default)
– Private URL? [https://ipaddress/simias10]: (use default)
– Slave Server? [N]: (use default, unless it is a slave)
– System Name? [iFolder]: (use default)
– System Description? [iFolder Enterprise System]: (use what you want)
– Use Key Recovery Agent? [Y]: (use defaults if you want to be able to recovery forgotten pass phrases)
– Recovery Agent Certificate Path? [/var/simias/data]: (use default)
– Use LDAP? [Y]: N (for a simple setup we won’t use LDAP)
– System Admin? [admin]: (use default)
– System Admin Password? [novell]: (you will probably want to change this)
– Configure Apache? [N]: Y (make sure you do this)
– Web Alias? [/admin]: (use default)
– Require SSL? [Y]: (use default)
– Require SSL? [Y]: (use default)
– iFolder URL? [https://localhost:443/]: (use default)
– Redirect URL? []: (use default)
– Accept iFolder Server Certificate? [Y]: (use default)
– Web Alias? [/ifolder]: (use default)
– Require SSL? [Y]: (use default)
– Require Server SSL? [Y]: (use default)
– iFolder URL? [https://localhost:443/]: (use default)
– Redirect URL? []: (use default)
– Accept iFolder Server Certificate? [Y]: (use default)
——————————————————————————-
Errata
——————————————————————————-
– delete the commented line out of /usr/lib/simias/webaccess/iFolders.aspx around line 84
——————————————————————————-
Testing the setup
——————————————————————————-
– goto https://ipaddress/admin (user: admin pass: novell, unless you changed it)
– You will very likely have to add an exception for the cert
– create a user
– Change the Home Server and don’t forget to hit save at the bottom
– goto https://ipaddress/ifolder (use the user you just created)
– login
– download the client and see if you can connect.
——————————————————————————-
Congrats, if you got this far then it should be working
After I follow these steps and visit
https://ipaddress/admin
I get:
Service unavailable!
The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.
How come?
Hello,
Thank you. I followed this instruction. But cant login with default admin password.
Username:admin
password:novell
IT tells
The username or password you enterd is incorrect. Please log in.
Please help me
it should be admin and ifolder. It used to be novell and then I decided to just the name of the product. π Sadly I think its created more confusion.
Have you a solution. I have the same probem ?
Bye
Hi,
I downloaded this appliance and have been attempting to run it on a VirtualBox system but to no avail. I’m getting errors appearing in the apache2 log of the following:
(70014)End of file found: read_data failed
Command stream corrupted, last command was 1
These are repeating quite continually. Any attempts to log into the server through the web-interface (/admin) with the default password set (admin & novell) result in “The username or password you enterd is incorrect.”.
Simias log (/var/simias/data/simias/log) shows the following log every time I attempt to log in.
INFO Simias.Service.Manager – The database is being shutdown
Is this related to your appliance or is this (as is more likely) my own stupidity?
@Philip Peitsch I’m not really sure. I’d jump on irc (freenode, #ifolder) and ask in there.
I have the server and webaccess working well on my LAN. I use DynDNS as a way to connect to my virtual servers from outside my LAN. I have port forwarding setup correctly and the bridged network adapter setup correctly. how do I get connected to the ifolder webaccess from outside the LAN?
This is great!
But I have a issue, how do I save my settings incase I reboot the server? I seem to loose all of my settings on a reboot.
Any ideas? I’m not a linux guy too much so please be simple for me.
@Cliff I’m not sure why you are losing your settings each time you reboot. Can you be more specific as to which settings you are losing? If its your ip address its probably because its set to dhcp which means you are likely to pull a new one each time you reboot.
I’ve followed these instructions and I can login into the Administrator interface and was able to add myself as an iFolder user but when I try to go to https:/ipaddress/ifolder I get the following error: Object not found Error 404.
Any ideas? Sorry, but I am new to Linux. I know you are working on a new version based on iFolder 3.8 but I would like to get this working using the existing version if possible.
Update! I am now able to login into the web interface as myself so I’ve downloaded the iFolder client 3.7.2 for Windows from http://www.ifolder.com and installed it on a Windows XP Pro workstation but get the following error when launching it:
Server is old. Cannot connect to the server
Any ideas?
Thanks,
Gary
@Gary That’s interesting. If anything I would have expected the opposite. The new client doesn’t work with the old server, but the appliance is using the new server packages. I don’t think that they have rev’ed the client since I created the appliance. Would you be able to create a vm with openSUSE 11.1 and install ifolder there and test. iFolder should be in the repositories so no searching and download of the client. If you need help with that just let me know. (software.opensuse.org)
@sshaw Yes, I can test this but let me make sure I’m clear on what you would like me to test. I’ll get openSUSE 11.1 (which I already have) installed on a vm and then I should install the iFolder 3.7.2 client and try to connect to your appliance that I’ve installed. Is this correct? Or do you want me to install the iFolder server onto the openSUSE vm and test connecting to it? Sorry, I just want to be clear on this.
Also, is there an older client for windows XP I can download to try?
Thanks,
Gary
After following these directions, everything worked great. However, after restarting the server, the iFolder client reports “Server unavailable”, and I am no longer able to open the https page. Going to http://ipaddress still loads the “Access forbidden!” page, and going to http://ipaddress/admin redirects to https://ipaddress/admin, where it finds it cannot connect to the server. Any ideas?
Thanks,
Eric
As a followup to my previous message. In case anyone else has a similar problem, it appears to have been caused by the vhost-ssl.conf file. Commenting out the existing directory related lines, and adding the following to the end, seems to fix the problem:
AllowOverride None
Order allow,deny
Allow from all
I am not an apache expert, so if doing this could potentially cause any problems, please post a reply
… any hints on how to get the wireless working during the initial start up sequence?
Hey, first…THANKS for this!
Second, I’m spreading my *nix wings a bit and am having some issues. I’ve followed this process twice now, and can’t seem to get the admin website to respond at all. Any attempt to go to http:// or https:// /admin (or other) results in a page-not-found.
* I can, however, ping the appliance just fine.
* Telnet to port 80 does not respond.
What’s the best way to troubleshoot?
Thanks!
AL
Regarding my above post:
So…I rebuilt the appliance again…and it worked fairly well…until I rebooted it. Now it’s the same situation, no response via web or other.
Any thoughts at all? Thanks!
AL
@Al Bsharah This might be that apache just needs to be restarted. rcapache2 start
Hey sshaw, thanks for the reply. That DID get Apache back up and running, but every time I reboot I have to run this command. How can I get Apache to automatically start during startup?
Also…I’ve been playing extensively and I’m getting REALLY poor throughput. For example, with the VM on the same host as my client – I never saw greater than 500kbps throughput (meaning it’s typically much slower!) It took a very long time just to upload a couple 8MB files…again, with the client and server on the same machine.
On my remote server, the client has been stuck in “Please wait while your iFolder account is connecting” for over an hour.
So, I’m wondering if I’m having VMWare Interface issues, or if there’s something in the build that can be fixed? I’ve tried the iFolder server on VMWare Server 2…once on a Win7 machine and the other is a 2003 Server. Both have the same slow network speed.
Any thoughts? Is there another place I should be posting these questions? Ha…
Thanks again!
AL
@Al Bsharah Sorry, I should have mentioned that. I’ll add the fix in the next appliance version I release. I’m hoping to update the appliance with ifolder 3.8.
Just run ‘chkconfig apache2 on’ (without the quotes) and that will make it so that apache loads everytime you boot.
As for the poor network throughput I’m not sure what’s going on there. There is an ifolder mailing list that you could ask on. http://www.ifolder.com should have the needed info.
I try to setup the openLDAP, en did try to follow the openldap tutorial on the ifolder.com website but it fails.
The problem is that I don’t know if the proxy user excist or that I have to create this user. To configure ldap with the certificates was no problem, that went fine.
Were do I find the proxy user, or can I create this user? Does this user be created on the ldap?
According to the manual this user should be created during installation proces…
Has somebody succesfull connected ldap to ifolder?
Tnx,
Steven
FYI to all – I’m hearing on the iFolder mailing lists (after posting questions as to why things aren’t working) that there’s a bug with NON-LDAP configurations. Such a bug that won’t allow you to connect to the server over a firewall (but it seems to work over a LAN).
@sshaw,
Thank you very much for this awesome appliance.
I installed this on my vmware and got the admin page, created an user too. But when i set the Home Server to ifolder from the drop down and save, I am getting an error.
Server Version: 1.8.2.0
HostName: har200
MachineName: har200
OS Version: Unix 2.6.27.29
CLR Version: 2.0.50727.1433
Exception detail:
Exception type: ConnectFailure
Error: ConnectFailure
at System.Net.HttpWebRequest.EndGetRequestStream (IAsyncResult asyncResult) [0x00000]
at System.Net.HttpWebRequest.GetRequestStream () [0x00000]
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke (System.String method_name, System.Object[] parameters) [0x00000]
Could you please help me to fix this?
Many thanks,
Ambarish
@sshaw,
Please ignore my previous post.
I managed to set it up properly. π
Just reinstalled it once again, and this time carefully followed the steps you mentioned and its all up and running.
Thanks once again and its really a great share.
Helloo!
I got most of the way thru the setup but it failed at “Installing certificate…Failed”
Any idea what I am missing?
@Gregory can you put the input in something like paste2.org and post the link here? That doesn’t really give enough information to troubleshoot it.
Sorry . .. weht thru the scripts a third time and it worked after deleting the stuff in the ‘data’ folder.
Different question:
I attached to the server “https://ifolder.studio478.com/admin/”
or
“https://192.168.2.130/admin/”
but get:
The username or password you enterd is incorrect. Please log in.
double checked the password but still no dice . . .
any ideas?
Hi sshaw, This indeed is a great start. Could you educate me about one configuration. ie:
ie we used http://ipaddress/simias10 for public and private URL’s where as for setting up /ifolder and /admin aliases we used http://localhost:80/ as URL. Can you please explain this difference.
Regards,
UdayKiran.
Hey! For some reason the xen DomU is not starting up…
First error I get when running xm create is:
Error: No kernel specified
Then if you specify a kernel line in the config file this gets resolved. I added:
kernel = “/home/ac3bf1/vmlinuz-2.6.16-xenU”
Gets me one step forwarded, but I get the following error:
[…]
Root-NFS: No NFS server available, giving up.
VFS: Unable to mount root fs via NFS, trying floppy.
VFS: Insert root floppy and press ENTER
VFS: Cannot open root device “xvda1” or unknown-block(2,0)
Please append a correct “root=” boot option
Kernel panic – not syncing: VFS: Unable to mount root fs on unknown-block(2,0)
So I changed more stuff and go this:
Root-NFS: No NFS server available, giving up.
VFS: Unable to mount root fs via NFS, trying floppy.
VFS: Insert root floppy and press ENTER
VFS: Cannot open root device “xvda” or unknown-block(2,0)
Please append a correct “root=” boot option
Kernel panic – not syncing: VFS: Unable to mount root fs on unknown-block(2,0)
Should the device be xvda, or xvda1?
and what else is needed to get this booting on xen?
thanks and P.S. great work!
Would be good to see a debian release of iFolder
How can I change the location where the data is stored. I would like to add another drive to the appliance so that I can store the datat there.
Thanks,
Do you have any plans when you can finish the next version of your VM using iFolder 3.8?
I tried to install 3.8 in a fresh installed SuSe 11.2 VM by myself, but I can’t get it running…
I’ve installed the iFolder appliance with an LDAP connection to Microsoft AD and am able to get into the admin webpage but when i go into Server tab and under Server Status, it shows Offline.
Under the System tab, the error that i’m getting is “Error: NameResolutionFailure”
When i try to login as myself (non admin user) in the http://ServerName/iFolder, it gives me the error “Please re-enter your username and password.”
I’ve tried other users as well and it keeps on giving the same error.
As a sidenote, all the end users have been imported into the Users tab
Any assistance you can provide on this will be greatly appreciated
Hi!
What should I do if I want to make the iFolder service available from the internet? I walked thru the simias-server-setup, I set my public ipaddress and configured the correct portforwarding in my router (80, 443). But no response at all.
Do I have to configure the firewall in the iFolder appliance? And how?
How stupid…. I forgot to set the default gateway :-0
I installed the appliance and set it up according to your details. It worked fine. I rebooted it. It woked fine for about 3 weeks. Then I had to reboot again because we neeeded to rwboot the VSphere Server and when I came up it told me I need to enable cookies in my browser and the Client had stopped working as well.
I releaded the snapshot (was working) and same again. NOTHING else has been changed. What a pile of s**t SuSE has become.
I then installed iFolder on an Ubuntu 9.10 server and I’ve tried rebooting it 20 times and it’s still working 100%, It’s a bit more of a pain to set up, but at least it’s stable AND it has VMware Tools installed!
I’ve given up on SuSE completely it’s so non-standard now and so buggy, it’s just a pile of c**p
To anyone else still bloodying their knuckles on through-the-firewall access…
http://community.ifolder.com/ssf/a/c/p_name/ss_forum/p_action/1/binderId/1495/action/view_folder_entry/entryId/3963
Hi
Please help maybe I am missing something.
I complete the setup, I remove the CD and reboot, nothing works.
How does the partitioning work and disk assignment, is it limited to ide / scsi
in the setup no disks is formatted,
or should the setup be run everyting, does not make sense
thanks
I worked thru the setup and it showed no failure. I tried to log on at the admin server, https://xx.x.x.xxx/admin, but i can’t get in!
I tried:
username: admin
password: ifolder
and
username: admin
password: novell
and
username: admin
password: (own password)
I tried Capitals, i tried other usernames like the Host name, the Domain name, everyting, but i can’t get in!,
please help!!
Rik
Oh, and i don’t know how the errata part can be done…
I did something wrong before, but i solved it! I opened the iso in a new virtual machine, in stead of creating a harddisk of the vm ware image.
It worked!, but after I rebooted the machine, I can’t get connection with the server. The files are still saved on the virtual machine (I checked it) but the site isn’t available anymore and the client says “server unavailable”
I checked the internetconnection, but that was not the problem.
How can i connect my server to the client again? is there any code?
please reply, you didn’t repied my last message and that really frustrated me!
@Rik sorry, this will be fixed in the next appliance. What you need to do is manually start apache2. I’d make it start by default… so,
chkconfig apache2 on
rcapache2 start
thank you very much. it works.
The only thing i don’t understand is:
ββββββββββββββββββββββββββ-
Errata
ββββββββββββββββββββββββββ-
– delete the commented line out of /usr/lib/simias/webaccess/iFolders.aspx around line 84
how can i do that?
@Rik Just use something like VI or your favorite editor.
why do you have to delete this comment?
I have an other problem now. My local ip-address changed automatically into an other ip-address. 10.x.x.xxx into 10.x.x.yyy. The server doesn’t work anymore.
How can I change the ip-address back and how can I prevent it from changing automatically again?
I still have no reply! Where can I post my questions, so you DO reply?
@Rik I replied to your email. Did you not get the email?
Thanks for your reply. I think I solved all the problems now with your help. If that’s not the case, I’ll send an other email.
iFolder Appliance 0.0.9 ->
What I meant was a Graphical installation setup with a helpbutton, so all problems can be found there. It looks better than a commandbox. Maybe a little bit unnecessary, but helpful. Its only a tip.
hi. I successfully set up first time. Problem is users cannot change their own password . Any pointers? Otherwise will be forced to use LDAP.
Unfortunately you have to use ldap. There is Norway to change passwords otherwise
I see the same issues that Al Bsharah reported:
1 apache doesnt start
2 vmware throughput and networking and packet flow is messed up
pings dont go through, it uses wrong IP addresses when looking at tcpdump output, some stuff will load, other things wont. Mac client wont connect.
I really wanna use this product, but man every which way i implement it, I cannot get it running.
@Nick Yeates
The apache problem is a known issue and is already fixed in the next yet to be released version of the appliance. A simple ‘chkconfig apache2 on’ should fix that issues (as root of course).
As for the networking, I’m not sure why you are having problems with that. Can you give me more details about how you set it up? network mode in vmware? http/https? etc?
Thank you for this article very interesting.
I have a little problem with my installation IFOLDER + LDAP. Iβm using ldap but i canβt create compatible users to synchronise with ifolder.
All is ok for both of the configuration. But when synchronization happens, no user is detected? I donβt know where do i have to create them.
Is it necessary a user in a specific organizational unit ?
I hope that someone could help me.
Thanks
βββ-SIMIAS CONFβββββββββββββββββββββββββββββββββββββ
objectClass: value :top
OpenLDAP
Creating cn=ifolderadmin,dc=example,dc=comβ¦
Skipped (User Exists)
Creating cn=simiasproxy,dc=example,dc=comβ¦
Checking cn=simiasproxy,dc=example,dc=comβ¦
Done
Skipped (User Exists)
Checked cn=simiasproxy,dc=example,dc=comβ¦
Checking cn=ifolderadmin,dc=example,dc=comβ¦
Done
Adding LDAP settings to /var/simias/data/simias/Simias.configβ¦
Checking cn=simiasproxy,dc=example,dc=comβ¦
Done
Done
Configuring User Movement plugin..
Configuring Ldap plugin..
Setting up Log4Net fileβ¦
Done
Setting up permissionsβ¦
Done
SUCCESS
βββββββββββββββββββββLDAP configurationββββββββββββββ-
# Exportation LDIF pour :
# GΓ©nΓ©rΓ© par phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) pour August 26, 2010 3:26 pm
# Serveur: My LDAP Server (127.0.0.1)
# PortΓ©e de la recherche: sub
# Filtre de recherche: (objectClass=*)
# EntrΓ©es totales: 5
dn: dc=example,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
o: novell
dc: example
dn: cn=admin,dc=example,dc=com
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword: novell
dn: cn=ifolderadmin,dc=example,dc=com
sn: ifolderadmin
givenName: ifolderadmin
displayName: ifolderadmin
userPassword: novell
objectClass: inetOrgPerson
uid: ifolderadmin
cn: ifolderadmin
dn: cn=simiasproxy,dc=example,dc=com
sn: simiasproxy
givenName: simiasproxy
displayName: simiasproxy
userPassword: novell
objectClass: inetOrgPerson
uid: simiasproxy
cn: simiasproxy
dn: ou=novell,dc=example,dc=com
objectClass: organizationalUnit
objectClass: top
ou: novell
βββββββββββSIMIAS.LOGββββββββββββββββββββββββββββββββββββββββββββββββ
2010-08-26 17:13:08,393 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
2010-08-26 17:13:38,394 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
2010-08-26 17:14:08,395 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
2010-08-26 17:14:38,396 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
2010-08-26 17:15:08,397 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
2010-08-26 17:15:38,398 [User Move thread] DEBUG Simias.UserMovement.iFolderUserMove β UpdateUserMoveQueue: Updating user Reprovision queue, There are 0 users to be Reprovisioned
Hi sshaw,
I installed iFolder 4 months ago and it worked perfectly (thank you for your help by the way), but now I can’t access the internet account apart from my own computer (xx.xx.xxx.xx/ifolder and xx.xx.xxx.xx/admin). I don’t know why!
Can you help me?
Rik
Hi sshaw, I still have no reply. Can you please answer my question?