Enterprise Apple Xserve Wiki and Blog using Active Directory. Table Of Contents. Prerequisites 1. Introduction 1



Similar documents
Other documents in this series are available at: servernotes.wazmac.com

Wazza s QuickStart 17. Leopard Server - Blogs & Wikis

Configuring Active Directory Binding for OS X (10.4.x) within Miami Dade Schools

Mac OS VPN Set Up Guide

Apple Mail Setup Guide (POP3)

Client Configuration Secure Socket Layer. Information Technology Services 2010

Wazza s QuickStart 13. Leopard Server - Windows Domain

Update Instructions

Mac OS X Secure Wireless Setup Guide

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Hallpass Instructions for Connecting to Mac with a Mac

Integrating Mac OS X 10.6 with Active Directory. 1 April 2010

Active Directory integration with CloudByte ElastiStor

IIS, FTP Server and Windows

Update Instructions

6) Click the lock in the lower left corner of the Directory Utility Window and authenticate with the local administrator account s credentials.

Sophos SafeGuard Native Device Encryption for Mac Administrator help. Product version: 7

Wazza s QuickStart 10. Leopard Server - Managing Preferences

NetIQ Advanced Authentication Framework - MacOS Client

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Home and Shared Folders on Mac OS X Accessing Home and Shared Folders on Active Directory File Servers Using Mac OS X

Initial Setup of Mac Mail with IMAP for OS X Lion

Configuring the Active Directory Plug-in

OS X 10.6 SNOW LEOPARD: KEYCHAIN ACCESS MANAGING & UNDERSTANDING KEYCHAIN

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Wazza s QuickStart 1. Leopard Server - Install & Configure DNS

User Guide for eduroam

NAS 109 Using NAS with Linux

FTP Over SSL (FTPS) Core FTP LE. Installing Core FTP LE"

Setting up Sharp MX-Color Imagers for Inbound Fax Routing to or Network Folder

Update Instructions

Secure Outgoing Mail (SMTP) Setup Guide

Other documents in this series are available at: servernotes.wazmac.com

MassTransit 6.0 Enterprise Web Configuration for Macintosh OS 10.5 Server

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Installing Microsoft Outlook on a Macintosh. This document explains how to download, install and configure Microsoft Outlook on a Macintosh.

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

PineApp Surf-SeCure Quick

How To Connect To A Wireless Network On Windows 7 (Windows 7) On A Pc Or Mac Or Ipad (Windows) On Pc Or Ipa (Windows 8) On Your Computer Or Mac (Windows). (Windows.7) On An

NAS 206 Using NAS with Windows Active Directory

This chapter describes how to set up and manage VPN service in Mac OS X Server.

CONNECT-TO-CHOP USER GUIDE

How to configure Mac OS X Server

How to Join QNAP NAS to Microsoft Active Directory (AD)

MAC OS X 10.5 Mail Setup

Update Instructions

Joining my MAC laptop to the domain

Server External Authentication. FileMaker 9 Product Line

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Installing TestNav Mac with Apple Remote Desktop

Installing Java 5.0 and Eclipse on Mac OS X

NAS 323 Using Your NAS as a VPN Server

How To Sync Google Drive On A Mac Computer With A Gmail Account On A Gcd (For A Student) On A Pc Or Mac Or Mac (For An Older Person) On An Ipad Or Ipad (For Older People) On

pcanywhere Advanced Configuration Guide

Optional Mainserver Setup Instructions for OS X Support

Important information for all POP users

Binding an OS X computer to Active Directory at NEIU (Existing User)

Sentral servers provide a wide range of services to school networks.

DESKTOP CLIENT CONFIGURATION GUIDE BUSINESS

Cloud Server powered by Mac OS X. Getting Started Guide. Cloud Server. powered by Mac OS X. AKJZNAzsqknsxxkjnsjx Getting Started Guide Page 1

Outlook Profile Setup Guide Exchange 2010 Quick Start and Detailed Instructions

Installation Guide. Research Computing Team V1.9 RESTRICTED

UP L18 Enhanced MDM and Updated Protection Hands-On Lab

APSCN VPN Settings for Windows 7 2. APSCN VPN Settings for Windows XP 8. APSCN VPN Settings for MAC OS 15

NF3ADV VoIP Setup Guide (for TPG)

BOTTOM UP THINKING SETUP INSTRUCTIONS. Unique businesses require unique solutions CLIENT GUIDE

WINDOWS 7 & HOMEGROUP

ReadyNAS Remote. User Manual. June East Plumeria Drive San Jose, CA USA

Release 2.0. Cox Business Online Backup Quick Start Guide

Automatic Setup... 1 Manual Setup... 2 Installing the Wireless Certificates... 18

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

This manual provides information and instructions for Mac SharePoint Users at Fermilab. Using Sharepoint from a Mac: Terminal Server Instructions

Snow Active Directory Discovery

Connecting to Delta College Exchange services off-campus

Administering FileVault 2 on OS X Lion with the Casper Suite. Technical Paper July 2012

TECHNICAL TRAINING LAB INSTRUCTIONS

Dial Up Config & Connecting Instructions with Graphics

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

Configuring Outlook for Windows to use your Exchange

ProjectWise Explorer V8i User Manual for Subconsultants & Team Members

1. Set Daylight Savings Time Create Migrator Account Assign Migrator Account to Administrator group... 4

RoomWizard Synchronization Software Manual Installation Instructions

SECURE MOBILE ACCESS MODULE USER GUIDE EFT 2013

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

SuperOffice AS. CRM Online. Installing the Citrix Online Web plug-in

1. Navigate to Control Panel and click on User Accounts and Family Safety. 2. Click on User Accounts

FTP Server Configuration

RSA Security Analytics

Initial Setup of Microsoft Outlook 2011 with IMAP for OS X Lion

Step-by-step installation guide for monitoring untrusted servers using Operations Manager ( Part 3 of 3)

Virtual Office Remote Installation Guide

APSCN VPN Instructions for VPN Setup on Windows and MAC OS

Connecting to UNOSECURE using Windows 7

client configuration guide. Business

Instructions for Adding a MacOS 10.4.x Server to ASURITE for File Sharing. Installation Section

Installing the Virtual Desktop Application (MAC)

Transcription:

Table Of Contents Prerequisites 1 Introduction 1 Making the Xserve an Open Directory Master 2 Binding the Xserve to Active Directory 3 Creating a Certificate 3 Setting up Apache Web Server 4 Applying the Site Certificate to the web site for SSL encryption 4 Enabling Wiki and Blog 5 Disabling Kerberos for web authentication 5 Creating groups that will be used for Wiki system 6 Setting groups to edit and create Wiki 8 Prerequisites A user following this procedure must have the following: An Apple Xserve running Mac OS X Leopard Server Administrator access to the Xserve Domain Administrator privileges in an Active Directory Domain Introduction This document shows how easy it is to get the Wiki and Blog functionality of the Mac OS X Leopard Server OS to work using groups from Active Directory. I had a difficult time finding a good step-by-step procedure on using Active Directory users and groups to the Apple Wiki and Blog system that is built into Mac OS X Leopard Server so, I creating this document after puzzling out the configuration myself. Connecting to the Xserve via Server Manager Log into the Xserve as an administrator Open Server Manager by either clicking on the Server Manager Icon on the Dock or by traversing Finder -> Applications -> Server -> Server Manager 1

By default when connecting, the login prompt will list the server with the name of the server followed by a dot ʻ.ʼ and the word local. Change the server name here to read: 127.0.0.1. This IS important. It is important from a performance perspective as well as very convenient if you happen to change the name of the server at some point or otherwise have a variation of DNS entries, Virtual Hosts, ad infinitum. Making the Xserve an Open Directory Master Inside of Server Manager, click the Services Tab Check Open Directory to add the Open Directory Service and then click ʻSaveʼ. The Open Directory Service will now show up in the Services Pane on the left side of the Server Manager Window as a node under the server you are connected to which should now be the loopback address, 127.0.0.1. Click on the Open Directory node in the Services Pane and the context to the right will change to reflect options specific to configuring Open Directory. *Note that currently the server is not an Open Directory Master. Click the ʻChangeʼ button and click the radio button for making this server an Open Directory Master. When prompted, an account for directory administration will be created. Donʼt forget the username and password of the account ~it will be needed later in this procedure. When a warning that you may loose account information by applying the Open Directory settings, ignore it and click ʻSaveʼ at the bottom right side of the Server Manger window to ensure the settings will stick. 2

If the Open Directory Node is not green, which is an indication that the service is not running: Click the Open Directory Node to select it and then click the Start button at the bottom of the Services Node Pane. Binding the Xserve to Active Directory Click Finder or a free space on the screen to return focus to Finder. Click Applications -> Utilities and double-click the Directory Utility. Click on the lock to make changes and enter an administrator username and password. Select Active Directory as the directory type to join by using the drop-down box, input the FQDN, IP Address of a Windows Domain Controller, or preferably name of the domain such as group1.company.com and then click OK. Within a minute or so, depending on network and server performance, and whether the credentials given were sufficient, a dialog will confirm that the Xserve has been joined to Active Directory. A prompt will appear to enter account credentials that have permissions to add devices to the Active Directory Domain. Enter appropriate credentials. Creating a Certificate 3

In the Server Admin window, click on the root node, which is the one that is labeled 127.0.0.1. Upon clicking on it, the Certificates button will appear along the top of the menu in the window. Click on Certificates and then the ʻ+ʼ button below to add a certificate to the server. In the Common Name field, enter the FQDN of the website and fill out the rest of the form. Click the ʻSaveʼ button to create the certificate. Setting up Apache Web Server To add the Apache Web Server under Server Manager, click the Server node, 127.0.0.1. Click the ʻServicesʼ tab. Check the box for Web and then, click Save. Applying the Site Certificate to the web site for SSL encryption Click on the ʻWebʼ node of Server Admin, to access the web server configuration settings, and then on ʻSitesʼ. Click on the web site that will be used for the Wiki or create one using the FQDN of the site followed by clicking the ʻSaveʼ button, if it is newly created. Click on the Security tab and check the box to enable secure sockets layer (SSL). 4

Using the drop-down box select the certificate that was just created and then click ʻSaveʼ. Enabling Wiki and Blog In Server Admin under the Web Service, click the Web Services tab. Click the ʻWiki and Blogʼ check box. Click the ʻSaveʼ button. Disabling Kerberos for web authentication In order to make the web server able to perform authentication with Active Directory accounts, it is necessary to run some commands from the Terminal application. More information on doing this can be found at Appleʼs website: http://support.apple.com/kb/ts1619 Click on Finder Double-click on the Utilities folder Double-click on the Terminal application At the Terminal window prompt type the following commands one at a time: sudo serveradmin settings teams:enablecleartextauth = yes sudo serveradmin stop teams sudo serveradmin start teams 5

*After the first command, there is a prompt for the password to run a command as the root (super user) user password. The password is the same as the administrator account that is logged onto the Xserve. Creating groups that will be used for Wiki system To create groups that will be available to the Web server and ultimately for Wiki and Blog functionality, it is necessary to add the group under Open Directories ʻNetwork Visibleʼ LDAPv2 directory. Open Workgroup Manager by clicking on the Workgroup Manager icon in the Dock or from Finder, which is located under Applications -> Server. When prompted to authenticate, enter the username and password of a directory administrator. Once Workgroup Manager has opened, click on the Groups icon. Click on the drop-down box in the upper right-hand corner that shows what directory is being viewed, and select ʻLDAPv2/127.0.0.1ʼ Click on the lock on the upper right-hand corner and enter the name and password of the Directory Administrator which was entered when making the server an Open Directory Master. Click on the ʻNew Groupʼ icon. Enter a name for the new group and then, using the drop-down box, select the website to enable wiki and blog services within. Additionally, click the ʻwiki and blogʼ check box which will become selectable once the website has been enabled for the group to use. 6

Depending upon what settings are preferred, adjust the permissions of the group for viewing and editing. Click the ʻSaveʼ button. Adding Active Directory Users and Groups to Wiki and Blog Groups With a group that was created for Wiki and Blog use selected in Workgroup Manager, click on the ʻMembersʼ tab. Click the ʻ+ʼ button to add users 7

A window will slide open to reveal a panel for selecting users and groups. Using the Directory drop-down, select ʻ/Active Directory/All Domainsʼ Select a user or click the Group tab and select a group. If the Active Directory Domain is quite large, it may be much quicker to type some or all of the user or group name before it is visible in the listing. Drag the group or user into the Member pane and then click ʻSaveʼ. Setting groups to edit and create Wiki It is necessary to add members to a group but, it is not enough in order for these group members to actually make changes in a Wiki or Blog. Open Server Admin and click on the Web node, and then click the Web Services tab. Under the Services for Groups frame, click the ʻ+ʼ button to add what groups have permissions to create wikis on the site. A window will slide open to reveal a panel for selecting users and groups. Using the Directory drop-down, select ʻLDAPv2/127.0.0.1ʼ to add the groups by name that have been set up for Wiki access. *Additionally, it may be necessary to add groups directly from ʻ/Active Directory/All Domainsʼ if, the Group alone will not grant access. Select a user or click the Group tab and select a group. If Active Directory Domain users or groups are being added here and the Active Directory is quite large, it may be much quicker to type some or all of the user or group name before it is visible in the listing. Drag the group or user into the frame and then click ʻSaveʼ. 8

You should now have a working wiki and blog system! -Will BC Collins, will@etherfeat.com 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information