10108
Comment:
|
7798
update package install, add tar release
|
Deletions are marked like this. | Additions are marked like this. |
Line 6: | Line 6: |
= CipUX Installation 3.4.x for DebianEdu = | = CipUX Installation 3.4.x for DebianEdu (Debian packages) = |
Line 29: | Line 32: |
* /usr/sbin/cipux_setup -svnD 129 | * /usr/sbin/cipux_setup --setup --access |
Line 58: | Line 61: |
* cipux_setup -snr | * cipux_setup --setup --role |
Line 61: | Line 64: |
* cipux_setup -snc | * cipux_setup --setup --cat |
Line 75: | Line 78: |
= CipUX Installation 3.4.x for plain Debian = | = CipUX Installation 3.4.x for plain Debian (packages) = |
Line 173: | Line 180: |
Questin 9 (libpam-ldap) | Question 9 (libpam-ldap) |
Line 202: | Line 209: |
* /usr/sbin/cipux_setup -svnD 129 | * /usr/sbin/cipux_setup --setup --access |
Line 205: | Line 212: |
* cipux_setup -snr | * cipux_setup --setup --role |
Line 208: | Line 215: |
* cipux_setup -snc | * cipux_setup --setup --cat |
Line 214: | Line 221: |
= CipUX Automatic Setup 3.4.x (TODO) = This chapter is intended for integrators or developers who would like to deploy CipUX on their distribution or LiveCD. So this page contains several methods to install CipUX. == apt-getting debs == You can fetch the debian packages of cipux from last svn-revision with the following entry in your sources list. Every half hour, the packages are build if there was any commit to svn-repository, so here you will get the very latest ones. This location is also available by browser via http://debiantest.cipux.org {{{ deb http://debiantest.cipux.org/ sid main }}} Get the package list * aptitude update == Setup process description == * The first setup is done via the package cipux-cibot Within the package cipux-cibot a script can be found to add * administrator * schema * ACL * PAM * add default CipUX objects * add default CipUX values * move some object if necessary * delete some objects if necessary (it is a good idea to install also cipux-common and cipux-profile for that) == Attended installation procedure == * see CipUX installation above == Unattended installation procedure == * (1) add the following files * mkdir -p /etc/cipux; chmod 700 /etc/cipux; chown root:root /etc/cipux; * echo -n "secret" > /etc/cipux/ldappassword.conf (cipuxadm password) * chmod 400 /etc/cipux/ldappassword.conf * chown root:root /etc/cipux/ldappassword.conf * echo -n "DISTRIBUTION" > /etc/cipux/system.conf (distribution: debian, debian-edu, ...) * chmod 400 /etc/cipux/system.conf * chown root:root /etc/cipux/system.conf * (2) aptitude install cipux-common cipux-cibot cipux-profile * (3) /usr/share/cipux/sbin/cipux_setup -sn * (4) aptitude install cipux-rpc cipux-cat-webim Remarks: . Profile: * install cipux-profile BEFORE running cipux_setup * run: /usr/share/cipux/sbin/cipux_setup -sn -p PROFILE * list of supported profiles can be get with: . ls /usr/share/cipux/sbin/cipux_profile_* * if there is no profile suitable for you, create one. * if you have created one, please share that with the community. System: * supported distributions for now are: * debian-edu * debian * ubuntu (in the future, please ask: christian@skolelinux.de ) * edubuntu (in the future, please ask: christian@skolelinux.de ) * example: echo -n "debian" > /etc/cipux/system.conf |
CipUX Installation 3.4.x for DebianEdu (Debian packages)
This is under development for now. Do not install on productive systems, as long this remark is here.
Choose a fresh installed DebianEdu (Etch/Lenny)
(1)
edit /etc/apt/sources.list
add:
deb http://ftp.debian.org/debian/ etch main contrib deb http://debiantest.cipux.org/ sid main
Type this commands:
- aptitude install cipux-common
- aptitude install cipux-ldap
- aptitude install cipux-object
- aptitude install cipux-task
- /usr/sbin/cipux_setup --setup --access
- vim /etc/pam_ldap.conf
change
base ou=People,dc=skole,dc=skolelinux,dc=no
to
base dc=skole,dc=skolelinux,dc=no
- vim /etc/libnss-ldap.conf
change
nss_base_passwd ou=People,
to
nss_base_passwd ou=People, nss_base_passwd ou=CipUX, nss_base_group ou=CipUX,
- aptitude install cipux-rpc
Use login cipadmin and known password to test the RPC server:
- cipux_rpc_test_client
- cipux_setup --setup --role
- aptitude install cipux-cat-web
- aptitude install cipux-cat-web-userlist
- cipux_setup --setup --cat
- vim /etc/cipux/cipux-object.conf
change
my $cipux_home_directory = "/home/cipux0";
to
my $cipux_home_directory = "/skole/tjener/home0";
browse to http://localhost/cipux-cat-web/
- login as "cipadmin" (password was given during installation)
CipUX Installation 3.4.x for plain Debian (packages)
This is under development for now. Do not install on productive systems, as long this remark is here.
Choose a fresh installed Debian (Etch) with hostname cipux340 and domain name example.net (!!!).
(1)
edit /etc/apt/sources.list
comment out something like this:
# deb cdrom:[Debian GNU/Linux 4.0 r2 _Etch_ - Offical i386 NETINST Binary-1 20080103-00:44]/ etch contrib main
add:
deb http://debiantest.cipux.org/ sid main
(2)
Type this commands:
- unset http_proxy (or set it correctly)
- aptitude update
- aptitude install cipux-common
Question 1 (Configuring slapd) Please enter the password for the admin entry in your LDAP directory. Admin password: By default: empty Correct answer: (choose one and remember it!)
- aptitude install cipux-ldap
Question 2 (libnss-ldap) Please enter the URI of the LDAP server used. This is a string in the form ldap://<hostname or IP>:<port>/ . ldaps:// or ldapi:// can also be used. The port number is optional. Note: It is usually a good idea to use an IP address; this reduces risks of failure in the event name service is unavailable. LDAP server Uniform Resource Identifier By default: ldapi:/// Correct answer: ldap://127.0.0.1
Question 3 (libnss-ldap) Please enter the distinguished name of the LDAP search base. Many sites use the components of their domain names for this purpose. For example, the domain "example.net" would use "dc=example,dc=net" as the distinguished name of the search base. distinguished name of the search base By default: dc=example.net,dc=net Correct answer: dc=example.net,dc=net
Question 4 (libnss-ldap) Please enter which version of the LDAP protocol ldapns is to use. It is usually a good idea to set this to highest available version number. LDAP version to use By default: 2 or 3 Correct answer: 3
Question 5 (libnss-ldap) This account will be used for nss requests with root privileges. Note: For this to work the account needs permission to access the attributes in the LDAP directory that are related to the users shadow entries as well as users' and groups' passwords. LDAP account for root By default: cn=manager,dc=example,dc=net Correct answer: cn=admin,dc=example,dc=net
Question 6 (libnss-ldap) Bitte geben sie das Passwort ein, das verwendet wird, wenn libnss-ldap sich mit dem LDAP-Zugang fuer root am LDAP-Verzeichnis anmeldet. Das Passwort wird in einer eigenene Datei /etc/libnss-ldap.secret gespeichert, die nur fuer root lesbar ist. Beleibt das Passwort leer, wird das alte Passwort wieder benutzt. Passwort des LDAP-Zugangs fuer Root: by default: empty correct answer: (use password from above)
Question 7 (libpam-ldap) This option will allow you to make password utilities that use pam, to behave like you would be changing local passwords. The password will be stored in a sepereate file which will be made readable to root only. If you are using NFS mounted /etc or any other custom setup, you should disable this. Make local root Datatbase admin. By default: YES (YES or NO) Correct answer: YES
Question 8 (libpam-ldap) Choose this option if you can't retrieve entries from the datatbase without logging in. Note: Under normal setup, this not needed. Does the LDAP database require login? By default: NO (YES or NO) Correct answer: NO
Question 9 (libpam-ldap) This account will be used when root changes a password. Note: This account has to be a privileged account. LDAP account for root: By default: cn=manager,dc=example,dc=net Correct answer: cn=admin,dc=example,dc=net
Question 10 (libpam-ldap) Please enter the password for the admin entry in your LDAP directory. Admin password: By default: empty Correct answer: (choose one and remember it!)
- aptitude install cipux-object
- aptitude install cipux-task
Add "ldap" and "files" to the following services in /etc/nsswitch.conf and comment out "compat"
passwd: files ldap group: files ldap shadow: files ldap netgroup: files ldap automount: files ldap # passwd: compat # group: compat # shadow: compat
- /etc/init.d/nscd restart
- /usr/sbin/cipux_setup --setup --access
- aptitude install cipux-rpc
- cipux_rpc_test_client (give cipadmin and password)
- cipux_setup --setup --role
- aptitude install cipux-cat-web
- aptitude install cipux-cat-web-userlist
- cipux_setup --setup --cat
browse to http://localhost/cipux-cat-web/
- login as "cipadmin" (password was given during installation)
Remarks:
- aptitude install ... leads to a warning message as the buildserver does not sign its packages with a gpg key
Customization for (jet) unsupported Distributions
- get in contact with one of:
- join #cipux
- add a customer in /etc/cipux/customer.conf
- add a customer to cipux.conf
- probably change LDAP values in cipux.conf
- check all pathes for executables
- check LPREF variable in top level Makefile
- do test it on fresh installed systems
Other CipUX Installation Guides
Installation guides for different Debian and Debian-Edu/Skolelinux releases. For Updates please read the [:DebianEdu/CipUX/Update:update page].
On Debian (Etch) , Debian-Edu/ Skolelinux 3.0
- This, page: see above
Older installation guides
- [:DebianEdu/CipUX/Installation/3.2.10:Installation guide for 3.2.10]
older installation guides can be found here: http://wiki.cipux.org/Archive
Debian-Edu/ Skolelinux 1.0 (Venus)
- [:DebianEdu/CipUX/Installation/3.2.0:Installation guide for 3.2.0]
older installation guides can be found here: http://wiki.cipux.org/Archive
?Navigation(siblings,1) |