Lab Exercise 5.1: Installing and Configuring SLP

In this exercise, you will install OpenSLP on the Linux server you installed and configured in earlier chapters of this book. You will then modify the slp.conf file to create a DA.

Complete the following:

If slptool located the CLEScope, your SLP implementation is configured properly, and you're ready to continue preparing your system for an installation of NNLS.

Configuring the hosts File

The next task you need to complete is configuring your system's hosts file. Depending on the distribution and version, sometimes the hosts file is written during installation of the operating system in such a way that NNLS is unable to resolve the hostname correctly.

Basically what happens is that an alias for the server hostname is added to the loopback address. For example, it may read something to the effect of

 127.0.0.1 CLE-1 localhost.localdomain localhost 

or

 127.0.0.1 localhost.localdomain localhost CLE-1 

Check your hosts file, located in /etc , and verify that the hostname of the server doesn't appear in the loopback address line. If you identify this problem in your hosts file, use vi to edit out the server hostname in the loopback address line.

When you're done, it should read as follows:

 127.0.0.1 locahost.localdomain localhost 

You should also make sure there is a record in your hosts file that reads as follows:

  Server_IP_Address  Server_DNS_Name  Server_Hostname (alias)  

Here's an example:

 192.168.1.35  CLE1.CLE.com  CLE1 

When you're done, you hosts file should appear similar to that shown in Figure 5.13.

Once this is done, the next thing you need to do is establish a connection to the Internet.

Establishing an Active Internet Connection

To install NNLS, you need to have an active Internet connection established prior to starting the installation process. NNLS includes a component called Red Carpet that automatically updates NNLS products (we'll talk a little more about Red Carpet later in this chapter). The Red Carpet daemon must detect an active Internet connection during installation in order for it to configure its network settings.

If you don't have an active connection, Red Carpet will still install, but its configuration will not be accurate. Unfortunately, you can't manually edit the configuration. If you install without an active Internet connection, you'll have to uninstall and then reinstall the Red Carpet component of NNLS at a later time when an Internet connection is available.

Once your Internet connection is established, the next thing you need to do is gather information required for installing NNLS.

Gathering Data Required for Installation

During the installation of NNLS, you will be prompted to provide many pieces of data that will be used to configure the NNLS components ; these include usernames and passwords, IP addresses, and various other configuration parameters. Before you start the installation process, it is wise to gather all this information beforehand.

If you do not do this, your installation may have to wait patiently for you while you search for the value of a requested parameter. You should prepare the information shown in Table 5.1.

Table 5.1. NNLS Installation Data

As you can see, this is an extensive list of information you need to gather. Before beginning the NNLS installation, you should create a list of the required information and keep it handy as you proceed.

With this information in hand, you're almost ready to start installing NNLS. However, you need to be aware of some important issues you may encounter during the installation process.

Gotchas to Avoid During Installation

There are several idiosyncrasies with the NNLS installation routine that can cause you a great deal of anguish. If you're aware of them, however, they are pretty easy to deal with. In this section, we'll cover the issues other administrators have discovered (so you don't have to!). When installing NNLS, keep the following points in mind:

• Don't include your server's domain when prompted for a hostname. Many administrators have mistakenly thought the installation script was asking for the server's hostname and domain name (such as CLE1.CLE.com). If you include the domain name with the hostname, eDirectory won't install correctly and you will be left scratching your head wondering why all your NNLS components don't work.

• Watch out for port conflicts, especially with Apache Web Server. NNLS automatically installs a new version of Apache on your server. If Apache is already running on your system, the NNLS installation routine will shut it down and change its runlevel configuration to not automatically start.

  The new Apache Server's configuration files are located in /etc/opt/novell/httpd and the default document root directory is set to /var/opt/novell/httpd/htdocs . The important point to remember is that both the old and the new versions of Apache are configured to run on ports 80 and 443.

  Table 5.2 lists all the default port assignments used by the various NNLS components. Note that, if two ports are listed, the first port is the insecure port and the second port listed is the secure port.

  Table 5.2. Default NNLS Ports

  NNLS COMPONENT	DEFAULT PORTS
  Apache Web Server	80, 443
  eDirectory	524
  iMonitor	8008, 8010
  iPrint	631, 443
  LDAP	389, 636
  Tomcat	8080
  Samba	137, 138, 139
  NetMail WebAdmin	8018, 8020
  NetMail LDAP	52389
  NetMail WebAccess	52080, 52443
  NetMail Calendar Access Protocol	1026
  NetMail SMTP Agent	25
  NetMail POP Agent	110, 995
  NetMail IMAP Agent	143, 993
  NetMail NMAP Agent	689

  
  

• During installation, NNLS places some of its man pages in the /opt/novell/man directory, which is not in the MANPATH variable. To add this path to the MANPATH variable, open a terminal session when the NNLS installation is complete. At the shell prompt, enter MANPATH=$MANPATH:/opt/novell/man . This command adds the new path to the existing directories already in the MANPATH variable.

  Warning

  Be sure to remember to include $ in front of MANPATH, as shown the example. This designates the text that follows as a variable. If you forget $, MANPATH will be treated as a literal text string, overwriting the directories currently stored in the MANPATH variable. Although your NNLS man pages will work, all your system man pages won't .

  
  

  Then enter export MANPATH at the shell prompt. At this point, your system man pages and your NNLS man pages will be available.

• Make sure your system DNS server is up and running. The NetMail installation process will attempt to contact it to verify domain and host information. If it can't contact the server, the NetMail product won't work properly.

• If you interrupt the installation script after it has started installing packages, you must uninstall eDirectory before attempting to reinstall NNLS. To do this, open a terminal session and enter /usr/bin/nds-uninstall at the shell prompt.

• Sometimes the new NNLS Apache Web Server won't start up after installation. This presents a serious problem because most of your NNLS administration utilities are dependent on it.

  Essentially what happens is, the process ID (PID) file for the new Apache Server doesn't get updated with the correct status of the service. It specifies that the service is already running.

  When the novell-httpd daemon tries to start, it checks its associated PID file. When it reads that the process is supposedly already running, it automatically shuts down.

  If you suspect this is happening, check your /var/log/boot.log file for a message to this effect. If you find it, simply delete the /var/opt/novell/httpd/run/httpd.pid file and then start the novell-httpd daemon.

Believe it or not, it is actually time to start installing NNLS on your system! Let's take a look at how this is done.

Installing NNLS

With your downloaded ISO image mounted (or burned on a CD and mounted), time synchronization established, OpenSLP configured, and your pre-installation data gathered, you're finally ready to start the installation process.

To do this, open a terminal session on your server and switch to the directory where your ISO file or CD is mounted. Start the installation by entering ./install.sh .

One of the first decisions you will have to make is whether you want to perform an express or a custom installation. Let's review how each of these options work.

Express NNLS Installation

As the name suggests, an express installation is designed to require the administrator to supply only minimal input. To perform an express installation, you need to supply only the following data:

• The path to the NICI file you downloaded

• The name for the new eDirectory tree

• The context and password for the tree admin user object

This option sounds very easy. Be aware, however, that it is not for everyone. To make it easy, the express installation option makes many assumptions for you without your input.

For example, this option assumes you want to install a new eDirectory tree. If you want to install your NNLS server into an existing eDirectory tree, you must use the custom option.

In addition, the express option installs all the NNLS components on the same server. For a small organization or for lab testing, this scenario may be quite appropriate. If you are deploying NNLS in a production environment for a large organization, however, putting all the components on the same server may not yield the level of performance you need. If you need to distribute the NNLS components among several servers (to provide a degree of load balancing), you need to use the custom option.

The express option also assigns services to use the default NNLS TCP/IP ports mentioned earlier. If this will create port conflict issues on your server, you need to use the custom installation to customize the port number assignments.

Be aware, as well, that the express option also uses the context you specify for the admin user as the context for all other components. If you need to customize your tree, then, likewise, you need to use the custom installation option.

If, however, the constraints of the express option match your requirements, by all means use it. I've installed and configured many times and the express option really is a lot easier on the administrator. You start it up, provide the few parameters it needs, and then you can leave while it completes the installation.

One other key benefit to the express option that I have observed is the fact that it tends to produce more successful installations of NNLS. This has less to do with the way the script is written as it does with the fact that there is less input required from the administrator and, hence, there are fewer opportunities for mistakes.

The custom installation option requires so much information that it's easy for the administrator to enter typos, provide wrong information, or misunderstand what information is being requested.

The express option also provides you with the ability to use a response file to automate the installation process. Essentially, what you do is download the response file from Novell's website, edit the text of the file for your organization and network, and then point the installation script to this file.

When you do this, the install script reads the data it needs from the file instead of displaying prompts on the screen for you to respond to. The user input portion of the express installation response file is shown in Figure 5.14.

Notice in Figure 5.14 that you simply enter the information you would have been prompted for onscreen in the appropriate fields. Using a response file isn't of much benefit if you're only installing one or two NNLS servers. If you're installing many servers, however, it can be a real timesaver.

The express installation response file can be downloaded from http://www.novell.com/documentation/lg/nnls/answers/express.txt.

Once you've edited the file, create a directory named /etc/opt/novell on your server and save the response file there as nterprise_linux_services_install.conf . Then, run the install script with the -s option (for example, ./install.sh -s ).

If you need more flexibility in your installation than the express option has to offer, you should use the custom installation option.

Custom NNLS Installation

The custom installation option takes a lot longer to complete and increases the risk of administrator error, but it also provides you with a high degree of flexibility. With a custom installation, you can do the following:

• Distribute NNLS components among several different servers.

  As stated earlier, this is strongly recommended for large organizations. The horsepower required from your server to run all the NNLS components on the same system is considerable.

  If you have thousands of users requesting services at the same time, the system could slow to a crawl. The custom option allows you to specify which server each component is to be placed on. By dividing the load among servers, NNLS can provide stellar high-load performance.

  A nice feature of NNLS is the fact that it will check each server you select for the appropriate dependencies and install missing packages for you (if it has them).

• Install into an existing eDirectory tree or create a new one.

• Customize where various objects used by NNLS components are stored in the tree.

Because of the sheer amount of data you must provide, it's a good idea to fill out Table 5.1 from earlier in this section.

As with the express option, you can automate the installation process using a response file. Because the custom installation requires a lot more information from the administrator, you must use a different response file. The file for a custom installation is available for download from http://www.novell.com/documentation/lg/nnls/answers/custom.txt.

As with the express response file, you must edit the file with a Linux text editor to provide the requested information. Then you must save the file as /etc/opt/novell/nterprise_linux_services_install.conf and run the install script with the -s option.

Once you have selected the type of install you want to use, you're ready to begin! In the next lab exercise, we will perform a complete custom installation using detailed steps. At a high-level, the steps you need to follow to install NNLS are as follows:

That's all there is to it! Let's do it for real in Lab Exercise 5.2.