openxchangeonsarge [2012/01/14 05:14] mschiff removed |
— (current) | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | How To install an OpenXchange server on [[http://www.debian.org|Debian]] Sarge | ||
- | [[http://ox.cutmasta.org/|Nice Iconset?]] | ||
- | [[http://www.open-xchange.org/oxwiki/OXDebianSargeFromPackage|OX on Sarge]] | ||
- | |||
- | |||
- | Based on the above, a step-by-step manual: | ||
- | |||
- | edit /etc/apt/sources.list | ||
- | and add: | ||
- | |||
- | <code> | ||
- | - OX related packages | ||
- | - java | ||
- | deb http:<nowiki>//</nowiki>ftp.debian-unofficial.org/debian sarge main contrib non-free restricted | ||
- | deb-src http:<nowiki>//</nowiki>ftp.debian-unofficial.org/debian sarge main contrib non-free restricted | ||
- | |||
- | - Open-Xchange and JavaMail packages | ||
- | deb http:<nowiki>//</nowiki>ox.cs.bme.hu/ ./ | ||
- | |||
- | |||
- | aptitude update | ||
- | aptitude install postgresql tomcat4 tomcat4-webapps tomcat4-admin apache2 libapache2-mod-jk2 j2sdk1.5</code> | ||
- | |||
- | |||
- | <code> | ||
- | vi /var/lib/tomcat4/conf/tomcat-users.xml</code> | ||
- | |||
- | add "manager" to the tomcate roles | ||
- | |||
- | change | ||
- | |||
- | <code> | ||
- | <user name="tomcat" password="tomcat" roles="tomcat" /></code> | ||
- | |||
- | to | ||
- | |||
- | <code> | ||
- | <user name="tomcat" password="tomcat" roles="tomcat,manager" /></code> | ||
- | |||
- | |||
- | Set | ||
- | |||
- | <code> | ||
- | TOMCAT4_SECURITY=no | ||
- | JAVA_HOME=/usr/lib/sun-j2se5.0-jdk</code> | ||
- | |||
- | in /etc/default/tomcat4 | ||
- | |||
- | |||
- | <code> | ||
- | /etc/init.d/tomcat4 start | ||
- | cp /usr/share/doc/libapache2-mod-jk2/examples/workers2.properties.minimal /etc/apache2/workers2.properties | ||
- | vi /etc/apache2/mods-enabled/jk2.conf</code> | ||
- | |||
- | uncomment the line | ||
- | |||
- | <code> | ||
- | JkSet config.file /etc/apache2/workers2.properties</code> | ||
- | |||
- | |||
- | <code> | ||
- | vi /etc/apache2/workers2.properties</code> | ||
- | |||
- | add: | ||
- | <code> | ||
- | [[uri:/servlet/*]] | ||
- | worker=ajp13:localhost:8009 | ||
- | |||
- | [[uri:/umin/*]] | ||
- | worker=ajp13:localhost:8009 | ||
- | </code> | ||
- | |||
- | |||
- | Enable apache2 mod-ssl | ||
- | |||
- | <code> | ||
- | a2enmod ssl</code> | ||
- | |||
- | Create a new SSL cert: | ||
- | |||
- | <code> | ||
- | apache2-ssl-certificate</code> | ||
- | |||
- | And then restart apache2 | ||
- | |||
- | <code> | ||
- | /etc/init.d/apache2 force-reload</code> | ||
- | |||
- | Configure postgreSQL | ||
- | |||
- | <code> | ||
- | vi /etc/postgresql/pg_hba.conf</code> | ||
- | |||
- | Change: | ||
- | |||
- | <code> | ||
- | # All IPv4 connections from localhost | ||
- | host all all 127.0.0.1 255.255.255.255 ident sameuser</code> | ||
- | |||
- | into | ||
- | |||
- | <code> | ||
- | # All IPv4 connections from localhost | ||
- | host all all 127.0.0.1 255.255.255.255 md5 | ||
- | host all all 127.0.0.1 255.255.255.255 ident sameuser</code> | ||
- | |||
- | Then | ||
- | |||
- | <code> | ||
- | /etc/init.d/postgresql reload</code> | ||
- | |||
- | |||
- | Install imap: | ||
- | |||
- | <code> | ||
- | aptitude install cyrus21-imapd</code> | ||
- | |||
- | Install OpenLdap | ||
- | |||
- | <code> | ||
- | aptitude install slapd</code> | ||
- | |||
- | Install OpenXchange: | ||
- | |||
- | The installation process is a bit complicated/buggy. | ||
- | The package wants to fill the ldap directory during install but slapd does not know the open-xchange schema at this | ||
- | time. So it does not work "the smooth way". | ||
- | |||
- | This is maybe the most smooth way: | ||
- | |||
- | First only download all needed packages for open-xchange: | ||
- | |||
- | <code> | ||
- | aptitude -d install open-xchange</code> | ||
- | |||
- | Now unpack open-xchange: | ||
- | |||
- | <code> | ||
- | dpkg --unpack /var/cache/apt/archives/open-xchange_0.8.0.5-2_i386.deb</code> | ||
- | |||
- | so that we have the ldap schema file. | ||
- | |||
- | <code> | ||
- | cp /etc/ldap/schema/open-xchange.schema.dpkg-new /etc/ldap/schema/open-xchange.schema | ||
- | vi /etc/ldap/slapd.conf</code> | ||
- | |||
- | add | ||
- | |||
- | <code> | ||
- | include /etc/ldap/schema/open-xchange.schema</code> | ||
- | |||
- | then set proper ACLs by doing | ||
- | |||
- | <code> | ||
- | cat /usr/share/doc/open-xchange/openLDAP2.2.conf.example | sed 's/dc=example,dc=org/dc=<your domain>,dc=<your tld>/g' >> /etc/ldap/slapd.conf </code> | ||
- | |||
- | and do a | ||
- | |||
- | <code> | ||
- | /etc/init.d/slapd restart</code> | ||
- | |||
- | Now you can finish open-xchange installation: | ||
- | |||
- | DO NOT USE APTITUDE NOW! (because it will try to recover an error where we do not want it to do this!) | ||
- | |||
- | <code> | ||
- | apt-get install open-xchange</code> | ||
- | |||
- | The process pauses at: | ||
- | |||
- | <code> | ||
- | Starting OXWebmail webmail module: done.</code> | ||
- | |||
- | Go to a second console and restart open-xchange | ||
- | |||
- | <code> | ||
- | /etc/init.d/open-xchange restart</code> | ||
- | |||
- | If the install process did not finish yet, abort it with ctrl-c, then: | ||
- | |||
- | <code> | ||
- | apt-get remove open-xchange</code> | ||
- | |||
- | then again | ||
- | |||
- | <code> | ||
- | apt-get install open-xchange</code> | ||
- | |||
- | Now answer the "Should I create/fill db" questions with "No!" | ||
- | |||
- | Then, when it hangs at "Starting OXWebmail webmail module: done." | ||
- | the second time, go to the second console | ||
- | and do the | ||
- | |||
- | <code> | ||
- | /etc/init.d/open-xchange restart</code> | ||
- | |||
- | again. Now the installprocess should really have finished. | ||
- | |||
- | What a mess.... | ||
- | |||
- | Configure Cyrus: | ||
- | |||
- | <code> | ||
- | aptitude install sasl2-bin | ||
- | vi /etc/default/saslauthd</code> | ||
- | |||
- | Set | ||
- | |||
- | <code> | ||
- | START=yes | ||
- | MECHANISMS="ldap"</code> | ||
- | |||
- | Create /etc/saslauthd.conf | ||
- | |||
- | <code> | ||
- | vi /etc/saslauthd.conf</code> | ||
- | |||
- | Content: | ||
- | <code> | ||
- | ldap_servers: ldap:<nowiki>//</nowiki>127.0.0.1/ | ||
- | ldap_version: 3 | ||
- | ldap_timeout: 10 | ||
- | ldap_time_limit: 10 | ||
- | ldap_cache_ttl: 30 | ||
- | ldap_cache_mem: 32768 | ||
- | ldap_scope: sub | ||
- | ldap_search_base: ou=Users,ou=OxObjects,dc=<your domain>,dc=<your tld> | ||
- | ldap_auth_method: bind | ||
- | ldap_filter: uid=%u | ||
- | ldap_bind_dn: cn=admin,dc=gaia-capital,dc=de | ||
- | ldap_bind_pw: secret | ||
- | |||
- | |||
- | </code> | ||
- | |||
- | |||
- | In /etc/imapd.conf | ||
- | |||
- | enable | ||
- | |||
- | <code> | ||
- | allowplaintext: yes | ||
- | sasl_mech_list: PLAIN | ||
- | sasl_minimum_layer: 0 | ||
- | sasl_pwcheck_method: saslauthd</code> | ||
- | |||
- | |||
- | |||
- | |||
- | --[[User:Mschiff|mschiff]] 19:30, 22 Jul 2005 (CEST) |