5.2 Installing iFolder on Windows/IIS/eDirectory

This section describes how to install Novell iFolder, using the following configuration:

Server Operating System

Web Server

LDAP Server

Windows 2000

IIS

Novell eDirectory

After you have met the prerequisites for this configuration, you are ready to install iFolder.

  1. If you plan to use LDAP over SSL, locate a self-signed root certificate (rootcert.der) for your iFolder server.

    You can export a self-signed root certificate from your certificate server. For information, see your Windows 2000 Server documentation or visit the Microsoft Web site.

    Save the rootcert.der file to a location on the iFolder server or to a floppy disk. For example, a:\rootcert.der. Remember this location; you need it in Step 8.

  2. If your IIS server is not currently running, start your IIS server.

  3. To start the installation, go to the temporary directory where you saved the installation program, then double-click the installation program icon.

  4. The iFolder Installation Wizard opens on your desktop. Do one of the following:

    • New Installation of iFolder 2.1: Select to either Continue or Cancel the installation.

      If you click Continue, proceed to Step 5.

      If you click Cancel, the installation program exits and the iFolder server is not installed. You can restart the installation at a later time.

    • Upgrade Installation or Repair of iFolder 2.1: If you are installing iFolder 2.1 on an existing iFolder server, the Installation Wizard automatically detects it. Proceed to Step 11.

  5. For new iFolder 2.1 installations, read the End User License Agreement, then do one of the following:

    • Agree (click Yes)

      The installation program proceeds.

    • Disagree (click No)

      The installation program exits and the iFolder server is not installed. You can restart the installation at a later time.

  6. To select Novell eDirectory as your LDAP server, click eDirectory.

    HINT:If you have an Active Directory LDAP server and want to install the iFolder server on a Windows 2000 server, follow the installation procedures in Section 5.3, Installing iFolder on Windows/IIS/Active Directory.

  7. Specify the directory on the destination server where you want iFolder server to be installed. Browse to select the drive letter that you mapped in Step 1.

  8. Configure the global settings for the eDirectory LDAP server that your iFolder server uses, then click Next.

    • LDAP Host Name or IP: Specify the DNS name (such as ldap1.your-domain-name.com) or IP address (such as192.168.1.1) of the server that acts as your LDAP server. Replace ldap1.your-domain-name.com or 192.168.1.1 with the actual DNS name or IP address of your LDAP server.

      This can be the same server that you are configuring as your iFolder server.

      IMPORTANT:If you use a DNS name, that name must already exist as an entry on your DNS server and point to the IP address of the destination server.

    • Port: Select the port type, based your security needs, for data exchanges between your LDAP server and your iFolder server.

      Select one of the following methods:

      • Clear Text: Specify any valid TCP port number to use for Clear Text exchanges. By default, Port 389 is used for Clear Text.

        Use Clear Text if you want to use LDAP without SSL encryption or if your LDAP server does not support SSL. Clear Text is also a good choice if iFolder and LDAP are running on the same server. Because no communication or data is being transferred across network connections, no encryption is necessary.

      • SSL: Specify any valid TCP port number to use for SSL exchanges. By default, Port 636 is used for SSL.

        Use SSL if you want to use SSL exchanges to provide your network with encryption and security when data is transferred across network connections.

    • Root Certificate Path: If you selected the SSL option, provide the full directory path to your self-signed root certificate you created or identified in Step 1.

      For example, type a:\rootcert.der if you exported the certificate to a floppy disk.

    • LDAP Context Where iFolder Admin User Is Located: Specify the LDAP context. For example, o=all.

  9. Configure the iFolder settings for the Windows 2000 server that will be your iFolder server, then click Next.

    • iFolder Server Host Name or IP: Specify the DNS name (such as nif1.your-domain-name.com) or the IP address (such as 192.168.1.1) to use for your iFolder server.

      IMPORTANT:If you use a DNS name, that name must already exist as an entry on your DNS server and point to the IP address of the destination server.

    • iFolder Admin Names: Specify the default user ID for the iFolder administrator for this iFolder server. For example, admin.

      The iFolder Admin Names are the users who have permission to manage the iFolder server. You can assign multiple users to be iFolder administrators. For multiple Admin Names, separate them with semicolons and with no spaces. For example,

      administrator;jsmith;acatt

      IMPORTANT:All of the users identified here must exist in the context identified in Step 8.

    • Local iFolder User Database Path: Specify the path on the iFolder server where user data for all the iFolder accounts will be stored. For example, e:\iFolder, where e: is the preexisting volume and iFolder is the directory. If desired, you can edit the value later in the Windows Registry.

      IMPORTANT:The volume you specify must already exist on the Windows server. The iFolder installation program does not create it for you.

  10. Review the settings you provided in the previous steps. To return to previous pages and change the settings, click Back and repeat the steps, as necessary.

    When you are done, click Next.

  11. If a version of iFolder already exists on the server as identified in Step 4, do one of the following:

    • Upgrade to iFolder 2.1: Click Upgrade/Repair, then do one of the following:

      • Upgrade from iFolder Standard Edition: The iFolder Installation Wizard requests that you confirm the upgrade to iFolder 2.1.

        To accept, click Yes. The installation continues and uses the current settings of your iFolder 1.x server as the default settings for iFolder 2.1. iFolder notifies you when the upgrade installation is complete. User data remains untouched.

        IMPORTANT:You might need to follow a manual upgrade process if you have a large number of users who have extended characters in their passphrases. You must also follow special precautions if you decide to concurrently use both iFolder 1.0x and iFolder 2.1 systems. For information, see Section B.0, Upgrading from iFolder Standard Edition to iFolder 2.1.

        To decline, click No. Your iFolder server is not upgraded.

      • Upgrade from iFolder 2.0 Professional Edition: The iFolder Installation Wizard requests that you confirm the upgrade to iFolder 2.1.

        To accept, click Yes. The installation continues and uses the current settings of your iFolder 2.0 server as the default settings for iFolder 2.1. iFolder notifies you when the upgrade installation is complete. User data remains untouched.

        To decline, click No. Your iFolder server is not upgraded.

    • Repair iFolder 2.1: Click Upgrade/Repair. The iFolder Installation Wizard requests that you confirm the repair of iFolder 2.1.

      To accept, click Yes. The reinstall continues and uses the current settings of your iFolder 2.1 server as the default settings. iFolder notifies you when the repair installation is complete. User data remains untouched.

      To decline, click No. Your iFolder 2.1 server is not repaired.

    • Uninstall iFolder 2.1: Click Uninstall. The iFolder Installation Wizard requests that you confirm the uninstall.

      To accept, click Yes. The iFolder uninstall process stops the iFolder server and removes all iFolder files and settings. iFolder notifies you when the uninstall is complete. User data remains on the server; you must remove it manually.

      To decline, click No. iFolder is not uninstalled.

  12. To exit the Installation Wizard, click Finish.

  13. Extend the eDirectory schema.

    1. Open the iFolder Management Console.

      Do one of the following:

      • Select the Administer iFolder option on the last window of the iFolder installation.
      • From a Web browser on your installation workstation, go to the iFolder Management Console by clicking File > Open, then entering the following URL:

        https://nif1.your-domain-name.com/iFolderServer/Admin

        IMPORTANT:This address is case sensitive.

        Replace nif1.your-domain-name.com with the actual DNS name or IP address of your iFolder server.

    2. Click the Global Settings icon.

    3. Log in to the Global Settings page as the Admin user with schema extension privileges.

      On successful login, iFolder extends the eDirectory schema.This can take several seconds, so expect a 10- to 30-second delay in the response. When the browser opens to the Global Settings page, the installation is complete.