Scope:
This writeup will show how to install eDirectory 8.8.3 on SLES 10 and configure it for an existing or new tree.
SLES 10 SP2 is a very robust server OS that can easily be setup with eDirectory services. With this the server can also be utilized as base for other Novell products.
The advantage here is that you can use SLES to build dedicated servers running Groupwise, IDM, Zenworks* and other Novell products without the need for installing OES2 services, meaning less overhead and a smaller footprint.
NOTE: if your product needs NCP, LUM or other specific OES services, or you are possibly planning to install OES products later on, then it's best to set the server up using the OES2 add on.
* UPDATE: after having issues on two servers with the ZenWorks 7 novell-zmgserv failing to start and thus issues with the pxe environment I'd recommend installing ZenWorks 7 components on a 32 bit SLES base. The install of eDirectory and the SLES base will be the same as described here with that difference of using the 32 bit versions of the install iso's.
Step 1) Setting up SLES 10 SP2
! If your hardware supports it, go for a 64bit OS (vs 32bit)
There are some exceptions where 64 bit OS will give you issues.
In essence make sure the application you want to run on your server supports a 64 bit OS before installing.
Groupwise v7+ & ZenWorks v7+ work perfectly on 64bit.
This article will focus on using SLES 10 SP2 64 bit keeping most suggested installer defaults.
Do disable the firewall (if the firewall must stay enabled due to your company's policy make sure all needed ports are opened, including port 427 & 524 for eDirectory & SLP.
Also it's wise to stop the firewall during the eDirectory installation to make sure the install completes successfully.
TIP: Disable ZMD
At the last page of the installation you have the option to disable the ZMD (update) service. I would recommend disabling it as you won't need to have the service running constantly checking for updates. You can check this manually using YaST's Online Update tool.
TIP: Keeping the installation media at hand
After the SLES installation has finished make an ISO copy of the install media to the local disk (a good place could be /usr/install/iso).
Place the iso file and add it, using YaST > Install Sources, as an install source (remove the DVD media reference fist).
If you need to install extra packages you won't need the install media as the packages will be copied from the local iso.
2) Install extra packages:
Using YaST > Software Management install; (some packages may already be installed)
gettext
net-SNMP-32-bit (net-SNMP for 32bit OS)
java-1_4_2-sun
java-1_5_0-ibm
Get the latest updates:
Now you can apply the latest patches for SLES using YaST's Online Update tool. If skipped during setup you might need to run the Novell Customer Configuration tool first to get the appropriate update sources.
< after updating, always reboot the server if prompted to do so! >
3) Setting up needed network services:
- configure ntp using YaST > NTP
Point to existing Novell timeserver or the source used for your systems. Set NTP to start during boot.
- configure slp (point to existing Novell DA if available)
edit the following parameters in /etc/slp.conf (using vi or gedit)
net.slp.useScopes = [you scope name, e.g. SLPSCOPE]
net.slp.DAAddresses = [ip address(es) of existing DA(s) - point to self if this server is DA]
net.slp.isDA = true
restart the slp daemon (service slpd restart)
check /var/log/slpd.log to see if slp gets initialized correctly.
- using YaST > Network Card configure IP & DNS Name Server parameters if not already done so (point to existing Novell DNS server). Keep ifup as configuration method.
NOTE: Always do this before installing eDirectory. Changing the ip address after having installed specific Novell services can be problematic.
- edit /etc/hosts file (add other Novell servers this server will be communicating with)
NOTE: also make sure the host name is not set to the loopback ip address (e.g. 127.0.0.1 alsrv1 loopback)
but it is set to the primary ip (e.g. 10.1.20.10 alsrv1)
If the host name is set to the loopback address ndsd might have trouble resolving the host.
4) Installing eDirectory 8.8.3 packages:
* You can freely download eDirectory for Linux (32bit or 64bit) from www.novell.com/downloads
Version 8.8.3 and later are officially supported running on/in Xen.
NOTE if installing on RHEL: Do not enable SELinux when using eDir!!
- mount the downloaded eDirectory iso file (you are free to use another mount point than /mnt or to just use the CD):
mount -o loop /[path to iso]/eDir_88_SP3_Linux-[arch].iso /mnt
and change to the installation directory to run the installer:
cd /mnt/setup (run the installer choosing option 1)
./nds-install
After installing unmount the iso:
umount /mnt
Add the eDirectory library path to the system configuration (only needed for 64bit OS)
vi /etc/ld.so.conf
Add /opt/novell/eDirectory/lib64 to the end of the file, save this and update the library config files by entering:
ldconfig
* The installer also shows the path that has to be exported to the system PATH. If this path is not added you will have to run all Novell eDirectory tools preceded with ndspath (e.g. /opt/novell/eDirectory/bin/ndspath ndsrepair -T)
If the path is missing you will get libcss2.so errors or similar.
The path can be permanently set in the system path by editing /etc/profile, again only needed on the 64 bit version
5) Installing the management tools:
* You freely can download iManager 2.7 & ConsoleOne 1.36h for Linux (32bit or 64bit) from www.novell.com/downloads
- Install iManager 2.7
To install: Unzip the downloaded iManager fie and run the install script.
After installing login to iManager and goto the configuration page to update to version 2.7.1 (or higher)
NOTE: iManager is not necessarily needed. Some products do require iManager on the server, like IDM. Not installing will save working memory.
- Install ConsoleOne 1.3.6h (Recommended on each server with eDir!)
Unzip the downloaded tar file , cd into the unzipped folder and run ./c1-install
(select option 1 -english-, and then option 8 -all snapins-)
NOTE: ConsoleOne will be install to /usr/ConsoleOne/bin
6) Running the NDS install:
cd /opt/novell/eDirectory/bin
./ndspath ndsconfig add <- to add to an existing tree
or
./ndspath ndsconfig new <- to create a new tree
7) Installing other products:
Now you have your SLES/eDirectory base to install your other products on.
TIP: It's good practice & for some products mandatory, to place an eDirectory replica on the server.
NOTE ON IDM:
When also installing IDM on the same server add these parameters to ndsd:
ldedit -b maxstack=0x10000000
/opt/novell/eDirectory/sbin/ndsd
