iChain 2.2 - WebDAV Configuration Quick Start

(Last modified: 13Feb2003)

This document (10080206) is provided subject to the disclaimer at the end of this document.

goal

iChain 2.2 - WebDAV Configuration Quick Start

fact

iChain 2.2

NetWare 6 SP2

fix

WebDAV.NLM (Enterprise Web Server)

 

“Web-distributed Authoring and Versioning (WebDAV) is an industry standard protocol. It is an enhancement to the HTTP protocol, turning the Web into a document database that enables collaborative creation, editing and searching from remote locations. Whereas HTTP only supports the reading of files, WebDAV enables documents to be written using HTTP.”

 

WebDAV is installed as part of the Novell Enterprise Web server. It is enabled by default.  Its functionality is implemented through  WEBDAV.NLM. Configuration (search contexts, on/off, etc.) is done through the Enterprise Web Server administration utilities. Note that file sys:/novonyx/suitespot/bin/webdav/html/webdav.conf is created during install with the specified DNS name or IP address of the server. When users access WebDAV, links are created with the name or address  specified in this file. Be careful to use DNS names that resolve to the proper address or addresses accessible to all users!

 

Users can normally access WebDAV directly using  the following three methods.

 

  1. With a URL entered directly into the browser similar to https://<serverDNSname>/My Network. At the login prompt, users inside the defined search contexts (configured via Web Admin) or in the same OU as the Server object need only to provide CN and password.
  2. Using the File menu in Internet Explorer (File->open, provide the DNS name or ip address of the server (be sure to specify https when using webdav.nlm), then check “Open as Web Folder”.
  3. Using Network Neighborhood, option Add Network Place allows new connections to be created. Connections created previously by either metho.d above also appear in this list.

 

When accessing WebDAV for the first time, the user will be prompted to download plugins. These plugins provide graphical representations of NDS objects when browsing the tree through WebDAV.

 

Once a user has successfully attached and authenticated, the WebDAV view should include folders representing drive mappings present in the user and container login scripts. Map statements must be in the format “map x:=<servername>/volname:/path, where <servername> is the simple NDS name of the server object. Also, a folder named according to the users NDS context and/or tree name will be displayed (ex: “novell.us”). Opening this folder allows the user to browse the NDS tree and/or manipulate NDS objects (double click an object or the “properties.html” file inside the folders). NDS objects will appear with icon representations only if plugins were successfully installed during initial access to WebDAV.

 

 

Accelerator Configuration:

 

On Web Server Accelerator page:

Name:  webdav

DNS Name: cpq350.dsm.cit.novell.com

Cookie Domain: dsm.cit.novell.com

“Alternate host name” is selected, set to cpq350.dsm.cit.novell.com

“Return error if host name sent by browser does not match above DNS name” is selected

Web Server Port: 443

Web Server Address: 10.251.201.2 (Primary ip address of a NW6/Apache server)

Accelerator Proxy port: 80

Accelerator IP address: 10.251.200.1

Enable Authentication is enabled

Authentication options:

Service Profile=ldap

“Forward authentication info to web server”. is not enabled

Enable Secure Exchange is enabled

SSL Listening Port: 443

Certificate: Auto

Secure Exchange Options:

-Client<-443->Proxy<-443->Web Server

“Mark pages not cacheable in the browser” is enabled

“Enable secure access between Secure Exchange and Web Server” is enabled

-“List of Trusted Roots” includes rootcert.der copied from sys:\public of the WebDAV server to sys:\ of the iChain server

 

 

On Access Control Page:

 “Enable OLAC” and  “Enable Form Fill Authentication” are not selected

On Management Page:

“Enable pin list” is not selected

In ConsoleOne->ISO object properties:

Add protected resource for the WebDAV web site:

Name=webdav

URL Prefix=http://cpq350.dsm.cit.novell.com/My Network/*

Access: Restricted

Add public resource for the associated .gif files used inside NDSDAV:

Name-webdavGif

URL Prefix http://cpq350.dsm.cit.novell.com/webdav/icons/*

Access: Public

 

Single Sign On through iChain:

WebDAV does not look at Authorization headers, so OLAC needs to be used:

- On the Access Control Page in iChain GUI:

 “Enable OLAC” should be selected

-Under Authentication Options page of the accelerator:

“Forward authentication information to web server” should be selected

-In ConsoleOne, go to properties of the ISO object, highlight the webdav resource, press the OLAC button and create the following entry:

Name=ICHAIN_UID

Source=ldap

Value=CN

.

document

Document Title: iChain 2.2 - WebDAV Configuration Quick Start
Document ID: 10080206
Solution ID: NOVL87102
Creation Date: 13Feb2003
Modified Date: 13Feb2003
Novell Product Class:iChain

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.