InveneoSMEserver

Hardware

 * A PC with harddisk (20 GB or larger recommened)
 * 1 (preferable two) ethernet interfaces
 * 256 MB or more RAM
 * CD-ROM drive

Software

 * SME Server 7 CD (download from Contribs.org )

Setup
1.) Install SME Server 7 using the following settings
 * Select "Server and Gateway" mode during installation
 * Configure your external ethernet interface as needed
 * Configure your local ethernet interface with a static IP and to provide DHCP to your clients (usually Inveneo Communications Stations)
 * Default IP address for the local area network will be 192.168.0.1

Configuration
Once the installation is completed and the system is rebooted

1.) First access the web based administration panel from the local area network side  https://192.168.0.1/server-manager

2.) Login into the interface with username "admin" and the administration password you choose during the installation

3.) Set the following options:
 * In the "Security" section select "Remote access" and enable SSH access from the Internet and select yes in the two option boxes below (this will allow you to connect to the SME Server via ssh and login as admin user)

4.) In the section "Configuration" select "Software installer" and click on "Change software installer settings"
 * Disable daily updates.

5.) In the section "Configuration" select "Domains" and click on the "modify" link in the domain list. Set the DNS settings to resolve your Domain through Internet DNS servers rather then local DNS.

6.) In the section "Configuration" select "Workgroup"
 * Change your Windows workgroup name to a name of your liking (we like to call it "inveneo")
 * Change "Workgroup and Domain Controller" to "yes"

7.) In the section "Collaboration" select "Groups" and create two groups:
 * The first group called "ics" with description "Inveneo Communications Stations"
 * The second group called "support" with description "Inveneo support" - make sure to select the "admin" checkbox for this group.

8.) In the section "Collaboration" select "Information bays" and create an Information Bay (share) called "csstorage". Make this share owned by the group "ics" which you created priviously and assign it group write access and everyone read access

9.) Now login to the servers shell interface using SSH (Username: root, Password:)

10.) Disable password strengh checking: config setprop passwordstrength Users none config setprop passwordstrength Ibays none

11.) Now log back into the web based administration interface and create the user accounts for the Inveneo communications Stations. Username: station0[1...n] member of group "ics" unlock the account by setting the password to the same as the username (e.g. "station01" for the account "station01")
 * In the section "Collaboration" select "users" and create for each ICS an account in the following format:

12.) Back in your ssh session, create a directory for each account name in the "csstorage" share. The directories have to be owned by the correct user, and the group must be "ics". Here is a sample script for creating six such directories with the proper permissions:

cd /home/e-smith/files/ibays/csstorage/files for num in 01 02 03 04 05 06; do       [ ! -d station$num ] && mkdir station$num chown station$num:ics station$num chmod 2755 station$num done
 * 1) !/bin/sh

You will have a directory tree like this: csstorage +--files +--station01 +--station02 +--station0[..n]

13.) enable the xinetd time server

yum -y --enablerepo=base install xinetd ln -s ../init.d/xinetd /etc/rc.d/rc7.d/S56xinetd config set time service config setprop time TCPPort 37 config setprop time access private config setprop time status enabled sed -i 's/disable = yes$/disable = no/' /etc/xinetd.d/time mkdir -p /etc/e-smith/templates-custom/etc/hosts.allow

create /etc/e-smith/templates-custom/etc/hosts.allow/time -- it should contain the following:

{    $DB->hosts_allow_spec('time'); }

finally:

activate_config signal-event post-upgrade signal-event reboot

The machine will reboot.

HOMEDIR="/root" cd $HOMEDIR LAZY_ADMIN_TOOLS_RPM="smeserver-lazy_admin_tools-0.9.1-2.noarch.rpm" LAZY_ADMIN_URL="http://distro.ibiblio.org/pub/linux/distributions/smeserver/contribs/jbennett/sme7/lat" NET_TIMEOUT=30 config setprop passwordstrength Users none config setprop passwordstrength Ibays none if [ ! -e ${LAZY_ADMIN_TOOLS_RPM} ] ; then if [ -n ${LAZY_ADMIN_URL} ] ; then wget --timeout=${NET_TIMEOUT} "${LAZY_ADMIN_URL}/${LAZY_ADMIN_TOOLS_RPM}" fi fi if [ ! -e ${LAZY_ADMIN_TOOLS_RPM} ]; then echo "Cannot find admin tools: ${LAZY_ADMIN_TOOLS_RPM}" exit -1 fi rpm -Uvh "${LAZY_ADMIN_TOOLS_RPM}" lat-groups -a -c "ics | Inveneo Communications Stations" lat-ibays -a -c "csstorage | ICS storage area | ics " CSSTORAGE="/home/e-smith/files/ibays/csstorage/" cd $CSSTORAGE for num in 01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30; do    lat-users -a -c "station$num | Station$num | CS | station$num |  |  |  |  |  |  |  |  | ics" [ ! -d station$num ] && mkdir station$num chown station$num:ics station$num chmod 2755 station$num done cd $HOMEDIR wget http://www.inveneo.org/download/kernel-2.6.17-1.2142_FC4.i586.rpm rpm -i --nodeps kernel-2.6.17-1.2142_FC4.i586.rpm SSH_KEY_FILE="${HOMEDIR}/.ssh/id_dsa" if [ -e "${SSH_KEY_FILE}" ] ; then rm -f "${SSH_KEY_FILE}" rm -f "${SSH_KEY_FILE}.pub" fi ssh-keygen -t dsa -f "${SSH_KEY_FILE}" -N "" yum -y --enablerepo=base install xinetd ln -s /etc/init.d/xinetd /etc/rc.d/rc7.d/S56xinetd config set time service config setprop time TCPPort 37 config setprop time access private config setprop time status enabled sed -i 's/disable\ =\ yes$/disable\ =\ no/' /etc/xinetd.d/time mkdir -p /etc/e-smith/templates-custom/etc/hosts.allow touch /etc/e-smith/templates-custom/etc/hosts.allow/time cat << EOF > /etc/e-smith/templates-custom/etc/hosts.allow/time {  $DB->hosts_allow_spec('time'); } EOF activate_config signal-event reboot
 * 1) !/bin/sh
 * 1) disable strong password requirement
 * 1) Get and install command line admin tool package
 * 1) Create ics group with lazy admin tools
 * 1) create samba share csstorage
 * 1) create comm station home directoryes in samba share
 * 1) get and install updated kernel
 * 1) create private dsa keys for ssh login - needed for remote access tunnel
 * 1) install xinetd for time protocol
 * 1) now activate the changes