Univention UCS

This page explains how to install ]project-open[ V4.0 on Univention Corporate Server (3.2) .


Create the "projop" Linux user

Please don't change (at the moment) the name or the home directory (/web/projop/) of the new user. More than 20 different files reference the location, and the probability is very high that might miss one of them...

su - root
mkdir /web
mkdir /web/projop
groupadd projop
useradd -g projop -d /web/projop -m -s /bin/bash projop
chown -R projop:projop /web/projop/

Install required packages

Please install the packages below.

apt-get install git unzip zip make wwwconfig-common ldap-utils tcl tcl8.4 libgomp1 libilmbase6 liblcms1 \
libltdl7 libopenexr6 libpaper-utils libpaper1 libwmf0.2-7 ghostscript gsfonts imagemagick graphviz \
libcupsimage2
 

 

Download required files

Please download the following files into your /usr/src/ directory using "wget <filename>":

 

Extract the installer contents 

Please go through the following steps to create a ]po[ user "projop" and to extract the installer into this user's home directory:

cd /web/projop/
tar xzf /usr/src/web_projop-aux-files.4.0.4.0.0.tgz           (extract auxillary files)
tar xzf /usr/src/project-open-Update-4.0.4.0.0.tgz            (extract the ]po[ product source code + database dump)
chown -R projop:projop /web/projop                            (set ownership to all files)

cd /usr/local
tar xzf /usr/src/aolserver451rc2-po2.nsreturnz.el6.x86_64.tgz  (extract the AOLserver binary for 64 bit, or replace name for 32bit)

Setup PostgreSQL 8.4

UCS 3.2 already comes with PostgreSQL 8.4, so we only need to setup a new database:

su - postgres
createuser -s projop
exit

su - projop
createdb --template=template0 --owner=projop --encoding=utf8 projop
createlang plpgsql projop

# Test the database
psql -c "select version()"

Edit the PostgreSQL compatibility settings in both the current postgresql.conf in /etc/postgresql/8.4/main/ as well as the template in /etc/univention/templates/files/etc/postgresql/8.4/main/:

Look for VERSION/PLATFORM COMPATIBILITY section, and enable these variables as follows

add_missing_from = on
regex_flavor = advanced
default_with_oids = on

Restart postgresql

/etc/init.d/postgresql restart

Please verify that you've got the right version of PostgreSQL installed:

su - projop
psql --version
You should see something like "psql (PostgreSQL) 8.4.x - contains support for command-line editing"

Load demo data into the database

su - projop
cd /web/projop
psql -f pg_dump.4.0.4.0.0.sql > import.log 2>&1   (this may take 10-60 seconds)

Check the data has been correctly imported

psql

projop=# select count(*) from users;
count
-------
   196
(1 row)

projop=# \\q

Edit the ]po[ configuration file  /web/projop/etc/config.tcl parameters with your preferred editor and modify the following parameters:

# sleep 15     (disable the sleep line at the moment)
set servername "<your_company_name_without_special_characters>"
set homedir /usr/local/aolserver451_rc2
 

Start ]project-open[ manually

As user "root" please execute:

/usr/local/aolserver451_rc2/bin/nsd -ft /web/projop/etc/config.tcl -u projop -g projop

]po[ should take 15s to 60s to write out some ~40.000 lines before the line appears "[...] Notice: nssock: listening on 0.0.0.0:8000".

Please check that the start-up takes at least 10 seconds and produces these ~40.000 lines of debugging output.

There will be only a few hundred lines in case of an error. In this case please watch out for lines including "Error:" or "Warning:".

Now start Firefox or Konqueror on your local UCS server, enter the URL  http://localhost:8000/ and login as "sysadmin@tigerpond.com" / "system". You should see the first page with the configuration wizard. Please do not continue here at the moment, because we still need to fix several issues before ]po[ will run as it should.

You can stop the ]po[ server in the terminal with Ctrl-C.

 

Configure UCS Firewall

The ]project-open[ "AOLserver" Web server by default listens on port 8000 on IP "0.0.0.0" (all available network interfaces). You can change the port and the IP address in /web/projop/etc/config.tcl.

We now need to poke a hole into the UCS firewall in order to allow access to this port from other computers:

As user "root" please execute:

ucr set security/packetfilter/tcp/8000/all=ACCEPT
/etc/init.d/univention-firewall restart

Please test that you can reach port 8000 from another computer using "telnet <ucs_ip> 8000" or "nmap <ucs_ip>".

 

Automate ]project-open[ Startup

Once ]po[ is running successfully, you can edit /etc/inittab and add the following line at the very end(!) of the file:

ns1:2345:respawn:/usr/local/aolserver451_rc2/bin/nsd -it /web/projop/etc/config.tcl -u projop -g projop

Please note:

  • The "-it" parameter, as opposed to the "-ft" parameter for manual startup.
    Please run /usr/local/aolserver451_rc2/nsd for command line options.
  • The "2345" runlevels in the command. Normally runlevel "2" should not be included here, but UCS seems to boot until level 2 only.

After the update please execute the following command to activate the new inittab:

init q

You can check if ]po[ is running by executing:

ps aux | grep nsd

You should see a line similar to: "projop 4861  8.6  6.6 253080 138020 ? Ssl  18:14   0:15 /usr/local/aolserver451_rc2/bin/nsd -it /web/projop/etc/config.tcl -u projop -g projop"

 

Joining the UCS "Domain"

You can connect ]po[ to your UCS LDAP server for SSO (single-sign on) and authentication.

In order to interface with the LDAP server, ]project-open[ requires the installation of the Perl::LDAP libraries.

apt-get install perl ldap-utils libyaml-perl        (This should already have been installed)
cpan                                                (follow defaults)
-> install
-> install IO::Socket::PortState                    (follow defaults, NO installation of "optional packages")
-> install Net::LDAP                                (follow defaults, NO installation of "optional packages")

Install the auth-ldap-adldapsearch package

 

 


 

  Contact Us
  Project Open Business Solutions S.L.

Calle Aprestadora 19, 12o-2a

E-08907 Hospitalet de Llobregat (Barcelona)

 Tel Europe: +34 932 202 088
 Tel US: +1 415 429 5995
 Mail: info@project-open.com