Unity Migration Blog
Category: WDS00
07/20/07
05:04:42 pm, by John Klein 
, 130 words, 200 viewsCategories: Change Management, SMS00, WEB00, WDS00
ITD_Web Servers has read rights to wds00
I've made some changes to wds00 so that the web servers can securely deliver the WDS iso files.
Apache is now mapping /download/installation to the share "//wds00.unity.ad.ncsu.edu/wdsboot"
This share has been created, and given ntfs read rights for the group "ITD_Web Servers"
This allows apache to deliver the ISOs without granting excessive rights to \\wds00\distribution$ which has some private stuff on it that might be readable should the ntfs permission be assigned there.
For things that we want to download, please make an Apache alias for /download/whatever to a share where you keep the "whatever" files, and grant read rights in ntfs for the "ITD_Web Servers" group. This should prove much easier to secure that publishing all of DFS. :-)
07/10/07
10:22:41 am, by Andy Kurth , 202 words, 182 viewsCategories: Workstation Deployment, Change Management, WEB00, WDS00
Pilot Installation ISO Made Available for Download
Using mod_auth_sspi, WEB00 was configured with to serve the new pilot workstation installaion ISO file to certain authenticated users.
The ISO download page is HERE. The download page doesn't require authentication. The URL where the ISO file resides does. It is located HERE.
The ISO file actually resides on WDS00. I created an alias directly to this location rather than copying the ISO somewhere else because the ISO is generated automatically in this location. I will eventually link this into DFS.
The Apache conf file is called download-install-sspi.conf and resides in the conf.d directory on WEB00. This is what it looks like (Note: the greater than and less than signs were removed because the blog wouldn't allow them):
Alias /download/installation "//wds00.unity.ad.ncsu.edu/distribution$/boot"
IfModule !mod_auth_sspi.c
LoadModule sspi_auth_module modules/mod_auth_sspi.so
/IfModule# Use SSL
RewriteEngine On
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^/download/installation/(.*) https://microsys.unity.ncsu.edu/download/installation/$1 [L,R]IfModule mod_auth_sspi.c
Location /download/installation/
AuthName "the Unity Active Directory domain"
AuthType SSPI
SSPIAuth On
SSPIAuthoritative On
SSPIOfferBasic On
SSPIOmitDomain On
# SSPIBasicPreferred
# SSPIUsernameCase lower
require group "UNITY\Domain local group name"
/Location
/IfModule
Unity Migration Blog
This blog is intended to be used by the staff members of ITD's Microsys group at NC State University. It is an internal project management and collaboration tool to be used throughout the Unity migration project. Project updates, thoughts, suggestions, and anything else related to the migration should be included.
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| << < | ||||||
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | |||||
Search
Categories
- All
- Applications (46)
- Architecture (66)
- Active Directory (51)
- Licensing & Activation (8)
- Servers (31)
- Systems Management Server (6)
- TESTITD Domain (2)
- Change Management (80)
- Communication (56)
- Blog (6)
- Meetings (12)
- Reports and Updates (12)
- Unity Forums (5)
- Website (11)
- Desktop Management (27)
- Disaster Recovery (18)
- Filesystems (27)
- Migration Issues (18)
- Miscellaneous (23)
- Resources (22)
- User Accounts (18)
- Workstation Deployment (35)
Archives
- March 2008 (2)
- January 2008 (1)
- November 2007 (2)
- October 2007 (4)
- September 2007 (4)
- August 2007 (9)
- July 2007 (11)
- June 2007 (29)
- May 2007 (19)
- April 2007 (12)
- March 2007 (21)
- February 2007 (11)
- More...
Who's Online?
- Guest Users: 2
XML Feeds
What is RSS?
powered by
