View Source

# Confirm that the MAP standard system accounts in /home are correctly installed.  If not, request that they be installed from ASST, or install them using [ISDA System User Setup].
# Install OpenSSL, Apache, and SASH Server, according to [Apache, SSL, SASH Server Install Instructions for Thalia, Web Services, etc].
# Send a request to accounts@MIT.EDU to get a daemon keytab.  When it arrives, install it in /home/www/etc/krb as daemon.`hostname \-s`.krb5.keytab.
# Stop services.
{code}
/etc/init.d/web stop
{code}
# Install the Clearspace WAR file.
## Download and install the Clearspace WAR file from Trogdor.  Create the Clearspace home directory.
{code}
cd /home/root
scp root@trogdor:/opt/software-repository-tmp/Clearspace/clearspace.war /home/root
cd /home/www/sash-server/servers/clearspace/webapps/
cp /home/root/clearspace.war /home/www/sash-server/servers/clearspace/webapps/
mkdir /home/www/sash-server/servers/clearspace/webapps/clearspace
cd /home/www/sash-server/servers/clearspace/webapps/clearspace
$JAVA_HOME/bin/jar -xvf /home/www/sash-server/servers/clearspace/webapps/clearspace.war
cd /home/www/sash-server/servers/clearspace/webapps/
rm -rf /home/www/sash-server/servers/clearspace/webapps/ROOT
ln -s /home/www/sash-server/servers/clearspace/webapps/clearspace \
   /home/www/sash-server/servers/clearspace/webapps/ROOT
mkdir /home/www/clearspace
chown -R www:www /home/www
{code}
## Install a database connector from Trogdor.
{code}
scp root@trogdor:/opt/software-repository-tmp/MySQL/mysql-connector-java-3.0.17-ga.jar \
   /home/www/sash-server/core/common/lib
cd /home/www/sash-server/core/common/lib
chown -R www:www /home/www
{code}
## Clear the work directory from the clearspace container.
{code}
cd /home/www/sash-server/servers/clearspace/webapps
rm -rf /home/www/sash-server/servers/clearspace/webapps/work
{code}
## In $SASHSRV_HOME/servers/clearspace/conf/sashsrv.conf, set the Java memory limits.
{code}
JAVA_OPTS="-XX:MaxPermSize=128m \-Xmx768m"
{code}
## In the AJP Connector block in server.xml, disable Tomcat authentication.
{code}
request.tomcatAuthentication="false" address="127.0.0.1"
{code}
## Start services.  Monitor the SASH processes with top.  When CPU utilization drops, point a browser at the server's URL.  Begin the config process.
### Enter the Jive home directory, /home/www/clearspace, and press continue.
### Select commercial license, and use the license file on Trogdor, at /opt/software-repository-tmp/Clearspace/cslicense.txt.  Validate the license, and continue.
### Select "Standard Database Connection" and press continue.
### Log into the MySQL replication master, and configure the database on the MySQL replicator.
{code}
mysql
   create database cspacetest;
   grant all on cspaceitest.* to 'cspaceusr'@'localhost' identified by '*****' with grant option;
   grant all on cspacetest.* to 'cspaceusr'@'localhost.localdomain' identified by '*****' with grant option;
   grant all on cspacetest.* to 'cspaceusr'@'cms-test-tspace1' identified by '*****' with grant option;
   grant all on cspacetest.* to 'cspaceusr'@'cms-test-tspace1.mit.edu' identified by '*****' with grant option;
{code}
###* Change the database name to be unique, the hostname to be the hostname of the server clearspace is being installed on, and the password.
### Enter the database information in your browser.  Test the database connection and continue.
### Select the default user settings and continue.
### Skip the document sharing step.
### Disable Usage Statistics and press continue.
### Set the Space Name, email name and address, and mail host options.
### Change the admin password, and press continue.
### If it reports that setup is now complete, monitor the SASH processes on the server using top.  Restart services, and wait for CPU% to drop.
# Install [Touchstone|Touchstone-Shibboleth SP configuration instructions for Apache based systems].
# Add the following to the end of the /home/www/shibboleth/etc/shibboleth/apache22.config file to set certain directories to require Shibboleth:
{code}
<Files *.sso>
SetHandler shib-handler
</Files>

<Location /Shib-gateway>
 AuthType shibboleth
 require shibboleth
  ShibRequireSession On
  require valid-user
</Location>

<Location />
 AuthType shibboleth
 require shibboleth
  ShibRequireSession On
</Location>

<Location /mitLogin.jsp>
 AuthType shibboleth
 require shibboleth
  ShibRequireSession On
require valid-user
</Location>

ScriptAlias /shibenv "/home/www/apache-2.2.4/cgi-bin/shibenv.pl"
<Location /shibenv>
  AuthType shibboleth
  ShibRequireSession On
  require valid-user
</Location>
{code}
#* Then restart services.

8.&nbsp;&nbsp; Log into the admin web interface for Clearspace, and go to System \--> System Properties

9.&nbsp;&nbsp;&nbsp; Set the jive.auth.disallowGuest property to false\\ \\