ExtremeZ-IP

Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

4.4. ExtremeZ-IP

Microsoft has pulled UAM support from the latest Windows Server release. Given that Microsoft is focused on SMB/CIFS and Dfs, and that the set-up and clustering features of the File Sharing service on Windows Server are well documented, in this chapter we won't cover setting up File Services for Macintosh on Windows Server. Because many organizations would rather host AFP services on Windows rather than Mac OS X, ExtremeZ-IP often enters into conversations about enterprise-level integrations.

ExtremeZ-IP lets you provide AFP access to client computers using Windows Server. It also allows for the integration of print services for clients, integrates seamlessly in Active Directory, requires no client to be installed, is clusterable, and is far more scalable than the AFP services integrated into Mac OS X Server. And ExtremeZ-IP Enterprise has integrated Dfs support

Microsoft's Distributed file system presents, as a single virtualized location, what may actually be a number of file servers being used to replicate data among multiple hosts. Enterprises often use Dfs to host home directories so that the network can replicate the directories effectively, which results in flexibility, scalability and redundancy. This allows large environments to move home directory locations among hosts without changing locations in the users' Active Directory profiles. Given the prolific stature that DFS has attained the lack of DFS support in Mac OS X becomes a common pain point for many environments and leveraging ExtremeZ-IP can help to smooth enterprise-class integration.

4.4.1. Setting up AFP in ExtremeZ-IP

To get started with ExtremeZ-IP, download the software from http://www.grouplogic.com, extract the installer from the ZIP file, run the executable, and select Next at the Welcome screen. Heed the warning to close all open applications—including Windows Explorer (explorer.exe)—and Services, then click on the OK button. At the licensing screen, indicate whether you'll be installing a licensed version or a trial of the software. Select the choice appropriate to the way you obtained the software, then click on Next, which will produce the license agreement. Read the agreement, then choose whether to accept.

At the Registration screen enter the name of the person that the software is licensed to in the Name: field and the company that the software is licensed to in the Company: field. Finally, enter the license number. (You won't see this screen if you're using a trial copy.)

Now you'll see a Choose Destination Location screen. If you're installing the software in the C:Program FilesGroup LogicExtremeZ-IP directory, you can simply click on Next; otherwise, click on the Browse button, select your installation location, and hit the Next button once again. At the Select Program Folder screen, click on Next if you want the program name to show up in the Start menu under All Programs, or click on another subdirectory if you'd like to customize where the item will appear, then click Next when you're satisfied.

At the following Choose Destination Location screen, select where to install the ExtremeZ-IP Print Support files and then click on Next (or simply click Next if you're OK with it being installed in the c:ExtremeZ-IP Print Support) directory. In the ExtremeZ-IP Installation pop-up screen that appears, choose whether the ExtremeZ-IP services should start automatically when Windows boots (which will set the services to Automatic rather than Manual). The installer will then run and you'll see another pop-up screen asking if you want to share out your Print Support files. If you'll be using ExtremeZ-IP as a print spooler for Mac OS X clients, you'll likely want to answer affirmatively.

Finally, at the Post-Install Actions screen, leave the Launch ExtremeZ-IP Administrator box checked so that, on completion of the install, the administrative application (shown in Figure 4-24.) will open. Click Next to finish the installation. If you uncheck the Launch Admin box, you can still start the utility by going to Start All Programs ExtremeZ-IP ExtremeZ-IP Administrator.

Figure 4.24. ExtremeZ-IP Administrator

4.4.2. Configuring ExtremeZ-IP

The ExtremeZ-IP Administrator tool lets you create shares and assign them the appropriate permissions as well as configure the AFP service. Usually, the first task you want to undertake is dealing with the AFP global settings, so click the Settings button at the bottom of the Administrator screen (Figure 4-25), which brings up the Settings dialog shown in Figure 4-25 with the File Server tab active. In it, you can create a log-in greeting, similar to the one available in Server Admin for Mac OS X Server, and you can set the TCP port over which AFP will run (548 by default). You can also choose whether the server will be able to warehouse home directories, and you can define the log-in types to (many environments will disable guest access and cleartext log-ons).

Figure 4.25. Settings Dialog of ExtremeZ-IP Administrator Tool, File Servers tab

Once you've applied the settings for the AFP functionality, click on the Security tab, where you'll be presented with the options, divided into three sections, shown in Figure 4-26 and listed here:

Permissions
Allow Mac clients to change folder permissions: Mark this check box so Mac OS X users can alter rights on files and folders, giving those users some security over their data. Disable the option to use only inherited permissions already set on the Windows server.
Reset permissions on move (global): Turn this on if you want target permissions to match those of the ACLs when data moves into the directory structure controlled by ExtremeZ-IP. Folder and file permissions will change to those of their new parent folder.
Support UNIX permissions and ACLs: Put a check in this box so that ExtremZ-IP will support ACL in addition to POSIX. Windows manages security exclusively via ACLs; OS X can also use Unix permissions and Mac-type folder permissions.
Support ACLs on all volumes (global): Enabling this will extend ACL support enabled with the previous option to volumes shared out over AFP
Show only accessible volumes: With this option turned on, users that don't have access to volumes on the server will not see them (even grayed out).
Other Options
Allow remote administration of server: Enable this option if Windows users with administrator privileges need to use the ExtremeZ-IP remote-management features to configure the server from offsite.
Allow workstations to save password (OS 9 only): With this setting checked, Mac OS 9 workstations can cache passwords to volumes. Users authenticating from Mac OS 9 clients will see the Remember Password in Keychain dialog.
Notify Mac clients of password expiration in xxx days: Select the check box, and you can fill in the number of days before password expiration that users will receive warnings. When the feature triggers, users will receive password-change prompts each time they log in and select a volume.
Enable IPv6: If you select this option, which lets AFP use IPv6,you may have to install the protocol manually on some Windows systems where it has not yet been utilized before they can serve ExtremeZ-IP.
Directory Services: This section of the security tab is where you configure LDAPv3 and Active Directory integration.
Use Global Catalog: Removing the mark from this check box will cause ExtremeZ-IP to search only the domain specified.
Account: In the text box to the right of this label, enter the administrative user name for the directory service.
Password: Type the administrative password for the directory service into the provided text box.
Domain: Fill in this field with the domain name for the directory service.
Additional directory search criteria: Here you can set a custom search path for the directory service.
Validate Account: Click this button to verify that the LDAPv3 service is accessible.

Figure 4.26. Settings Dialog of ExtremeZ-IP Administrator Tool, File Servers tab

When you've applied your settings, select the Search tab if you wish to enable Spotlight support, then choose the Filename Policy tab if you want to customize file names that ExtremeZ-IP will allow for files and directories on the server. Now click on the Service Discovery tab. You'll be looking at the screen shown in Figure 4-27. Here, you can adjust the settings for Bonjour, AppleTalk (likely not needed unless you have Mac OS 9 clients) and Zidget/HTTP support, which configures the client to access the wide-area Bonjour implementation on ExtremeZ-IP.

Figure 4.27. Settings Dialog of ExtremeZ-IP Administrator Tool, Service Discovery tab

4.4.3. Setting up DFS in ExtremeZ-IP

GroupLogic has a great explanation of how you get a Mac client to use ExtremeZ-IP. You'll find it in a technical whitepaper that documents the installation and configuration process. To get the paper, go to http://www.grouplogic.com/resource-center/pdfs/How-Microsoft-DFS-Home-Directories-Work-w-ExtremeZ-IP-60-A-Technical-White-Paper.pdf.

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.

Table of Contents for ExtremeZ-IP

Create new playlist

Sign In

Sign Up