OpenAFS Quick Start Guide for UNIX

This documentation is covered by the IBM Public License Version 1.0.

Revision History
Revision 1.8.9-1-debian

Abstract

This document describes the initial setup of an OpenAFS cell and an OpenAFS client. It is currently being updated for OpenAFS 1.6.10 and is still dated and incorrect in many details. This edition applies to OpenAFS for UNIX, Version 1.4.10, and to all subsequent releases and modifications until otherwise indicated in new editions.


Table of Contents

About This Guide
Audience and Purpose
Organization of the Document
How to Use This Document
Related Documents
Typographical Conventions
1. Installation Overview
The Procedures Described in this Guide
Required Initial Procedures
As-needed Procedures
Recommended Reading List
Requirements
Login Identity
General Requirements
File Server Machine Requirements
Client Machine Requirements
Supported System Types
About Upgrading the Operating System
The OpenAFS Binary Distribution
How to Continue
2. Installing the First AFS Machine
Requirements and Configuration Decisions
Overview: Installing Server Functionality
Choosing the First AFS Machine
Creating AFS Directories
Performing Platform-Specific Procedures
Getting Started on Linux Systems
Loading AFS into the Linux Kernel
Configuring Server Partitions on Linux Systems
Enabling AFS Login on Linux Systems
Getting Started on Solaris Systems
Loading AFS into the Solaris Kernel
Configuring the AFS-modified fsck Program on Solaris Systems
Configuring Server Partitions on Solaris Systems
Enabling AFS Login on Solaris Systems
Editing the File Systems Clean-up Script on Solaris Systems
Starting the BOS Server
Generating the Cell's Kerberos V5 Keys
Starting the Server Processes
Defining Cell Name and Membership for Server Processes
Starting the Database Server Processes
Initializing Cell Security
Initializing the Protection Database
Starting the File Server processes
Clock Sync Considerations
Overview: Installing Client Functionality
Copying Client Files to the Local Disk
Defining Cell Membership for Client Processes
Creating the Client CellServDB File
Configuring the Cache
Configuring a Disk Cache
Configuring a Memory Cache
Configuring the Cache Manager
Overview: Completing the Installation of the First AFS Machine
Verifying the AFS Initialization Script
Activating the AFS Initialization Script
Activating the Script on Linux Systems
Activating the Script on Solaris Systems
Configuring the Top Levels of the AFS Filespace
Storing AFS Binaries in AFS
Storing AFS Documents in AFS
Storing System Binaries in AFS
Enabling Access to Foreign Cells
Enabling a Synthetic AFS root
Adding foreign cells to a conventional root volume
Improving Cell Security
Controlling root Access
Controlling System Administrator Access
Protecting Sensitive AFS Directories
Removing Client Functionality
3. Installing Additional Server Machines
Installing an Additional File Server Machine
Creating AFS Directories and Performing Platform-Specific Procedures
Starting Server Programs
Installing Client Functionality
Completing the Installation
Installing Database Server Functionality
Summary of Procedures
Instructions
Removing Database Server Functionality
Summary of Procedures
Instructions
4. Installing Additional Client Machines
Summary of Procedures
Creating AFS Directories on the Local Disk
Performing Platform-Specific Procedures
Getting Started on Linux Systems
Loading AFS into the Linux Kernel
Enabling AFS Login on Linux Systems
Getting Started on Solaris Systems
Loading AFS into the Solaris Kernel
Enabling AFS Login on Solaris Systems
Editing the File Systems Clean-up Script on Solaris Systems
Loading and Creating Client Files
Configuring the Cache
Configuring a Disk Cache
Configuring a Memory Cache
Configuring the Cache Manager
Starting the Cache Manager and Installing the AFS Initialization Script
Running the Script on Fedora / RHEL Systems
Running the Script on other Linux Systems
Running the Script on Solaris Systems
Setting Up Volumes and Loading Binaries into AFS
Linking /usr/afsws on an Existing System Type
Creating Binary Volumes for a New System Type
A. Appendix A. Building OpenAFS from Source Code
Loading the Source Files
Compiling OpenAFS Binaries Using Configure and Make
B. Appendix B. Configuring Legacy Components
kaserver and Legacy Kerberos 4 Authentication
Background
Using this Appendix
Installing the First AFS machine
Installing Additional Server Machines
Enabling AFS login with kaserver
Enabling kaserver based AFS Login on Linux Systems
Enabling kaserver based AFS Login on Solaris Systems
C. The Demand-Attach File Server
Justification and Background
DAFS Binaries
Salvaging
Converting a Fileserver to DAFS
Index

List of Examples

2.1. Linux PAM session example
2.2. Linux PAM auth example
2.3. Solaris PAM session example