Installing NetShield with ZENworks for Servers
Novell Cool Solutions: Feature
By Rick Cox
Digg This -
Posted: 23 Jun 2000
Current Version: ZENworks for Servers 1.0
ZENworks for Servers (ZfS) includes a server software installation component called Server Software Packages (SSP). This article is not designed to cover the full feature set of the SSP, but will walk you through installing NetShield using the Server Software Package feature of ZfS.
With ZfS software distribution, you can distribute an SSP and automatically install the package on any number of servers, unattended!
See this article on Software Distribution for more detail on all of these ZfS features.
This solution requires that you install NetShield on at least one server. This will extract the NetShield files. These files will then be identified for inclusion in a Server Software Package and compiled into a package that ZfS can distribute and install. The sample install should be a test server, as you can then test the SSP. In this example, NetShield and the NetShield console were installed at SYS:\MCAFEE SOURCE\NETSHLD and the SSP installs the product to SYS:\MCAFEE\NETSHLD.
When installing the server and console components, install the server components in SYS:\MCAFEE SOURCE\NETCHLD and the console in SYS:\MCAFEE SOURCE\NETSCON. If you don't, you'll get an error at compile time.
Download sample SPK file and note the directory where it is saved.
Install NetShield. The SPK that was downloaded in STEP 1 assumes that NetShield is installed at: SYS:MCAFEE SOURCE\NETSHLD. It is necessary to install NetShield to a single server, which provides access to the files needed for inclusion in the Server Software Package.
After installing NetShield, remove the NDS user NETSHLD_FSNAME from the container.
Insert the Software Package (SPK) in ConsoleOne. Right click on the Server Software Package ConsoleOne namespace and insert the package NetShld.
View Properties of Server Software Component. Double click on the NetShld Software Package, then right click on the Server Install component, and click on properties. We will examine the properties of this component here.
- Identification - a brief description of the component
- Requirements - Specify that the target volume (sys:) has 15 meg of disk space
- Copy File -- points to the files to be copied, in this case into SYS:MCAFEE\NETSHLD
- Text Files -- Appends NetShield commands into the autoexec.ncf
- Post-Installation -- Runs two NetShield NLMs, a utility that creates the necessary NDS user, and one that runs NetShield itself
Screenshots and Description of NetShld.SPK
Properties of the Server Install Component of the NetShld Software Package: There are only five tabs within the server install component that are defined. Here they are, with the steps taken within each one:
This screen is informational, with a name and description.
Note, this package does not reboot, reset, or restart the server; this option (at the bottom of the screen) is for installations that require drivers to be reloaded at server startup.
The Requirements allow an installation to require minimum memory, disk space, specific product entries in products.dat etc. In this case, if there is not 15 meg free on SYS:, the installation aborts and nothing is done to the server.
Under the Copy File tab, you will find all files to be copied into SYS:MCAFEE\NETSHIELD. Since this is assumed to be a new install, we have not elected to take any action on locked files.
The source of these files for NETSHLD.SPK found in this cool solution is SYS:MCAFEE SOURCE\NETSHLD. The product must be installed here (on your server) in order to compile NETSHLD.SPK into NETSHLD.CPK
In this section, files if newer or does not exist, delete files or file directory trees, and specify what attributes the files should have once they are copied (screen):
Using ZfS' text file processing within the SSP, we can add appropriate commands into each servers' autoexec.ncf. The screenshot below shows the two lines that will be added to the end of the file. For more information about text file processing (or any of the features list here), see the white papers on the ZENworks for Servers Home Page, and the product documentation.
After all of the steps are complete, the instructions in the Post-Install tab are processed. This allows any NLM, Java Processes, or scripts to be run. In this install we will run two NLMs:
- NetShInst.NLM -- this will create the user account in NDS, the naming protocol here is that NetSHield will create a NDS user object with the name of NETSHIELD_SERVER. We will feed in the command line parameters:
- /u=username to log into NDS with (to create user)
- /pw=password for above user
- /c=context where to create the user to
Note: notice the Wait for this process to complete before continuing box is checked. This will not only wait, but if it does not complete, then the whole installation will be rolled back. The default for enabling rollback is ON. To disable this feature, go into the properties of the package and disable rollback on the first page. (Disabling rollback is not recommended.)
Compile .SPK into CPK
Right click on the Package and select Compile. This will combine all of the files specified with the commands needed to complete the installation, as specified in the SPK. The resulting file, NETSHLD.CPK, can then be distributed and installed on any server that has ZfS.
Install to servers
Install Option 1: Use ZENworks for Servers TED for distribution
In ZfS' TED, when defining a distribution, you specify the contents of a file group. If you create the file group of type Software Package, and specify this CPK as the source, then TED will distribute this file to all subscribers who subscribe to the package(s) that contain the NetShield distribution. The package installation will start either automatically or wait until a specified time, as configured. For more information, see the ZfS Administrator Guide
Install Option 2: Manual copy and launch
You may manually launch this installation package on a test server prior to distributing it throughout the organization. To do this:
- Copy the .CPK to the servers sys volume (the root is acceptable)
- From the ZfS prompt, type:
PACKAGE PROCESS SYS:NETSHLD.CPK
- The ZfS console screen will report success or failure.
- A successful install will have launched NETSHIELD.NLM and left you at their screen.
- An unsuccessful install will leave you at the ZfS console prompt
- If the install fails, check the log file created during the installation process for cause of failure (refer to the ZfS Policy Object for the name and location of the ZfS log file).
For More Info
To find out more about ZENworks for Servers, check out their official product page.
Rick Cox is the Product Manager of ZENworks for Servers and ManageWise. He has been with Novell since 1987, with a brief leave while he was with Compaq. He began his career at WordPerfect. Over his fourteen years in the industry he has worked in Customer Support, IS&T, R & D Lab manager, Developer Relations, Fibre Channel development, and Product Management.
You can contact Rick at firstname.lastname@example.org
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com