17.1 Overview of File Services

The file service components in OES include the following:

The file service components in OES are generally compatible. However you cannot run Novell Samba on the same OES 2 server as Novell AFP, Novell CIFS, or Domain Services for Windows, which is not reviewed as a file service, but does include an alternative Samba file service.

17.1.1 Using the File Services Overviews

Each graphical overview in the following sections introduces one of the OES file service components. If visual presentations help you grasp basic concepts, continue with the following overviews. If you prefer to skip the overviews, go to Section 17.2, Planning for File Services.

17.1.2 FTP Services

OES 2 NetWare has an FTP server that provides for securely transferring files to and from NetWare volumes. You can perform file transfers from any FTP client by using the NetWare FTP Server to log in to eDirectory™. For more information, see the NW 6.5 SP8: Novell FTP Administration Guide.

OES 2 Linux offers a level of integration between eDirectory and Pure-FTP that allows users to authenticate to eDirectory for FTP access to the server. You simply select the Novell FTP Server pattern in the OES 2 Linux installation and then make sure the users needing access are LUM-enabled and have access rights to the areas on the server they need to use. You can also migrate an existing FTP server configuration from a NetWare server to OES 2 Linux.

For migration instructions and a brief FAQ, see Migrating FTP from NetWare to OES 2 Linux in the OES 2 SP2: Migration Tool Administration Guide.

For documentation on Pure-FTP, visit the Pure-FTP Web site.

17.1.3 Native File Access Protocols

The Novell Native File Access Protocols (NFAP) product lets users on Macintosh, Windows, and UNIX workstations access and store files on OES 2 NetWare servers without installing any additional software, such as the Novell Client™ (see Figure 17-1).

Figure 17-1 Native File Access Protocol Support on NetWare

The following table explains the information illustrated in Figure 17-1.

Table 17-1 NFAP Access

Access Methods

Authentication/File Encryption

NFAP Services

Linux, UNIX, Macintosh, and Windows workstation users can create drive mappings, mount points, etc., to the NetWare server. Then they can access the files as though they were stored on a network server that is native for the respective platforms.

All file service access is controlled by LDAP- based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be installed on the OES 2 server.

After the service is fully configured, users can log in just as they would to access files on other native systems.

Files are stored on NSS volumes on OES 2 NetWare servers. The same files can be accessed by users on different platforms.

17.1.4 NetWare Core Protocol

NetWare Core Protocol (NCP) is the technology beneath many of the network services for which NetWare is famous.

In OES 2, NCP is also available on Linux. The Novell NCP Server for Linux provides the rich file services that Novell is known for. Windows and Linux users who run Novell Client software can now access data, manage files and folders, map drives, etc., using the same methods as they do on NetWare servers.

Figure 17-2 illustrates the basics of NCP file services. For more information on how NCP can help you manage access to network resources, see Access Control and Authentication.

Figure 17-2 NCP Services for Linux and NetWare

The following table explains the information illustrated in Figure 17-2.

Table 17-2 NCP Access

Access Methods

Authentication

NCP Services

Access is through an NCP client—specifically, the Novell Client.

All file service access is controlled by eDirectory authentication.

Files are stored on NetWare or NCP volumes that the administrator has created.

The same core set of NetWare file attributes are available on both Linux and NetWare.

17.1.5 NetStorage

NetStorage makes network files available anywhere, any time.

Common Network File Storage Problems

Network file access is often confusing and frustrating to users, as illustrated in Figure 17-3.

Figure 17-3 Common Network File Storage Problems

The following table explains the information illustrated in Figure 17-3.

Table 17-3 NetStorage Access Solutions

Access Methods

Authentication

Target File Systems

Solution: NetStorage

Browser or PDA access is critical to those who must travel. However, access method support varies widely among file service providers.

Authentication helps protect information assets, but having diverse authentication methods leads to frustration and lost productivity.

Having diverse file storage services only adds to the complexity and confusion.

Novell NetStorage ties all of these issues together with an easy-to-administer, easy-to-use solution.

Novell NetStorage on Linux

NetStorage on Linux provides local and Web access to files on many systems without requiring the Novell Client (see Figure 17-4).

Figure 17-4 How NetStorage Works on OES 2 Linux

The following table explains the information illustrated in Figure 17-4.

Table 17-4 NetStorage on Linux

Access Methods

Authentication

NetStorage Server

Target Servers

Users have read and write access to files from

  • Windows Explorer: Enabled by the HTTP protocol with WebDAV extensions.

  • Browsers: Users can access files directly by connecting to the NetStorage server.

  • PDAs: PDA users with network connections can access their files as well.

Access is granted through login script drive mapping (NCP server required) or through Storage Location Objects.

File service access is controlled by LDAP-based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be running on the OES 2 server.

The NetStorage server receives and processes connection requests and provides access to storage on various servers on the network.

NetStorage on Linux can connect eDirectory users to their files and folders stored in the following locations:

  • The same targets as NetWare (see Figure 17-5) if the NCP server is running

  • Windows workgroup shares (CIFS or Samba shares)

  • Linux POSIX volumes through an SSH connection.

Linux volumes can also be made available as NCP volumes.

Management of NSS volumes on OES 2 Linux through NetStorage requires SSH access to the server. See When Is SSH Access Required?.

Novell NetStorage on NetWare

NetStorage on NetWare provides local and Web access to files on NetWare and Linux without requiring the Novell Client software (see Figure 17-5).

Figure 17-5 How NetStorage Works on OES 2 NetWare

The following table explains the information illustrated in Figure 17-5.

Table 17-5 NetStorage on NetWare

Access Methods

Authentication

NetStorage Server

Target Servers

Users have read and write access to files from

  • Windows Explorer: Enabled by the HTTP protocol with WebDAV extensions.

  • Browsers: Users can access files directly by connecting to the NetStorage server.

  • PDAs: PDA users with network connections can access their files as well.

Access is granted through login script drive mapping or through Storage Location Objects.

File service access is controlled by LDAP-based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be running on the OES 2 server.

The NetStorage server receives and processes connection requests and provides access to storage on various servers on the network.

NetStorage on NetWare can connect eDirectory users to their files and folders stored in the following locations:

  • NetWare Traditional volumes where users have access rights

  • NSS volumes on either NetWare or OES 2 Linux servers where users have access rights

  • Any administrator-defined NCP volumes created on an OES 2 Linux server

17.1.6 Novell AFP

The Novell AFP service lets users on Macintosh workstations access and store files on OES 2 Linux servers with NSS volumes without installing any additional software, such as the Novell Client™ (see Figure 17-6).

Figure 17-6 How Novell AFP Works

Table 17-6 AFP Access

Access Points

Authentication

AFP File Services

eDirectory users on Macintosh workstations have native access to the OES 2 server.

All file service access is controlled by LDAP-based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be installed on the OES 2 server.

Of course, the same files can also be accessed through other OES file services (such as NetStorage) that connect to Linux volumes.

17.1.7 Novell CIFS

The Novell CIFS service lets users on Windows workstations access and store files on OES 2 Linux servers with NSS volumes without installing any additional software, such as the Novell Client (see Figure 17-6).

Figure 17-7 How Novell CIFS Works

Table 17-7 CIFS Access

Access Methods

Authentication

CIFS File Services

eDirectory users on Windows workstations have two native Windows file access options:

  • CIFS Client Access: Windows Explorer users can access and modify files on the OES 2 Linux server just as they would on any workgroup server share.

  • Web Folder: Users can create Web Folders in Windows Explorer or Internet Explorer.

    Files on the OES 2 Linux server are accessed and maintained with the HTTP-WebDAV protocol.

All file service access is controlled by LDAP-based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be installed on the OES 2 server.

Of course, the same files can also be accessed through other OES file services (such as NetStorage) that connect to NSS volumes.

17.1.8 Novell iFolder 3.7

Novell iFolder 3.7 supports multiple iFolders per user, user-controlled sharing, and a centralized network server for file storage and secure distribution (see Figure 17-8).

Figure 17-8 How Novell iFolder Works

The following table explains the information illustrated in Figure 17-8.

Table 17-8 iFolder Access

Access Methods

Authentication/File Encryption

Novell iFolder 3.7 Services

Linux and Windows workstation users who have the Novell iFolder Client installed can access and modify their files in one or more workstation folders. Changes are automatically synchronized with the iFolder 3.7 Enterprise servers.

A Macintosh client for iFolder 3.7 is under development and expected to be released with OES 2 SP1.

A Web interface lets users access their files from any computer with an active network or Internet connection.

All file service access is controlled by LDAP- based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be installed on the OES 2 server.

Files can be encrypted for transport using SSL connections (HTTPS).

Slave servers can be added as needed, providing the ability to dynamically grow iFolder services without disrupting users.

Local and network copies of each file are automatically synchronized by the Novell iFolder Client and Server pieces.

Additional overview information is available in Overview of Novell iFolder 3.7 and Later Versions in the Novell iFolder 3.8 Administration Guide.

17.1.9 Novell Samba

Samba on an OES 2 Linux server provides Windows (CIFS and HTTP-WebDAV) access to files stored on the OES 2 server (see Figure 17-9).

Figure 17-9 How Samba on OES Works

The following table explains the information illustrated in Figure 17-9.

Table 17-9 Samba Access

Access Methods

Authentication

File Storage Services

eDirectory users on Windows workstations have two native Windows file access options (if their eDirectory accounts have been enabled for LUM and Samba):

  • CIFS Client Access: Windows Explorer users can access and modify files on the Samba server just as they would on any workgroup server share.

  • Web Folder: Users can create Web Folders in Windows Explorer or Internet Explorer.

    Files on the OES 2 Linux server running Samba are accessed and maintained with the HTTP-WebDAV protocol.

All file service access is controlled by LDAP-based authentication through the eDirectory LDAP server.

Although shown separately, eDirectory could be installed on the OES 2 server.

Of course, the same files can also be accessed through other OES file services (such as NetStorage) that connect to Linux volumes.

Samba is an open source initiative. In addition to Linux support, Samba initiatives provide support for other platforms such as Apple Computer’s operating systems. More information is available on the Web.