Forcing users through SSL with NetStorage on NetWare 6.5

  • 3287817
  • 20-Sep-2007
  • 26-Apr-2012

Environment

Novell Apache on NetWare
Novell NetWare 6.5
Novell NetStorage

Situation

When a user hits a NetStorage web server on port 80 (non secure), it is desired to have the user be redirected to an HTTPS (or an SSL-encrypted connection). This document describes the process.

Resolution

This TID assumes that NetStorage has been configured for SSL access, for example, a user is able to connect to https://server.com/NetStorage.

  1. Ensure that the Apache Rewrite module is loaded. This is disabled by default. To ensure the rewrite module is loaded, remove the remark (pound sign) from the following line in HTTPD.CONF file (found in SYS:\Apache2\conf) :
    LoadModule rewrite_module modules/rewrite.nlm
    If the line doesn't exist in the file, add it near the other LoadModule lines.

  2. The next phase is to enable the rewrite section. Search the httpd.conf for a line that reads :
    <
    VirtualHost _default_:80>

    If it does not exist, add the following two lines to the end of the file :

    <
    VirtualHost _default_:80>
  3. Configure the actual rewrite by using the rewrite extension to Apache. Add the following section to the VirtualHost _default_:80 section (between the virtualhost lines) :

    RewriteEngine On
    RewriteRule ^/netstorage(.*) https://%{HTTP_HOST}/NetStorage$1 [L,R]
    RewriteRule ^/(NetStorage.*) https://%{HTTP_HOST}/$1 [L,R]
    RewriteRule ^/(oneNet.*) https://%{HTTP_HOST}/$1 [L,R]

    The resulting section may appear like :

    <VirtualHost _default_:80>
    RewriteEngine On
    RewriteRule ^/(NetStorage.*) https://%{HTTP_HOST}/$1 [L,R]
    RewriteRule ^/netstorage(.*) https://%{HTTP_HOST}/NetStorage$1 [L,R]
    RewriteRule ^/(oneNet.*) https://%{HTTP_HOST}/$1 [L,R]
    </VirtualHost>
  4. Stop and restart Apache. This is done using the commands :

    AP2WEBDN

    and

    AP2WEBUP
  5. Open the SYS:/tomcat/4/webapps/NetStorage/WEB-INF/classes/Settings.properties file.

  6. Change the ServerProtocol from http:// to https:// . For example, the new line should read :

    ServerProtocol = https://
  7. Change the ServerPort to the SSL port. For example :
    ServerPort = 443
  8. Stop tomcat :
    TC4STOP
  9. Start the tomcat process :
    TOMCAT4
  10. Wait for the tomcat process to start (indicated by a "Listening on 0.0.0.0:9010" line on the logger screen).

  11. Test NetStorage.

Additional Information

Formerly known as TID# 10095783

Feedback service temporarily unavailable. For content questions or problems, please contact Support.