User Tools

Site Tools


doc:howto:x2gobroker

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
doc:howto:x2gobroker [2017/02/10 17:03]
stefanbaur [Purpose of this document] - added WiP note
doc:howto:x2gobroker [2017/02/28 09:21] (current)
stefanbaur [pg1.x2go.example.com] - no nfs mounts on pg1
Line 1: Line 1:
 ====== X2Go Session Broker Demo Environment Setup ====== ====== X2Go Session Broker Demo Environment Setup ======
-<note important>Work in Progress - at present, session resuming doesn't work, even though it should.</note>+
 ===== Purpose of this document ===== ===== Purpose of this document =====
  
 This document takes you through the steps required to set up a simple X2Go Session Broker demo environment, consisting of a test client (x2goclient1.x2go.example.com) and the following servers: This document takes you through the steps required to set up a simple X2Go Session Broker demo environment, consisting of a test client (x2goclient1.x2go.example.com) and the following servers:
-  * ldap1.x2go.example.com +  * ldap1.x2go.example.com - an LDAP server for centralized authentication 
-  * nfs1.x2go.example.com +  * nfs1.x2go.example.com - an NFS server to have central home directories 
-  * pg1.x2go.example.com +  * pg1.x2go.example.com - a postgres server for the X2Go session database 
-  * x2gobroker1.x2go.example.com +  * x2gobroker1.x2go.example.com - an X2Go Broker Server, because that's what this demo is all about 
-  * x2goserver1.x2go.example.com +  * x2goserver1.x2go.example.com - an X2Go Server, so the broker has a server it can direct clients to 
-  * x2goserver2.x2go.example.com+  * x2goserver2.x2go.example.com - another X2Go Server, for loadbalancing
  
 <note warning> <note warning>
Line 44: Line 44:
   * These installations use the Debian preseed mechanism.   * These installations use the Debian preseed mechanism.
     * Thus, obviously, you will require a Debian ISO image.     * Thus, obviously, you will require a Debian ISO image.
-    * We used the Debian 8.7.1, i386, netinst image - however, any Debian 8.x image should do.+    * We used the [[http://cdimage.debian.org/debian-cd/current/i386/iso-cd/debian-8.7.1-i386-netinst.iso|Debian 8.7.1, i386, netinst iso image]] - however, any [[https://cdimage.debian.org/mirror/cdimage/archive/|Debian 8.x iso image]] of the i386 or amd64 variety should do.
     * Preseed files can be included into a custom iso image, but for beginners, this may seem rather complicated - That's why we suggest using a web server to store them instead.     * Preseed files can be included into a custom iso image, but for beginners, this may seem rather complicated - That's why we suggest using a web server to store them instead.
     * If you don't have Apache/Lighttpd, or any other web server installed, you can spawn a temporary one using python (you need to be root to run it on the default "web" port 80):<code>cd /directory/where/you/keep/the/preseed_files && python -m SimpleHTTPServer 80</code>     * If you don't have Apache/Lighttpd, or any other web server installed, you can spawn a temporary one using python (you need to be root to run it on the default "web" port 80):<code>cd /directory/where/you/keep/the/preseed_files && python -m SimpleHTTPServer 80</code>
Line 54: Line 54:
   * Each system will power down once the installation is complete. **DO NOT** power any one of them up until ALL of them are completely installed and shut down!   * Each system will power down once the installation is complete. **DO NOT** power any one of them up until ALL of them are completely installed and shut down!
   * Once installed, power them up in exactly the same sequence - and **WAIT** until bootup is complete before powering up the next!   * Once installed, power them up in exactly the same sequence - and **WAIT** until bootup is complete before powering up the next!
 +
 +==== Preseeding - Manual Steps ====
 +These are the steps you have to perform manually:
 +  * {{:doc:howto:ldap1-1.png?200|}} Boot the ISO. It will beep at you, and the option "Install" will be highlighted.
 +  * {{:doc:howto:ldap1-2.png?200|}} Hit the TAB key (the key to the left <- of the "Q" key on most keyboards), and enter <code> auto url=http://your-web-server/preseed_namegoeshere hostname=namegoeshere domain=x2go.example.com</code> behind the part that says <code>--- quiet</code>
 +  * You can either choose to confirm this by pressing the ENTER key, or add further options as listed in each preseed file's comment header.
 +  * If you choose not to add further options, a few questions will be asked interactively, namely, the ones you can see in these screenshots:
 +
 +{{:doc:howto:ldap1-3.png?200|}} {{:doc:howto:ldap1-4.png?200|}} {{:doc:howto:ldap1-5.png?200|}} {{:doc:howto:ldap1-6.png?200|}} {{:doc:howto:ldap1-7.png?200|}} {{:doc:howto:ldap1-8.png?200|}}
  
 <note tip>Each entry below contains a hint regarding the minimum requirements for the individual system. If you're using virtual machines, and are low on disk space, feel free to assign sparse files/growing disk images. The systems don't really need that much space right away, but if you assign smaller sizes, the installer might become confused and partition the virtual disk in unexpected ways.</note> <note tip>Each entry below contains a hint regarding the minimum requirements for the individual system. If you're using virtual machines, and are low on disk space, feel free to assign sparse files/growing disk images. The systems don't really need that much space right away, but if you assign smaller sizes, the installer might become confused and partition the virtual disk in unexpected ways.</note>
 <note tip>If you click on the name of a preseed file, like "preseed_ldap1" below, you will be offered to download it - that's easier than copy-pasting each file.</note> <note tip>If you click on the name of a preseed file, like "preseed_ldap1" below, you will be offered to download it - that's easier than copy-pasting each file.</note>
-==== ldap1.xgo.example.com ====+==== ldap1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 4 GB+  * Minimum disk space required: 4 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 222: Line 231:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
Line 237: Line 246:
  echo "COMMENT: about maintainability - it is to get a small, simple, static LDAP setup up" ;\  echo "COMMENT: about maintainability - it is to get a small, simple, static LDAP setup up" ;\
  echo "COMMENT: and running so you don't have to bother with LDAP when all you want to do is" ;\  echo "COMMENT: and running so you don't have to bother with LDAP when all you want to do is" ;\
- echo "COMMENT: test-drive the broker setup." \;+ echo "COMMENT: test-drive the broker setup." ;\
  echo '(cd /usr/share/migrationtools && LDAP_BASEDN="dc=x2go,dc=example,dc=com" LDAPHOST="ldap1" LDAP_BINDDN="cn=admin,dc=x2go,dc=example,dc=com" LDAP_BINDCRED="start" LDAP_PROFILE="no" LDAPADD="/usr/bin/ldapadd -c" ETC_ALIASES=/dev/null ./migrate_all_online.sh || true)' >>/target/etc/rc.local ;\  echo '(cd /usr/share/migrationtools && LDAP_BASEDN="dc=x2go,dc=example,dc=com" LDAPHOST="ldap1" LDAP_BINDDN="cn=admin,dc=x2go,dc=example,dc=com" LDAP_BINDCRED="start" LDAP_PROFILE="no" LDAPADD="/usr/bin/ldapadd -c" ETC_ALIASES=/dev/null ./migrate_all_online.sh || true)' >>/target/etc/rc.local ;\
  echo "COMMENT: This is the cleanup job for the LDAP migration, so it doesn't run more than once." ;\  echo "COMMENT: This is the cleanup job for the LDAP migration, so it doesn't run more than once." ;\
Line 322: Line 331:
 </file> </file>
  
-==== nfs1.xgo.example.com ====+==== nfs1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 20 GB+  * Minimum disk space required: 20 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 479: Line 488:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
Line 540: Line 549:
 </file> </file>
  
-==== pg1.xgo.example.com ====+==== pg1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 20 GB+  * Minimum disk space required: 20 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 695: Line 704:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
- echo "COMMENT: This is so /home gets mounted from nfs1" ;\ 
- echo -e 'nfs1:/export/home\t/home\tnfs\tsoft,intr,rsize=8192,wsize=8192\t0\t0' >>/target/etc/fstab ;\ 
  echo "COMMENT: This is so dnsmasq on ldap1 is queried for DNS first" ;\  echo "COMMENT: This is so dnsmasq on ldap1 is queried for DNS first" ;\
  sed 's/#prepend domain-name-servers 127.0.0.1;/prepend domain-name-servers 192.168.154.146;/' -i /target/etc/dhcp/dhclient.conf ;\  sed 's/#prepend domain-name-servers 127.0.0.1;/prepend domain-name-servers 192.168.154.146;/' -i /target/etc/dhcp/dhclient.conf ;\
Line 765: Line 772:
 </file> </file>
  
-==== x2gobroker1.xgo.example.com ====+==== x2gobroker1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 4 GB+  * Minimum disk space required: 4 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 888: Line 895:
 # sources.list line will be left commented out # sources.list line will be left commented out
  
-CHANGE THIS - you need to download this keyfile onto your web server +When this key doesn't work any more, switch entries 
-run these gpg commands to download it: +#d-i apt-setup/local0/key string http://packages.x2go.org/pub.key 
-# gpg --keyserver keys.gnupg.net --recv-keys E1F958385BFE2B6E +d-i apt-setup/local0/key string http://packages.x2go.org/debian-old-pub.key
-# gpg -a --export E1F958385BFE2B6E > x2go.key.gpg +
-d-i apt-setup/local0/key string http://192.168.0.224/x2go.key.gpg+
  
 # Task and Package Selection # Task and Package Selection
Line 918: Line 923:
 x2gobroker-authservice \ x2gobroker-authservice \
 x2gobroker-daemon \ x2gobroker-daemon \
 +x2gobroker-loadchecker \
 x2gobroker-ssh x2gobroker-ssh
  
Line 944: Line 950:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
Line 957: Line 963:
  echo "COMMENT: This patches the x2gobroker configuration files the way we need them to be for our demo." ;\  echo "COMMENT: This patches the x2gobroker configuration files the way we need them to be for our demo." ;\
  sed -i -e '/^host=/chost=x2goserver1.x2go.example.com,x2goserver2.x2go.example.com' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\  sed -i -e '/^host=/chost=x2goserver1.x2go.example.com,x2goserver2.x2go.example.com' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\
 + sed -i -e '/^fullscreen=/cfullscreen=true' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\
  sed -i -e '/^#default-agent-query-mode/adefault-agent-query-mode=SSH' /target/etc/x2go/x2gobroker.conf ;\  sed -i -e '/^#default-agent-query-mode/adefault-agent-query-mode=SSH' /target/etc/x2go/x2gobroker.conf ;\
  sed -i -e '/^#default-use-load-checker/adefault-use-load-checker=true' /target/etc/x2go/x2gobroker.conf ;\  sed -i -e '/^#default-use-load-checker/adefault-use-load-checker=true' /target/etc/x2go/x2gobroker.conf ;\
Line 985: Line 992:
  sed -i -e '/^command=SHADOW/aacl-groups-deny=ALL' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\  sed -i -e '/^command=SHADOW/aacl-groups-deny=ALL' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\
  sed -i -e '/^command=SHADOW/aacl-groups-allow=group-shadow' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\  sed -i -e '/^command=SHADOW/aacl-groups-allow=group-shadow' /target/etc/x2go/broker/x2gobroker-sessionprofiles.conf ;\
 + echo "COMMENT: These patches fix bugs that are still present in the current stable release" ;\
 + sed -i -e 's/if pam.pam:/if hasattr(pam, "pam"):/' /target/usr/sbin/x2gobroker-authservice /target/usr/lib/python2.7/dist-packages/x2gobroker/authmechs/pam_authmech.py ;\
 + sed -i -e "s/'hostname'/'hostaddr'/" /target/usr/sbin/x2gobroker-testagent ;\
 + echo "COMMENT: This enables the HTTP Session Broker for SystemD and SysVinit systems" ;\
 + sed -i '/#DAEMON_BIND_ADDRESS=127.0.0.1:8080/aDAEMON_BIND_ADDRESS=*:8080' /target/etc/default/x2gobroker-daemon /target/etc/x2go/broker/defaults.conf ;\
  echo "COMMENT: This patches rc.local so the following set of commands is run" ;\  echo "COMMENT: This patches rc.local so the following set of commands is run" ;\
  echo "COMMENT: exactly *once* - at the first boot after installation." ;\  echo "COMMENT: exactly *once* - at the first boot after installation." ;\
Line 994: Line 1006:
  echo "COMMENT: This is the cleanup job for the dpkg-reconfigure call, so it doesn't run more than once." ;\  echo "COMMENT: This is the cleanup job for the dpkg-reconfigure call, so it doesn't run more than once." ;\
  echo 'sed -i -e "/dpkg/d" /etc/rc.local' >>/target/etc/rc.local ;\  echo 'sed -i -e "/dpkg/d" /etc/rc.local' >>/target/etc/rc.local ;\
- echo "COMMENT: We're cheating here:" \n + echo "COMMENT: We're cheating here:" ;
- echo "COMMENT: We're calling the pubkeyauthorizer on x2gobroker, rather than from each x2goserver." \+ echo "COMMENT: We're calling the pubkeyauthorizer on x2gobroker, rather than from each x2goserver." ;\ 
- echo "COMMENT: That way, we don't have to open :8080 for anything more than localhost." \;+ echo "COMMENT: That way, we don't have to open :8080 for anything more than localhost." ;\
  echo 'x2gobroker-pubkeyauthorizer --broker-url http://localhost:8080/pubkeys/' >>/target/etc/rc.local ;\  echo 'x2gobroker-pubkeyauthorizer --broker-url http://localhost:8080/pubkeys/' >>/target/etc/rc.local ;\
  echo "COMMENT: Now we create a directory (watch permissions/ownership!) on the NFS share, and dump the generated key file there." ;\  echo "COMMENT: Now we create a directory (watch permissions/ownership!) on the NFS share, and dump the generated key file there." ;\
Line 1053: Line 1065:
 </file> </file>
  
-==== x2goserver1.xgo.example.com ====+==== x2goserver1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 8 GB+  * Minimum disk space required: 8 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 1176: Line 1188:
 # sources.list line will be left commented out # sources.list line will be left commented out
  
-CHANGE THIS - you need to download this keyfile onto your web server +When this key doesn't work any more, switch entries 
-run these gpg commands to download it: +#d-i apt-setup/local0/key string http://packages.x2go.org/pub.key 
-# gpg --keyserver keys.gnupg.net --recv-keys E1F958385BFE2B6E +d-i apt-setup/local0/key string http://packages.x2go.org/debian-old-pub.key
-# gpg -a --export E1F958385BFE2B6E > x2go.key.gpg +
-d-i apt-setup/local0/key string http://192.168.0.224/x2go.key.gpg+
  
 # Task and Package Selection # Task and Package Selection
Line 1237: Line 1247:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
Line 1338: Line 1348:
 </file> </file>
  
-==== x2goserver2.xgo.example.com ====+==== x2goserver2.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 8 GB+  * Minimum disk space required: 8 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 1461: Line 1471:
 # sources.list line will be left commented out # sources.list line will be left commented out
  
-CHANGE THIS - you need to download this keyfile onto your web server +When this key doesn't work any more, switch entries 
-run these gpg commands to download it: +#d-i apt-setup/local0/key string http://packages.x2go.org/pub.key 
-# gpg --keyserver keys.gnupg.net --recv-keys E1F958385BFE2B6E +d-i apt-setup/local0/key string http://packages.x2go.org/debian-old-pub.key
-# gpg -a --export E1F958385BFE2B6E > x2go.key.gpg +
-d-i apt-setup/local0/key string http://192.168.0.224/x2go.key.gpg+
  
 # Task and Package Selection # Task and Package Selection
Line 1522: Line 1530:
  echo "COMMENT: This is for homedir autocreation." ;\  echo "COMMENT: This is for homedir autocreation." ;\
  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\  echo -e 'session required\tpam_mkhomedir.so\tskel=/etc/skel umask=0022' >>/target/etc/pam.d/common-session ;\
- echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\ + echo "COMMENT: This is so LDAP users are added to local groups when logging in to a remote system." ;\
  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\  echo -e "auth\trequired\tpam_group.so\tuse_first_pass" >>/target/etc/pam.d/common-auth ;\
- echo "common-auth;*;*;A10000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\+ echo "*;*;*;Al0000-2400;users,x2gousers,x2gobroker-users" >>/target/etc/security/group.conf ;\
  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\  echo "COMMENT: This makes sure error messages during bootup remain on screen." ;\
  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\  sed -i -e '/^1/ s/getty/getty --noclear/' /target/etc/inittab ;\
Line 1592: Line 1600:
 </file> </file>
  
-==== x2goclient1.xgo.example.com ====+==== x2goclient1.x2go.example.com ====
   * Minimum RAM required: 256MB   * Minimum RAM required: 256MB
-  * Minimum Disk space required: 4 GB+  * Minimum disk space required: 4 GB
   * Also required: any supported eth0 network interface   * Also required: any supported eth0 network interface
  
Line 1715: Line 1723:
 # sources.list line will be left commented out # sources.list line will be left commented out
  
-CHANGE THIS - you need to download this keyfile onto your web server +When this key doesn't work any more, switch entries
-# run these gpg commands to download it: +
-# gpg --keyserver keys.gnupg.net --recv-keys E1F958385BFE2B6E +
-# gpg -a --export E1F958385BFE2B6E > x2go.key.gpg +
-#d-i apt-setup/local0/key string http://192.168.0.224/x2go.key.gpg+
 #d-i apt-setup/local0/key string http://packages.x2go.org/pub.key #d-i apt-setup/local0/key string http://packages.x2go.org/pub.key
 d-i apt-setup/local0/key string http://packages.x2go.org/debian-old-pub.key d-i apt-setup/local0/key string http://packages.x2go.org/debian-old-pub.key
Line 1782: Line 1786:
  in-target apt-get clean ;\  in-target apt-get clean ;\
  echo "COMMENT: This last step creates an X2GoClient-in-Broker-Mode desktop entry" ;\  echo "COMMENT: This last step creates an X2GoClient-in-Broker-Mode desktop entry" ;\
- mkdir /target/home/localuser/Desktop ;\ + mkdir /target/home/localuser/Desktop ;\ echo '[Desktop Entry]' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo '[Desktop Entry]' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Version=1.0' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Version=1.0' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Terminal=false' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Terminal=false' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Icon=x2goclient' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Icon=x2goclient' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Type=Application' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Type=Application' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Categories=Internet' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Categories=Internet' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Exec=x2goclient --broker-url=ssh://x2gobroker1.x2go.example.com:/usr/bin/x2gobroker-ssh --add-to-known-hosts' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Exec=x2goclient --broker-url=ssh://x2gobroker1.x2go.example.com:/usr/bin/x2gobroker --add-to-known-hosts' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Name=X2GoClient in SSH Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Name=X2GoClient in Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'GenericName=X2GoClient in SSH Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'GenericName=X2GoClient in Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'Comment=Starts X2GoClient in SSH Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'Comment=Starts X2GoClient in Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\ + echo 'StartupNotify=true' >>/target/home/localuser/Desktop/x2goclient-broker-ssh.desktop ;\ 
- echo 'StartupNotify=true' >>/target/home/localuser/Desktop/x2goclient-broker.desktop ;\+ echo '[Desktop Entry]' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Version=1.0' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Terminal=false' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Icon=x2goclient' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Type=Application' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Categories=Internet' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Exec=x2goclient --broker-url=http://x2gobroker1.x2go.example.com:8080/plain/inifile --add-to-known-hosts' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Name=X2GoClient in HTTP Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'GenericName=X2GoClient in HTTP Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'Comment=Starts X2GoClient in HTTP Broker Mode' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
 + echo 'StartupNotify=true' >>/target/home/localuser/Desktop/x2goclient-broker-http.desktop ;\ 
  echo "End Post-Install Setup/Config"  echo "End Post-Install Setup/Config"
  
doc/howto/x2gobroker.1486746213.txt.gz · Last modified: 2017/02/10 17:03 by stefanbaur