/docs/user/replication.html - Diff - Metacat - Ecoinformatics Redmine

« Previous | Next »

Revision 4496

Added by daigle about 16 years ago

Update replication documentation

     -->
     <HTML>
     <HEAD>
     <TITLE>Metacat</TITLE>
     <TITLE>Metacat Replication</TITLE>
     <link rel="stylesheet" type="text/css" href="./default.css">
     </HEAD>
     <BODY>
-...
       <div class="header1">Table of Contents</div>
       <div class="toc1"><a href="#Intro">Metacat Replication</a></div>
         <div class="toc2"><a href="#Overview">Overview</a></div>
         <div class="toc2"><a href="#DatabasedInfo">Databased Information</a></div>
         <div class="toc2"><a href="#Example">Example</a></div>
           <div class="toc3"><a href="#gamma">What happens with gamma?</a></div>
           <div class="toc3"><a href="#alpha">What happens with alpha?</a></div>
           <div class="toc3"><a href="#lamda">What happens with lamda?</a></div>
       <div class="toc1"><a href="#ControlPanel">The Replication Control Panel</a></div>
       <div class="toc1"><a href="#Certificates">Certificates</a></div>
         <div class="toc2"><a href="#GenerateCertificates">Generate Certificates on both the replication client and server.</a></div>
           <div class="toc3"><a href="#GenerateCertTomcat">Generate Certificate for Tomcat standalone (no Apache)</a></div>
-...
         <div class="toc2"><a href="#RegisterPartner">Register the partner machines certificate</a></div>
       <a name="Intro"></a><div class="header1">Metacat Replication</div>
       <a name="Overview"></a><div class="header2">Overview</div>
       <p>Metacat has built-in replication to allow different Metacat servers to
       share data between themselves. Metacat not only replicates XML documents but
       also data files. </p>
-...
             wind up on lambda.</li>
         </ul>
       </ul>
     <a name="ControlPanel"></a><div class="header1">The Replication Control Panel:</div>
       There is an html control panel for controling replication.  After
       <a href="./Metacatinstall.html">installing</a> Metacat, you can access
       it by going through the Metacat servlet context you have setup and calling up
-...
         into the binary certificates file located at $JAVA_HOME/lib/security/cacerts</li>
         <ul class="list2">
         <li>Run the command:
        	  <div class="code">keytool -genkey -alias &lt;aliasname&gt; -keyalg RSA -validity 800 -keystore cacerts</div>
        	  <div class="code">keytool -genkey -alias &lt;aliasname&gt; -keyalg RSA -validity 800 -keystore $JAVA_HOME/lib/security/cacerts</div>
          where &lt;aliasname&gt; is a unique name that you choose for this cert.  Something like "&lt;hostname-tomcat&gt"
          might be appropriate.</li>
          might be appropriate, where &lt;hostname-tomcat&gt is the name of this host.</li>
         </ul>
       </li>
       <li>
         Password - keytool will ask for a password.  If this is a pre-existing keystore, you will need
         to know its password to modify it.  If you are creating a new keystore, the password you enter
         will become the keystore password.
       </li>
       <li>Sample values when creating certificate</li>
         <ul class="list2">
         <li>What is your first and last name? <b>myserver.nceas.ucsb.edu </b>
-...
           and put it into a local file</li>
         <ul class="list2">
         <li>Run the command:
           <div class="code">keytool -export -alias &lt;aliasname&gt; -file &lt;outputfile&gt;.cert -keystore cacerts</div>
           <div class="code">keytool -export -alias &lt;aliasname&gt; -file &lt;outputfile&gt;.cert -keystore $JAVA_HOME/lib/security/cacerts</div>
           where &lt;aliasname&gt; is the same name you used when you created the certificate.  </li>
         <li>A file named &lt;outputfile&gt;.cert will be created in the same directory where you run the keytool
           command.  You can name the output file anything you like, but keep in mind that it will get sent to the
-...
       <li>Enable SSL in Tomcat
         <ul class="list2">
         <li>Edit the Tomcat server file at $TOMCAT_HOME/conf/server.xml</li>
         <li>uncomment the section that starts with "&lt;Connector port="8443" ...</li>
       	<li>add another attribute to that section that reads:
         <li>
           uncomment the section that starts with "&lt;Connector port="8443" ... (Note: Databased Informationcomments start with
           &lt;!-- and end with --&gt;).
         </li>
       	<li>add two attribute to that section that read:
       	  <div class="code">keystoreFile="&lt;JAVA_HOME&gt;/lib/security/cacerts"</div>
       	  where $JAVA_HOME should be the actual java path.
       	  <div class="code">keystorePass="&lt;keystore_password&gt;"</div>
       	  where &lt;JAVA_HOME&gt; should be the actual java path and &lt;keystore_password&gt; should be the
       	  password you used when you created the keystore.
       	</li>
       	</ul>
       </li>
-...
       replication server.
       <ul class="list1">
       <li>Import the remote certificate by running:
         <div class="code">keytool -import -alias &lt;remotehostalias&gt; -file &lt;remotehostfilename&gt;.cert -keystore cacerts</div>
         <div class="code">keytool -import -alias &lt;remotehostalias&gt; -file &lt;remotehostfilename&gt;.cert -keystore $JAVA_HOME/lib/security/cacerts</div>
         where the &lt;remotehostfilename&gt; is the certificate file you created on the remote machine and
         copied to this machine.  The &lt;remotehostalias&gt; is the name the certificate will use in
         the keystore.  It should be something that identifies the remote host.

Also available in: Unified diff

Project

General

Profile

Metacat

Revision 4496

Added by daigle about 16 years ago