4 Oracle Content Services Protocol Support

This chapter discusses the protocol servers supported by Oracle Content Services, along with the client access paths and software for the supported protocols. Topics include:

• About the Oracle Content Services Protocol Servers

• Using FTP with Oracle Content Services

• Using WebDAV with Oracle Content Services

• Providing Information About Protocol Access to End Users

About the Oracle Content Services Protocol Servers

Users can connect to Oracle Content Services using protocols appropriate to their platform. For example, Windows users can connect using Web Folders, Macintosh users can connect through WebDAV, and UNIX users can connect using FTP. Users on all platforms can connect using HTTP for Web browser-based access.

Oracle Content Services supports the following protocols:

• HTTP, the Hypertext Transfer Protocol, is used for Web browser-based access.

• FTP, the File Transfer Protocol, is used for file transfers across Wide Area Networks such as the Internet.

  The FTP protocol sends unencrypted passwords over the network. For this reason, users must create an FTP password for greater security. See the Oracle Content Services chapter of Oracle Collaboration Suite Security Guide for more information about FTP passwords.

  In addition to FTP, FTPS is supported. You can access Oracle Content Services using either implicit or explicit FTPS. Because FTPS does not send unencrypted passwords over the network, an FTP password is not necessary.

• WebDAV, Web-based Distributed Authoring and Versioning, is an HTTP-related protocol that is designed for Wide Area Networks such as the Internet. Currently, the most widespread WebDAV client is the Web Folders extension to Windows Explorer, also known as Network Places in Windows 2000/XP.

Table 4-1 lists some of the client platforms, protocols, and access methods supported by Oracle Content Services. See OracleMetaLink at http://metalink.oracle.com for complete client certification information.

Table 4-1 Client Platforms and Protocol Support

Client Platform	Protocols Supported	Access UsingFoot 1
Windows	HTTP, WebDAV, FTP/FTPS	Browser, Oracle Drive, Windows Explorer, FTP/FTPS client
Macintosh (Mac OS 10.3)	HTTP, WebDAV, FTP/FTPS	Browser, WebDAV client, FTP client
UNIX	HTTP, FTP/FTPS	Browser, command line
Red Hat Linux Adv. Server 3.0 (Kernel 2.4.9-e.16)	HTTP, FTP/FTPS	Browser, command line

^Footnote 1 For all protocols, if the server to which you are connecting uses DHCP, then you must use the current IP address of the host in the connection syntax instead of the hostname.

Using FTP with Oracle Content Services

FTP is the most lightweight protocol supported by Oracle Content Services and can move large amounts of data faster than the other protocols. For bulk operations, such as migrating files from an existing system, FTP is the protocol of choice. FTP is disabled by default after Oracle Content Services is installed and configured.

Oracle Content Services also supports FTPS, which uses SSL to provide a confidential, integrity-protected channel. There is wide support for FTPS among FTP clients. FTPS should not be confused with SFTP, a service of the Secure Shell that is not related to FTP. FTPS is also disabled by default after Oracle Content Services is installed and configured.

This section contains the following topics:

• Accessing Oracle Content Services Using FTP or FTPS

• Enabling FTP

• Enabling Anonymous FTP Access

• Enabling FTPS

Accessing Oracle Content Services Using FTP or FTPS

Once FTP or FTPS has been enabled, users can use FTP or FTPS with Oracle Content Services, as long as the following requirements are met:

• An FTP or FTPS client must be installed on the user's local computer.

• The user must know which port number to use. The default port number for FTP and for explicit FTPS is 21; the default port number for implicit FTPS is 990.

• For FTP only, each user must use a separate FTP password for greater security. See Oracle Collaboration Suite Security Guide for more information about how users can set the FTP password. You can set an FTP password on the User Preferences page in the Oracle Content Services Web interface.

• Users who are not members of the default Site must specify the realm name when they access Oracle Content Services through FTP/FTPS, in the format username@realmname.

Oracle Content Services supports several FTP Quote commands that users can issue during an FTP or FTPS session. See Appendix F, "FTP Quote Command Reference" for more information.

Enabling FTP

You can enable FTP for Oracle Content Services so that users can upload and download files using FTP. The FTP protocol is disabled by default after Oracle Content Services is installed and configured.

To enable the Oracle Content Services FTP server:

1. Access the Oracle Collaboration Suite Control and navigate to the Content Services Home page.

2. You may want to change the default port number for the FTP server. To do this:

   1. In the Administration section, click Server Configurations.

   2. Click FtpServerConfiguration.

   3. Click IFS.SERVER.PROTOCOL.FTP.Port, in the Properties section.

   4. Update the Value with the desired port number and click OK.

   5. Click OK on the Edit Server Configuration page.

3. Return to the Content Services Home page and click Node Configurations, in the Administration section.

4. Click the name of the node configuration that corresponds to the node where you want to run the FTP server. You can only run the FTP server on regular nodes; you cannot run FTP on HTTP nodes.

5. Scroll down to the Servers table and click FtpServer.

6. Select Active and Initially Started.

7. Click OK on the Edit Server page.

8. Click OK on the Edit Node Configuration page.

9. Return to the Content Services Home page and restart the node.

Repeat this procedure for any additional regular nodes on which you want to run FTP.

Enabling Anonymous FTP Access

For security reasons, anonymous FTP access is disabled by default. If you want to enable anonymous access, you must first modify the FTP server configuration to allow anonymous access, then allow public access to a particular folder or folders in Oracle Content Services.

Once public access has been enabled for a particular folder, users can connect directly to that folder using anonymous FTP. In most cases, anonymous users should use FTP links to connect. For example, if an administrator only enables public access to the folder /us/TestFiles/PublicViewing, users would need to configure an FTP client to connect directly to that folder. Anonymous users would not be able to connect to the root folder and navigate to the PublicViewing folder, because the us and TestFiles folders do not have public access enabled.

Modifying the FTP Server Configuration

To modify the FTP server configuration to allow anonymous access:

1. Connect to the Oracle Collaboration Suite Control and navigate to the Content Services Home page.

2. In the Administration section, click Server Configurations.

3. Click FtpServerConfiguration.

4. In the Properties section, select IFS.SERVER.PROTOCOL.FTP.AnonymousAllowed and click Edit, or just click the property name.

5. Set the Value to True and click OK.

6. Click OK on the Edit Server Configuration page.

7. Return to the Content Services Home page and restart the node.

Enabling the Ability to Grant Public Access

Before you can allow public access to a particular folder, you must ensure that the ability to grant public access has been enabled at the Site level.

To ensure that the ability to grant public access is enabled for the Site:

1. Connect to Oracle Content Services as a user with the Content Administrator and User Administrator roles, such as orcladmin.

2. Change to Administration Mode.

3. Access the Sharing Properties for the root Site folder.

4. Ensure that the option Allow public access to be granted has been enabled.

Allowing Public Access to Oracle Content Services Folders

To grant public access to a particular folder:

1. Connect to Oracle Content Services as a user with the Content Administrator and User Administrator roles, such as orcladmin.

2. Change to Administration Mode.

3. Access the Sharing Properties for the folder to which you want to grant public access.

4. Add the special group Public to this folder. If you cannot add this group, make sure that you enabled the ability to grant public access at the Site level, as described in the previous procedure.

Enabling FTPS

You can enable FTPS for Oracle Content Services so that users can upload and download files using FTPS. The FTPS protocol is disabled by default after Oracle Content Services is installed and configured. Users sign on to Oracle Content Services over FTPS using their regular Single Sign-On password.

There are two types of FTPS supported by Oracle Content Services: Implicit FTPS and Explicit FTPS. Implicit FTPS secures the channel on connection, while Explicit FTPS secures the connection when the client issues an AUTH command. An Explicit FTPS connection starts out as a regular FTP connection; the connection becomes secure only after the client issues an AUTH command. You can choose to enable the Implicit FTPS server, the Explicit FTPS server, or both.

To set up FTPS, you first need to use Oracle Wallet Manager to create a new wallet and obtain a security certificate. You must configure the wallet for Auto Login. For more information, see Oracle Collaboration Suite Security Guide and Oracle Database Advanced Security Administrator's Guide.

Once you have obtained a security certificate, you can use the Oracle Collaboration Suite Control to enable the Oracle Content Services FTPS servers.

Enabling the Explicit FTPS Server

To enable Explicit FTPS:

1. Connect to the Oracle Collaboration Suite Control and navigate to the Content Services Home page.

2. Click Server Configurations in the Administration section.

3. Click FtpServerExplicitConfiguration.

4. Select IFS.SERVER.PROTOCOL.FTP.Port and click Edit, or just click the property name.

5. Update the Value with the appropriate Explicit FTPS port number (for example, 21) and click OK.

6. Select IFS.SERVER.PROTOCOL.FTPS.WALLET.Location and click Edit, or just click the property name.

7. Update the value with the location of the wallet file (for example, /CSHome/WALLET/cwallet.sso) and click OK.

8. Click OK on the Edit Server Configuration page.

9. Return to the Content Services Home page and click Node Configurations in the Administration section.

10. Click the name of the regular node configuration that corresponds to the node where you want to run the Explicit FTPS server.

11. In the Servers section, select FtpsServerExplicit and click Edit, or just click the server name.

12. Select Active and Initially Started, then click OK.

13. Click OK on the Edit Node Configuration page.

14. Return to the Content Services Home page and restart the node.

Enabling the Implicit FTPS Server

To enable Implicit FTPS:

1. Connect to the Oracle Collaboration Suite Control and navigate to the Content Services Home page.

2. Click Server Configurations in the Administration section.

3. Click FtpServerImplicitConfiguration.

4. Select IFS.SERVER.PROTOCOL.FTP.Port and click Edit, or just click the property name.

5. Update the Value with the appropriate Implicit FTPS port number (for example, 990) and click OK.

6. Select IFS.SERVER.PROTOCOL.FTPS.WALLET.Location and click Edit, or just click the property name.

7. Update the value with the location of the wallet file (for example, /CSHome/WALLET/cwallet.sso) and click OK.

8. Click OK on the Edit Server Configuration page.

9. Return to the Content Services Home page and click Node Configurations in the Administration section.

10. Click the name of the regular node configuration that corresponds to the node where you want to run the Implicit FTPS server.

11. Select FtpsServerImplicit and click Edit, or just click the server name.

12. Select Active and Initially Started, then click OK.

13. Click OK on the Edit Node Configuration page.

14. Return to the Content Services Home page and restart the node.

Using WebDAV with Oracle Content Services

The WebDAV protocol is enabled by default after Oracle Content Services is installed and configured.

Accessing Oracle Content Services Using HTTP or WebDAV

Use the following URL to access Oracle Content Services with HTTP or WebDAV:

http://server_name:port/content/dav

The value for port varies depending on your platform, and depending on whether OracleAS Web Cache is running. If OracleAS Web Cache is running, the typical values are:

• 7777 for UNIX systems

• 80 for Windows systems (unless port 80 is in use when the Applications tier is configured)

If OracleAS Web Cache is not running, the port number is typically 7778.

Users who are not members of the default Site must specify the realm name when they access Oracle Content Services through WebDAV, in the format username@realmname.

Providing Information About Protocol Access to End Users

You can choose to deploy the End-User Documentation Portal in order to provide your users with information about Oracle Content Services protocol access. The End-User Documentation Portal is a set of customizable HTML pages that provide an overview of Oracle Collaboration Suite clients and access methods, including information about how to connect to Oracle Content Services using the supported protocols.

The End-User Documentation Portal also includes links to the FAQ & Troubleshooting site on the Oracle Technology Network (OTN), as well as links to Oracle Collaboration Suite user tutorials.

For information about deploying the End-User Documentation Portal, see "Managing the End-User Documentation Portal" in Chapter 5 of Oracle Collaboration Suite Administrator's Guide.