1. Automatically Installing Oracle Solaris 11.4 Systems
  2. Setting Up the AI Server
  3. Configuring an AI Server
  4. Additional AI Server Configurations
  5. Configuring the AI Server's Web Server Files Directory

Configuring the AI Server's Web Server Files Directory

Note:

This section assumes that the AI server and the web server are running on the same system. This guide does not cover web server configuration. To set up a web server, consult other documentation, such as http://httpd.apache.org/docs/.

The web server's directories serve net images, AI manifests, system configuration profiles, and other files needed for installation.

The following properties of the svc:/system/install/server:default SMF service identify the locations for the web server's user files:

  • all_services/webserver_files_dir for files that do not need to be secure.

  • all_services/webserver_secure_files_dir for files that need to be secure.

To define the location of public files, use this set of commands:

$ svccfg -s svc:/system/install/server:default
svc:/system/install/server:default> setprop \
all_services/webserver_files_dir = astring: public-location

svc:/system/install/server:default> refresh
svc:/system/install/server:default> quit

To define the location of secure files, use this set of commands:

$ svccfg -s svc:/system/install/server:default
svc:/system/install/server:default> setprop \
all_services/webserver_secure_files_dir = astring: secure-location

svc:/system/install/server:default> refresh
svc:/system/install/server:default> quit

Tip:

For greatest security, files in the webserver_secure_files_dir directory should be owned by user webservd and group webservd and have no world access.

To view the directories, use one of the following URLs:

  • http://AI-server:5555/files for unsecured files.

  • https://AI-server:5556/secure_files for secured files.

The AI-server can be a host name or an IP address. You can use port numbers other than the default ones. See Configuring the AI Web Server Port Number (-p Option) and Configuring the Secure AI Web Server Port Number (-P Option).

If the AI manifest specifies an IPS package repository that requires a certificate and key, you can store those publisher credentials, and then specify this URI in the AI manifest. Only clients that have security credentials assigned can access this directory.