Installing Kerberos and Arla (AFS) on Mac OS X
Below you will find instructions on how to install Arla (AFS) on your Mac
OS X box
Note: This guide is intended for people at the Department of Physics, Stockholm
Univeristy. It may prove useful for other pepole too, but some topics are clearly
site and field specific.
This guide will install some additional Kerberos tools and the AFS implementation
Arla. An alternative to Arla is OpenAFS. If you prefer that, see
this page.
NOTE: Mac OS 10.2 or later is required
for these instructions to work.
If you have any questions, send me an e-mail.
- Get your account kerberized.
To be able to connect to AFS disks using Kerberos, your account needs to
be kerberized. If this is not already done, ask Iouri to fix this for
your account.
- Install Kerberos-Extras.
Kerberos is included with Mac OS 10.2, but these extras will give you some
extra nice features.
Download and install Kerberos-Extras from MIT. They can be downloaded from
this
page.
- Install the mit.edu.Kerberos file.
Install the Fysikum configuration file by downloading it from
here (control-click / right-click). Save it as /Library/Preferences/edu.mit.Kerberos.
Your Kerberos configuration is now complete. In
/Applications/Utilities/ you will find a program called Kerberos
with which you can aquire the needed tickets. If you don't like graphical
user interfaces, you can also get tickets by typing kinit
<username>@fysik.su.se in the terminal.
- Install Arla.
You are now ready to get AFS working. This is handled by a program called
Arla. Download it from here
and then install it. As of this writing, the latest version is 0.35.11pre2.
(Also see this page for more information)
- Configure Arla.
If the realm fysik.su.se is not included in /usr/arla/etc/CellServDB,
add the following lines to the end of
/usr/arla/etc/CellServDB
>fysik.su.se # Physics Department Stockholm University
130.237.205.36 # sysafs1.fysik.su.se
130.237.205.72 # sysafs2.fysik.su.se
130.237.205.57 # sysafs3.fysik.su.se
Change the file /usr/arla/etc/ThisCell
so that it reads
fysik.su.se
- Launch Arla.
You can now launch ArlaConfiguration
that is found in /Applications/Arla/.
This is the program you want to launch when turning on AFS. In this program
you should first authenticate you by clicking the lock in the lower-left conrer.
Then go to CellSetup and make sure that fysik.su.se is selected at the bottom.
You should then go back to General and Start Arla. You can there also select
to start Arla automatically at boot. This would presumably work for stationary
computers, but on a laptop you typically have to go to ArlaConfigurator and
start Arla manually when you want access to AFS. If you have got your tickets
with Kerberos and started Arla, you should now see the AFS volumes under /afs/.
- Get access to your afs files.
To get access to your AFS files you should first of all have obtained a Kerberos
ticket with either the Kerberos application or with kinit as described
under
3. above.
You should then get tokens for the fysik.su.se AFS system. Do this either by
lunching Afslog in
/Applications/Arla/ and pressing 'Authenticate' or by typing
/usr/arla/bin/aklog fysik.su.se in the terminal (fysik.su.se is not needed
if you only have Arla configured for one cell). You can now access your AFS
home directory in
/afs/fysik.su.se/home/<first_letter_of_username>/<username>/.
In the Finder, choose 'Go->Go to folder...' and enter this address to get
there or cd to that path in ther terminal.
- Known problems.
There seems to be a problem with Arla that it doesn't show the afs
disks in the finder, even if they are accessible via the terminal.
There is also a problem that .fysik.su.se-files are not shown which means that
working on e.g. the Fysikum web pages doesn't work.
Optional installs/configurations
- You can configure your machine to automatically give you a Kerberos ticket
when you log in. If you want to do this, follow the instructions here.
Links
This
page was last modified
2004-10-08
.