Bacula-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Bacula-users] TLS setup

2008-11-19 17:20:27
Subject: Re: [Bacula-users] TLS setup
From: Arno Lehmann <al AT its-lehmann DOT de>
To: bacula-users AT lists.sourceforge DOT net
Date: Wed, 19 Nov 2008 23:18:18 +0100 
Hi,

19.11.2008 22:24, Exim List wrote:
> Arno Lehmann wrote:
>> Hi,
>>
>> 19.11.2008 18:25, Exim List wrote:
>>> Hello.
>>>
>>> I wrote a few weeks ago trying to get help on getting Bacula working 
>>> on Windows using TLS encryption.  Are you using that?
>>
>> I use that (in a demonstration environment).
>>
>> The only documentation I needed was the Bacula-project provided one, 
>> but I believe Dan's instruction could be helpful: 
>> http://www.freebsddiary.org/bacula-tls.php
>>
>> Arno
> 
> The link is basic Bacula TLS with no mention of Windows clients.

That doesn't matter as the configuration is OS independent.

> Are you doing _Windows_ clients with TLS?

Yes. Windows Vista here.

> If so, did you use a basic Windows client distribution from Bacula / 
> Sourceforge WITHOUT having to install OpenSSL?  Or did you have to 
> install OpenSSL separately?

Just installed the Bacula client using the installer.

The keys were generated on a linux machine as I didn't want to install
openSSL on windows.

> If you had to install OpenSSL separately, could you list the steps and 
> any configuration changes you had to make for it to work?
> 
> Do you have example config files you would be willing to share (minus 
> passwords, of course)?

Sure...

This is the windows FD config:

FileDaemon {                            # this is me
   Name = Host-fd
   FDport = 9102                # where we listen for the director
   WorkingDirectory = "C:\\ProgramData\\Bacula\\Work"
   Pid Directory = "C:\\ProgramData\\Bacula\\Work"
   Maximum Concurrent Jobs = 2

   PKI Encryption = Yes
   PKI Signatures = Yes
   PKI Keypair = "C:\\ProgramData\\Bacula\\master.pem"
}

Director {
   Name = goblin-dir
   Password = "yes"
}

Director {
   Name = VM-dir
   Password = "test"
}

Messages {
   Name = Standard
   director = VM-dir = all, !skipped, !restored
}

As you see, a minimal configuration.

Unfortunately, I can't access the DIR and SD configuration right now - 
the VM they are in, and which uses TLS, is currently not available to 
me, and I won't have the time to look into it this week. Remind me 
next week, Tuesday or so...

Arno

> Thanks again.
> 
> 

-- 
Arno Lehmann
IT-Service Lehmann
Sandstr. 6, 49080 Osnabrück
www.its-lehmann.de


-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Bacula-users] TLS setup, Exim List
Next by Date:  Re: [Bacula-users] TLS setup, Dan Langille
Previous by Thread:  Re: [Bacula-users] TLS setup, Exim List
Next by Thread:  Re: [Bacula-users] TLS setup, Dan Langille
Indexes:  [Date] [Thread] [Top] [All Lists]