Chapter 3. Installation
Prev Part II. Installation and Configuration Guide Next

Chapter 3. Installation

Table of Contents

1. Preparations
1.1. Software
1.2. Hardware
2. Configure
2.1. Host System Configuration
2.2. Host System Configuration (of the upcoming OpenCA 1.0)
2.2.1. OpenCA user and group
2.2.2. Daemon user and group
2.3. Filesystem paths
2.3.1. Common Prefixes
2.3.2. Component Prefixes
2.3.3. OpenSSL prefixes (OpenCA 1.0 only)
2.4. Webserver specific stuff
2.4.1. Common server informations
2.4.2. Filesystem Paths
2.4.3. URL Paths
2.5. Email
2.6. Compiling features
3. Installation
4. config.xml (for RPMs and DEBs too)
4.1. Configuration sections of config.xml
4.1.1. General options
4.1.2. web server configuration
4.1.3. ldap server configuration
4.1.4. database configuration
4.1.5. module configuration
4.1.6. configuration of relative paths
4.1.7. configuration of SCEP
4.1.8. Dataexchange
4.2. How to setup two management interfaces on one server?
4.2.1. Online Components
4.2.2. Offline Components
4.2.3. OPENCADIR/etc/menu.xml

1. Preparations

1.1. Software

OpenCA is not a complete monolithic system. It uses several software products from other developers of the Open Source community. The following things are used:

  • Apache

  • mod_ssl

  • OpenSSL

  • OpenLDAP

  • Perl

We use a lot of different Perl modules. Beginning with OpenCA 0.9.2 we no longer install all foreign modules. This is the normal behaviour of every Open Source project. The following should give you an overview about the required modules. Please note that you must install at minimum the listed version because some earlier versions like for example Net::Server include serious bugs.

ModuleVersionComment
Authen::SASL2.04 required by Net::LDAP for SASL authentication - if you do not use SASL then you do not need it
CGI::Session3.95required for our own session handling
Convert::ASN10.18???
Digest::HMAC1.01required by Authen::SASL
Digest::MD52.24this is usually part of Perl itself
Digest::SHA12.02required by OpenCA itself
Encode::Unicode???required by OpenCA for the internationalization stuff
IO::Socket::SSL0.92???
IO::stringy2.108???
MIME::Base642.20required for Base64 encoding and decoding
MIME::Lite3.01required for OpenCA mail handling
MIME-tools5.411required for OpenCA mail handling
MailTools1.58required for OpenCA mail handling
Net-Server0.86required for OpenCA daemon - the version is important
URI1.23???
XML::Twig3.09used for XML parsing

Warning

Please read the file README in the distribution of XML::Twig which you use really carefully. There are several incompatibilities with some versions of XML::Parser and expat. The used version of Perl is heavily important too.

libintl-perl1.10this is our interface for the i18n stuff
perl-ldap0.28Perl's LDAP interface

Table 3.1. External Perl modules

1.2. Hardware

OpenCA was tested on several softwarearchitectures but not on so many hardware architectures. Therefore we publish a list of used hardware. Please remember that OpenCA can be used on any system which support Apache, mod_ssl, OpenSSL and Perl. So if you have Unix box then it is usually possible to run an OpenCA on it.

  • i386 with Linux, FreeBSD, OpenBSD and NetBSD

  • UltraSparc with Solaris 8 and Linux

  • PowerPC with AIX

Document generated: 2005-08-05T17:53+0200

Prev Up Next
Preface Home 2. Configure