My 3.4 Standalone Gateway Install

[peterpugh]

Grabbed one of the last Beta's http://sourceforge.net/projects/zentyal/files/Incoming/zentyal-3.4-daily-amd64.iso/download

Set up the VM in virtualbox.

If I wanted custom partitions then Expert mode, but for a Beta test. Just hit enter.

Pick the right Nic that is connected to the internet and give yourself a hostname zentyal in my case.

Username & Password

Then finally reboot.

Logon and start your basic config.

[peterpugh]

I have a personal preference that the basic roles of gateway, infrastructure, office and communications add to much in one go.

I like to set up my Zentyal simple and the only thing I select is the network module.

So that will bring in network objects, network services and the network config.

Click OK and a very basic setup begins.

I skip the network setup and do it after because I am going to use bonding and the initial config still has to catch up.

[peterpugh]

My network settings is to create a bonded network on eth0 & eth1.

Normally I would use 4x 1GbE Nics to create a 3GbE LAN.

For the Beta test its a VM with 3 nics with the third being my WAN and ticked external.

So eth0 & eth1 I set to join a bond bond0

eth2 is set to DHCP and external and will get its IP from the DHCP of the router.

Bond0 I set to use TLB bond mode.

Set a static LAN address of my server to 192.168.3.1 with a standard subnet.

Click save and then remember to enable the module in module status.

[peterpugh]

Then I change the domain name in system > general and move the admin port of 443 which is the standard https port.

Make sure your hostname is different to your domain.

When you click save the browser will stick because its now pointing at the wrong address.

https://localhost:10100 or whatever port you choose. Refresh.

Just going to have a quick look at the software modules and there are some updates.

So going to install them.

PS change the homepage of your browser to the new webadmin address.

[peterpugh]

This what I call my basic Zentyal install.

In the software modules I am going to pick, DHCP, DNS, Firewall and NTP.

Click install and then when the processes chill click save.

Then add a default scope for the DHCP for my LAN, imaginatively called LAN.
Make sure the DHCP NTP is set to local Zentyal as important to Kerberos.

My scope start at x.x.x.65 to leave some space for statics, its up to you.

Again enable those modules in module status.

You might get a strange message about corruption on each enable. https://localhost:10100 and refresh to get back.

Wait for the processes to slow and click save.

You might also want to add the Ubuntu updates at this stage. Software management >  System Updates

Have my basic Zentyal setup and a reboot will do no harm. In this case I am going to shut down and clone my VM.

System > Halt / Reboot > Reboot

[peterpugh]

Samba4 (filesharing & domain services) and Openchange in my opinion are the big Zentyal modules.

I reboot before then install Samba4. Reboot

Install Openchange and reboot. Just seems to create 100% results.

So Samba4 first.

Software Management > Zentyal Components

Select File Sharing & domain sevices this will also pull in users and groups.

Click install

Wait for the processes to chill and enable both modules.

If it times out just refresh the webadmin page to https://localhost:[adminport]

Click save and check the dashboard that the module is running.

I suggest a reboot.

[peterpugh]

Openchange & Openchange webmail.

It may seem quite a lot but I have found both seem to install at the same time.

Again this will bring in other modules.

Mail service, Certificate authority, Web server, Openchange Server and Openchange Webmail.

Install.

Next certificate authority and create a general cert.

Now if you go to the Openchange Server settings it will ask you to create a virtual mail domain for your domain.
Zentyal.lan which is my internal domain. My external domain for email and Web is Zentyal.co.uk and this is a registered domain (It isn't just made it up for testing)

So I create my first organisation in Openchange so configure.
My outgoing mail domain is set to Zentyal.co.uk and click change.

I should read the docs but I think this is correct for a gateway but at this moment unsure of settings for a single Nic setup. (haven't thought much about it yet)

I get a DNS error for RPC but I am going to create a Apache virtual domain that will also create a DNS record for Zentyal.co.uk

If you enable SLL then you will need also to enable the service certificates in the Certificate Authority.

After creating a Apache virtual name I suggest check your DNS as Zentyal seems to get confused about TLD's.
In my case I have a DNS entry for .co.uk and an extra hostname of zentyal. Delete the zentyal host name and correct the DNS entry or other any .co.uk will be confused when it looks for it on your server.

You should see that the RPC error is gone because Openchange now knows what IP the RPC should be hosted at.

I think that is correct, but I am niether a Dev or a member of Zentyal.

So enable your RPC on HTTPS the Outlook default. I presume this is where HAproxy comes in as it will allow both the RPC and Apache to listen on 443.

You might find you need to refresh the browser with the webadmin default as HAproxy does its port magic.

Guess we need to create some users?

[peterpugh]

Ok users its quite probable that you might want different Group Policies.
These are applied at an OU level.

So on the top level Domain tree (zentyal.lan) highlight it and click +

I am going to create two OU's Admin & Test

Then click on the Admin OU and click + to create a user.
I am going to create my first admin user zenadmin.
Add that user and then click on him and add him to the Domain Admins group. Its a Domain Admin and needed to join a domain.

On the groups OU click plus and create a Test group.
We will also create a new security group called test.

Then on the Test OU I am going to create a user Test and also add to the Test security group.