Adito
From Amahi Wiki
OpenVPN Application Layer Software (ALS), formerly know as Adito, is a web-based SSL VPN server written in Java. It has a browser-based AJAX UI which allows easy access to intranet services. Once installed and configured correctly, you will be able to access all your server files and the HDA (to include applications) using https://user.yourhda.com (tested with Firefox and Internet Explorer).
- To install, open a terminal window and become root user. Execute the following commands:
yum -y install ant java-1.6.0-openjdk-devel echo "export JAVA_HOME=/usr/lib/jvm/jre-1.6.0-openjdk" >> /etc/profile.d/java.sh echo "export PATH=\$JAVA_HOME/bin:\$PATH" >> /etc/profile.d/java.sh source /etc/profile.d/java.sh mkdir /var/hda/web-apps/myadito wget http://superb-west.dl.sourceforge.net/sourceforge/adito/adito-0.9.1-bin.tar.gz tar –xf adito-0.9.1-bin.tar.gz mv adito-0.9.1/ server/ cd server ant install
- When instructed, open a web browser and navigate to http://localhost:28080 (or IP address). Complete the required information as shown here.
- Once complete, continue with the commands below:
ant install-service ant start service adito stop sed -i 's/wrapper.working.dir=./wrapper.working.dir=\/var\/hda\/web-apps\/myadito\/server/' /var/hda/web-apps/myadito/server/conf/wrapper.conf sed -i 's/#wrapper.java.additional.2=-Dfile.encoding=UTF-8/wrapper.java.additional.2=-Dfile.encoding=UTF-8/' /var/hda/web-apps/myadito/server/conf/wrapper.conf service adito start
- After everything is finished and Adito has been started, you can access it via https://localhost (can use host name or IP address).
NOTE: This install will not integrate Adito in the Amahi Dashboard. The one-click install and HDA integration is currently under development.
Optional Settings:
- Router (Settings)
- In order to use https://user.yourhda.com to access Adito VPN from any computer using the web browser, create a Port Forward or Virtual Server rule. This is a required step for the Map HDA Folders and Apps options to work from outside your network.
- On a D-LINK WBR-2310 router, set a Virtual Server setting to forward port 443 (public and private) to the HDA server IP address using TCP traffic type.
- Map HDA folders (Network Places)
- Login as administrator
- Select Network Places (middle left menu)
- Select Create Network Places (upper right menu)
- Enter Music for Name and Description.
- Check Add to Favorites and select Next
- Choose Local File from drop down
- Enter path /var/hda/files/music and select next
- Select Everyone, select Add, and select Next
- Select Finish and select Exit Wizard
- Repeat this process for all HDA folders (books, pictures, movies, docs)
- You can add any folder on the server using the steps above.
- Map HDA Apps Option 1 (Web Forwards Tunneled Web)
- Login as administrator
- Select Web Forwards (middle left menu)
- Select Create Web Forward
- Select Tunneled Web and select Next
- Enter HDA for Name and Description.
- Check Add to Favorites and select Next
- Enter http://hda for Destination URL and select Next
- Select Everyone, select Add, and select Next
- Select Finish and select Exit Wizard
- Not all HDA apps will work (i.e. phpsysinfo)
- This method makes use of Adito Agent (java web agent)
- Each time the agent is executed, a random port is tunneled (may not work with firewalled client network)
- Map HDA Apps Option 2 (Web Forwards Replacement Proxy)
- Login as administrator
- Select Web Forwards (middle left menu)
- Select Create Web Forward
- Select Create Replacement Proxy and select Next
- Enter HDA for Name and Description.
- Check Add to Favorites and select Next
- Enter http://hda for Destination URL and select Next
- Select Next
- Select Everyone, select Add, and select Next
- Select Finish and select Exit Wizard
- Not all HDA apps will work (i.e. phpsysinfo)
- There is no port restriction (uses 443).
Additional guidance will be added as it becomes available.
