------------------------------------ Quicklinks Page

HomeCollege of EngineeringMosaicWork From HomeInstall AFS on Windows

Setting Up OpenAFS on Windows XP/VISTA to Connect to Mosaic

 OpenAFS is a software package released by IBM as freeware that allow computers operating anywhere in the world to connect with AFS servers seamlessly. This means that no matter what computer you are on, if OpenAFS is properly set up and an internet connection is present you will have full access to your files on the Mosaic system as if you were sitting in the College of Engineering. Please remember that access times to your files are all dependent on the speed of your connection to the internet... the faster the connection you have, the faster you'll be able to access your files. Also just like logging in at a Mosaic workstation you have a 25 hour time-limit for connectivity.

The steps below outline how to properly set up OpenAFS for a Windows XP or VISTA system. Please read the instructions thoroughly before starting the install. Note that you must also install the password encryption/authentication utility "Kerberos for Windows" in order to validate your login to your Engineering Computing account. Click here to download and install the Kerberos for Windows utility. You do not have to execute any "Kerberos for Windows" program after it installs. OpenAFS will detect and use kerberos authentication protocols when it (OpenAFS) runs.

1. Click here to download version 1.5.19 of the client software. (You should uninstall any previous versions of OpenAFS before proceeding.  Do not save any configuration info during an uninstall.)

2. Click on the link to the software and select "Save". Select a save location that is easy for you to locate in case changes need to be made to the installation at a later date. Once the download is complete, the download dialog should give you a prompt asking if you want to open the file, open the folder where it's located, or simply close the download dialog box. Select the option to open the folder.  Double click on the OpenAFS install program and select "Run" to start the installation.

Figure 1 (Loopback Adapter previously Installed)

Figure 1a (Loopback Adapter not previously Installed)

3. The screen shown in figures 1 and 1a give you the options as to what to install, and how much disk space will be used. This version of OpenAFS requires the use of a software "Loopback adapter" or simulated network connection in addition to your real internet connection for increased stability and reliability. If you have previously installed a loopback adapter the choice will be grayed out as shown in Figure 1. If you have not previously used a loopback adapter the entry will appear as shown in Figure 1a. We recommend that the default settings be used and, as Mosaic has not tested it, it is highly recommended that the AFS server option box be left unchecked. Note that installing the documentation may take a large amount of space. Once changes, if any, are made to the component installation options, click next to continue.

Figure 2

4. The installation then attempts to configure OpenAFS to work properly with the Engineering Computing system. It is extremely important for this step that the option "Download From Web Address" is checked. Enter the address http://www.coe.uncc.edu/CellServDB into the dialog box as shown in Figure 2. If this address is not entered properly, the OpenAFS client WILL NOT WORK. Once finished click next button to continue.

Figure 3

5. As shown in Figure 3, enter "uncc.edu" into the dialog box when prompted for the cell name. We suggest that you enable crypt security and AFS Freelance client. Do not enable "Use DNS to Search for Cell Servers". Then click next to continue.
 

Figure 4

6. When prompted to set "AFS Credentials Configuration" (Figure 4) we have no reason not to accept the defaults however if you do not wish to link to Mosaic every time you start the system un-check the "Start AFS Credentials at system login".
 

Figure 5

7. Near the end of the install process it may seem that the process has stalled or died if you are installing a loopback adapter for the first time. Do not be alarmed if the machine remains silent for several minutes as it configures the simulated network connection. The installation program will finish up by asking for the computer to be rebooted. If the computer is not rebooted, the installed program will not function properly. Once the reboot is complete, OpenAFS should be started automatically by the system. To check to see if this is the case, look in the task bar (the area on the start menu next to the clock) for a little icon that looks like a padlock (see Figure 5). If the padlock isn't there go to the start menu, programs, OpenAFS, Client,and click on authentication as shown in Figure 5.

Figure 6a

8. The next step is assigning drive letters to your "Mosaic Disks." Open the padlock icon by clicking on it with your mouse. A window similar to Figure 6a should appear.

Figure 6b

Choose the "Drive Letters" tab then choose "Add".

Figure 6c

9. In our example shown above (Figure 6c) we have chosen to use Drive Letter U (for unix). You will have to enter the path to your home directory on Mosaic. If you don't know your home directory path click here to look up the path to your home directory. You must also decide if you want to restore this mapping every time that you login.

Figure 7

Figure 7a

10. Note that in Figure 5 that there is a red X next to the padlock icon. This means that you do not have an AFS token or valid connection to your files, in other words not having the ability to read and write to your files on the Mosaic system. Once the Authentication client is opened, you will need to provide your Mosaic username and password to obtain a token. If you are not already prompted to by the system, click on the padlock icon and a screen will come up showing the status of your token (as shown in figure 7 "You do not have tokens within any AFS Cell".). Click on the "obtain new tokens" button and enter your username and password as prompted in Figure 7a. It is a good idea to make sure that the cell name is uncc.edu when performing this step. If it isn't, please be sure to make the appropriate changes.Note that you must have also installed the password encryption/authentication utility "Kerberos for Windows" in order to validate your login to your Engineering Computing account. If you have not installed "Kerberos for Windows" click here to download and install the utility. You do not have to execute any "Kerberos for Windows" program after it installs. OpenAFS will automatically detect and use kerberos authentication protocols when it (OpenAFS) runs.

Figure 8

11. Once logged in, the AFS client window will show the token information and everything should be functional. An example of how the token window will look once properly logged in is shown in figure 8. Note that the window gives you information about your tokens and tells you when they expire (your connection must be re-validated every 25 hours by using the "Obtain new tokens" button or you will be denied access to your files). If you want the system to warn you before the tokens expire you may click the box below the token information. Each time the computer reboots, you will be asked to re-input your password in order for the client to re-connect to Mosaic.