Koozali.org: home of the SME Server

Obsolete Releases => SME Server 8.x => Topic started by: kittu.sampath on August 28, 2012, 09:40:50 AM

Title: access from outside server-manger and user-password
Post by: kittu.sampath on August 28, 2012, 09:40:50 AM

hi

i need to give access user-password from outside using my static IP Address 
i  add in remote access
Remote Management
Network    Subnet mask    Number of hosts    Remove
0.0.0.0    255.255.255.0    256    

but also iam getting below error

Forbidden

You don't have permission to access /server-manager on this server.

Title: Re: access from outside server-manger and user-password
Post by: Daniel B. on August 28, 2012, 10:02:53 AM

If your static IP address is 1.2.3.4, you need to add this in the remote access panel:

IP: 1.2.3.4
mask: 255.255.255.255

Title: Re: access from outside server-manger and user-password
Post by: kittu.sampath on August 28, 2012, 10:33:48 AM

Thank u very much VIP-ire

i  need give permission https://1.2.3.4/user-password from any were. so that my users can their passwords

Thanks

Title: Re: access from outside server-manger and user-password
Post by: Daniel B. on August 28, 2012, 10:37:43 AM

You can either use 0.0.0.0 as IP andress and Mask to allow everyone, but this will open the server-manager.

If you only want to open /user-manager, you should create a custom template for /etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass and edit the first part like this:

Code: [Select]

    foreach $place ('server-common','user-password')
    {   
        if (($port eq "80") && ($haveSSL eq 'yes') && ($plainTextAccess ne 'yes'))
        {   
            $OUT .= "    RewriteRule ^/$place(/.*|\$)    https://%{HTTP_HOST}/$place\$1 [L,R]\n";
        } else {
            $OUT .= "    ProxyPass /$place http://127.0.0.1:${'httpd-admin'}{TCPPort}/$place\n";
            $OUT .= "    ProxyPassReverse /$place http://127.0.0.1:${'httpd-admin'}{TCPPort}/$place\n";
        }

        $OUT .= "    <Location /$place>\n";
        $OUT .= "        order deny,allow\n";
        $OUT .= "        deny from all\n";
        $OUT .= "        allow from all\n";
        $OUT .= "    </Location>\n";
    }


Title: Re: access from outside server-manger and user-password
Post by: kittu.sampath on August 28, 2012, 10:51:23 AM

Thank u

https://mailserver.xxx.com/server-manager  i am not able to open internally and externally

How should i make this work using domain name given above 

Title: Re: access from outside server-manger and user-password
Post by: Daniel B. on August 28, 2012, 10:54:39 AM

Just use 0.0.0.0 as IP address and Mask in the remote access panel. But I really don't recommand this.

Regards, Daniel

Title: Re: access from outside server-manger and user-password
Post by: larieu on August 28, 2012, 11:03:07 AM

if you have only one External IP fixed from where you like to access the server
go to server manager - local networks
here ad your IP
a.b.c.d mask 255.255.255.255 with Gateway the actual gateway of your server

but I will recommend to look for remote access through vpn for your users
even the build in VPN-PPTP will be better

after you build up the vpn
you'll have access to
http://local.IP.LAN.server/server-manager

Title: Re: access from outside server-manger and user-password
Post by: CharlieBrady on August 28, 2012, 02:55:21 PM

Quote from: larieu on August 28, 2012, 11:03:07 AM

but I will recommend to look for remote access through vpn for your users
even the build in VPN-PPTP will be better

Not really. Both would allow username/passwords to be brute force probed, from anywhere.