There are potentially many different ways to connect a Windows client to a Linux network file server. The following solution is just one way to achieve success. It involves the use of a Windows domain user running the CIC Agent that has the same credentials as a Linux CentOS 8 server user, allowing CIC to see the desired Linux Samba-configured network directories.
Procedure Overview
- Create a new Access Point (to get the PowerShell installation script) in CIC.
- Install and configure your CIC Agent.
-
Add new File System Endpoints in the CIC for both source and destination directories.
- Set up your Dataflows.
Note: The solution described below utilizes UNC paths, not mapped drives. Mapped drives are relative to a logged-on user and their logged on experience, so are not effective/reliable for CIC Agent communications.
Assumptions
- File server shares of desired data directories are set up properly with Samba on the Linux file server. You can reference these guidelines to configure Samba on CentOS 8. Please note: these guidelines are for example purposes and should be adjusted for your particular environment.
- Windows server designated to run the CIC Agent is joined to the domain and connected successfully to the network.
- The source and destination directory UNC paths are known and reachable via the File Explorer on the client machine (as a connectivity test, when logged in as a valid network user that has privilege to the share directories).
Values used in this document for sample purposes only
Domain = win2019.local also known as WIN20190.
Domain user = cleo100 with a password of Password@1.
Domain user group = cleoagents.
Linux file server name and IP = centos8 and 192.168.1.20.
Linux user group (with read and write permissions to share) = cleoagents.
Linux user = cleo100 with a password of Password@1.
Linux network directory UNC path = \\192.168.1.20\secured\.
Procedure
Before proceeding with the steps below, please note the following on client machine administrative access.
- On the client machine (win2019-2), add the desired domain user (cleo100) or the desired domain group (cleoagents) to the local Administrators group.
Create an Access Point in CIC
Create and save an Access Point from the Network > Access page. As part of this process, a Powershell installation script is provided which, when installed as an administrator, ensures the CIC Agent has sufficient access to content on this Access Point. The status for this Access Point will be Pending, until the Agent is activated and successfully connected to the CIC Cloud.
Install and configure the CIC Agent
- Install the CIC Agent via the PowerShell script. These instructions are provided in the CIC as part of Agent creation.
- Launch the services.msc.
- Stop the Cleo Agent service if running.
- Right-click on the Cleo Agent and select Properties.
- From the Log On tab, select the This Account radio button and click Browse.
- Click the Locations button, and expand the Entire Directory field and select the domain (win2019.local); click OK when done.
- Enter the network username (cleo100) and password (Password@1), then confirm password and click OK. A dialog box should appear confirming that the user has been granted access to run the service.
- Start the Cleo Agent service.
- Continue to refresh the Services window (should take no longer than 10 seconds), verifying the Cleo Agent service remains running.
Add a new File System Endpoint in the CIC (for source directory)
These steps take place from the Network > Endpoints page in the CIC.
-
- Create a File System Endpoint and select the newly created Access Point (described above).
- Edit the Access Point path by clicking the button, and enter the UNC path.
For example: \\192.168.1.20\secured\source\
- After entering the UNC path: click Go, Select, and then Save.
Add a new File System Endpoint in the CIC (for destination directory)
These steps take place from the Network > Endpoints page in the CIC.
-
- Create a File System Endpoint and select the newly created Access Point (described above).
- Edit the Access Point path by clicking the button, and enter the UNC path.
For example: \\192.168.1.20\secured\dest\
- Once entered, click Go, Select, and then Save.
Setting up Dataflows
Proceed with setting up dataflows to utilize the newly created endpoints.
Regarding VPNs
CIC itself is unaware of VPN connections, but the CIC Agent can be used with a VPN if the network directories are only reachable by a VPN. The VPN connection must be turned on and operational in order for the CIC Agent to use it. It is recommended to use IP address in place of domain names, if possible, to help alleviate DNS issues related to VPN connectivity.
Comments
0 comments
Please sign in to leave a comment.