FlexWiki on network drive

Thread: FlexWiki on network drive

Search this list only Search all lists
FlexWiki on network drive
	2006-09-22 20:59:35

Hi, everyone, In order to provide high-availability for our Flexwiki instance, we want to put our Flexwiki content (ideally including ASP code) on a fileserver that will be accessed by two load-balanced Web servers.  Some initial trawling indicates that this configuration is possible, yet it seems difficult to implement, so I'm wondering if anyone has had any success with it. Here's the basic configuration info: Web servers are running IIS 6.0 on Windows 2003 Server Standard Edition SP 1 File server is running Windows 2000 AS SP 4 and DOES NOT have IIS installed Flexwiki is build 1.8.0.1896 We need to use Windows authentication (this is an internal project), and I seem to be getting stuck on configuring pass-through authentication properly.  I've configured auditing on the fileserver, but it's not reporting any failed access.  The IIS log reports a 401.2 error followed by 401.1.  IE reports a 401.3 error, indicating that an ACL is set on the resource.  What do I need to do to allow passthrough authentication? Thanks, Tom The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator.(16b)
FlexWiki on network drive
	2006-09-22 22:17:43

Having trolled the code, I would say two things: 1) SQL Server is the intended way to handle multiple web nodes. 2) Multiple web nodes is probably pretty broken due to the way caching is currently implemented. David can speak to this more (he wrote the current code) but I seem to remember spotting a few major problems when I was in there. Your approach might just work, although I'd be a bit surprised. As far as the security problems you're having, the issue is that Windows authentication doesn't go two hops (browser to web server, web server to file server) unless you enable something called trusted delegation. This is an AD level setting that is sort of a security hole - it is better avoided. Especially with Windows 2000 in the mix. Is there any way you can avoid use of Integrated security? That's what's going to screw you here. I think the best approach if you're really concerned about high availability is probably to use failover rather than load balancing. Maybe put your content in a clustered SQL server and then figure some way to fail over IIS. I've never tried this approach. One other thing I'd like to point out is in the scenario you describe, you still have a single point of failure - the fileserver. Plus the network. Unless you're using a SAN, in which case I'm guessing you can play all sorts of tricks to get high availability at the file store level. This is a hard problem to solve well. From: flexwiki-users-bounceslists.sourceforge.net [mailto:flexwiki-users-bounceslists.sourceforge.net] On Behalf Of Maddox Tom Sent: Friday, September 22, 2006 5:00 PM To: flexwiki-userslists.sourceforge.net Subject: [Flexwiki-users] FlexWiki on network drive Hi, everyone, In order to provide high-availability for our Flexwiki instance, we want to put our Flexwiki content (ideally including ASP code) on a fileserver that will be accessed by two load-balanced Web servers.  Some initial trawling indicates that this configuration is possible, yet it seems difficult to implement, so I'm wondering if anyone has had any success with it. Here's the basic configuration info: Web servers are running IIS 6.0 on Windows 2003 Server Standard Edition SP 1 File server is running Windows 2000 AS SP 4 and DOES NOT have IIS installed Flexwiki is build 1.8.0.1896 We need to use Windows authentication (this is an internal project), and I seem to be getting stuck on configuring pass-through authentication properly.  I've configured auditing on the fileserver, but it's not reporting any failed access.  The IIS log reports a 401.2 error followed by 401.1.  IE reports a 401.3 error, indicating that an ACL is set on the resource.  What do I need to do to allow passthrough authentication? Thanks, Tom The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator.(16b)

[1-2]

about | contact Other archives ( Real Estate discussion Medical topics )