Installasi Zimbra Talk Part 3 (Konfigurasi VNC)

Assalamualaikum Wr. Wb

Melanjutkan tahapan Installasi Zimbra Talk, tahapan sebelumnya yaitu

Tahapan kali ini yaitu konfigurasi VNC pada Talk Server. VNC (Virtual Network Computing) ini berguna sebagai media Sharing Video, Sharing Screen dan fitur-fitur lain pada Zimbra Talk.

Langsung saja masuk tahapan konfigurasinya. Pastikan Installasi Zimbra Talk Installer pada tahap sebelumnya berhasil.

Silakan masuk Directory /opt/VNCtalk/vnc-uc/VNCtalk/vnctalkInstaller/vnctalkInstaller/

cd /opt/VNCtalk/vnc-uc/VNCtalk/vnctalkInstaller/vnctalkInstaller/

Lalu jalankan script berikut menggunakan hak akses Root.

./vnctalkInstaller.sh -a --manual

Proses ini akan ada beberapa tahapan.

1. Penentuan IP Address

Secara otomatis Installer akan mendeteksi IP Address yang terpasang. Pastikan IP yang terdeteksi sudah benar, baru bisa lanjut.

==== IP and NAT settings ====
Enter the XMPP/Prosody server >>LOCAL<< IPv4 [192.168.100.151] : 
Enter the XMPP/Prosody server >>LOCAL<< IPv6 :
Is the Zimbra Talk server behind a NAT/Firewall? [NO] :

2. Penentuan Hostname

Yang paling penting di tahap ini yaitu di bagian Enter the full hostname dan VirtualHost XMPP Domain. Sisanya lihat Subdomain nya, pastikan Domain utama mengarah ke rizky.co.id

==== Hostname and Network settings ====
Enter the full hostname of the prosody server [xmpp.rizky.id] : xmpp.rizky.co.id
Enter the VirtualHost XMPP domain (e.g example.com,) [xmpp.rizky.co.id]: rizky.co.id
Prosody conference domain [conference.rizky.co.id] :
Enter the full hostname of the External User Login server [external.rizky.co.id] :
Prosody external conference domain [conference.external.rizky.co.id] :
Prosody/JitsiMeet auth domain [auth.rizky.co.id] :
Prosody/JitsiMeet video-bridge domain [jitsi-videobridge.rizky.co.id] :
Prosody/JitsiMeet focus domain [focus.rizky.co.id] :

3. Pengaturan XMPP

Tahapan ini gunakan saja konfigurasi default nya.

==== XMPP settings ====
Prosody additional admin users for virtual host 'rizky.id' (e.g carl@rizky.co.id) :

4. Konfigurasi Database

Database yang digunakan yaitu PostgreSQL

==== PostgreSQL DB settings ====
PostgreSQL Host [localhost] :
PostgreSQL Admin user [postgres] :
PostgreSQL Prosody Database user [prosody] :
PostgreSQL Prosody user secret [qjnuebsuhreejdkkkjhuabahtaujxnoq] :
PostgreSQL Prosody DB name [prosody] :
PostgreSQL External Login Database user [www] :
PostgreSQL External Login Database user secret [yuhaieascashaeyeqcsigojbcsjicd] :
PostgreSQL Prosody ExtermalUser DB name [externaluser] :
PostgreSQL Etherpad-Lite Database user [etherpad] :
PostgreSQL Etherpad-Lite user secret [vbaqhgrtozqnmzidrtyueqjokpiaamnb] :
PostgreSQL Etherpad-lite DB name [etherpad-lite] :
PostgreSQL Middleware Database user [vncdirectory] :
PostgreSQL Middleware user secret [mzcdxiwetuorasdfgtawaiyaczvdrwert] :
PostgreSQL VNCdirectory/Middleware DB name [vncdirectory] :

5. Konfigurasi LDAP

Tahapan ini membutuhkan koneksi ke LDAP Zimbra, nanti akan diminta password LDAP, bisa cek dengan perintah berikut pada Server Zimbra zmlocalconfig -s zimbra_ldap_password

==== LDAP settings ====
LDAP server hostname/IP [(e.g. ldap.example.com)] : mail.rizky.co.id
LDAP bindpass : u7khjk6hl
LDAP Bind DN [uid=zimbra,cn=admins,cn=zimbra] :
LDAP User Authentication Base [ou=people,dc=rizky,dc=co,dc=id] :
LDAP Shared Roster Groups Base [ou=people,rizky,dc=co,dc=id] :
LDAP Shared Roster Distribution List Filter [(&(objectClass=zimbraDistributionList)(uid=*))] :

6. Konfigurasi Middleware

Tahapan ini membutuhkan Zimbra Pre Auth Key, bisa di cek Key nya pada Server Zimbra menggunakan perintah zmprov gd rizky.co.id zimbraPreAuthKey

Atau jika belum dibuat, bisa di buat menggunakan perintah zmprov gdpak rizky.co.id preAuthKey

=== MIDDLEWARE settings ====
Middleware URL [https://rizky.co.id/VNCMiddleware/rest] :
https://mail.rizky.co.id/VNCMiddleware/rest
Middleware appName? [vnctalk] :
Zimbraprotocol for middleware connection [https] :
Zimbrahost for middleware connection [mail.rizky.co.id] :
Zimbraport for middleware connection [7071] :
Zimbraadmin user for middleware connection [admin] :
Zimbra HTTPS/SOAP admin password for middleware connection : rahasia123
Host for Jetty8 [localhost] :
Port for Jetty8 [8080] :
==== ZIMBRA_SOAP settings ====
ZimbraSOAP URL (OPTIONAL) [https://mail.rizky.co.id/service/soap] :
== Zimbra Pre-Auth token ==
ZimbraPreAuth SOAP token :
2r4d56rt398u0932af89u9ef34bf07a8315f680a827e1as9867f7649io4a729826a

7. User Authentication

Tahapan ini akan digenerate User Authentication Shared Token, salin kode tersebut untuk dikonfigurasi pada Zimbra Admin nanti.

==== User Authentication settings ====
The sequence/order of authentication mechanism
[LDAP,SOAP,MIDDLEWARE,ANONYMOUS] [LDAP] :
Checking authentication machanism LDAP...
User Authentication shared Token [emalkkpowrlecooaffklasdrthdailvbcty] :

8. Konfigurasi STUN/TURN dan Komponen XMPP

Tahapan ini gunakan konfigurasi default saja.

==== TURN/STUN settings ====
TURN/STUN server hostname [turn.rizky.co.id] :
TURN/STUN port [3478] :
TURN/STUN min port [10000] :
TURN/STUN max port [20000] :
TURN/STUN password [lpoiqmhkqwezxdfgrthpaaqwainbav] :
Is the TURN/STUN server behind a NAT firewall? [NO] :
==== XMPP components settings ====
XMPP MUC component secret [cvrttyuimkiojwqasenesdgtohalpocea] :
XMPP Focus component secret [nmuiaqqwenmklghnbieaqopusalpoueidft] :
XMPP jitsi-videobrige component secret [sqqabzcaisaachijghjahqwryakkltht] :
XMPP jitsi-videobrige min port [10000] :
XMPP jitsi-videobrige max port [20000] :

9. Konfigurasi SSL

Bagian ini sangat penting, karena Zimbra Talk membutuhkan koneksi private dan trusted antar server dan client yang mengakses nya. Jika ada yang salah, Zimbra Talk tidak akan bisa diakses

Pastikan file server.crt, server.csr, server.key yang disalin dari Server Zimbra sudah disalin ke Directory /etc/ssl/

==== SSL settings ====
Do you want to use your own SSL certificates? [NO] : YES
########################################################
**If you are installing your own SSL certificate, your certificate simple
needs to match whatever you have in your VirtualHost and
Component definitions (e.g. example.com and conference.example.com),
as these are the services you need to authenticate as.
auth.rizky.co.id
conference.external.rizky.co.id
conference.rizky.co.id
external.rizky.co.id
focus.rizky.co.id
jitsi-videobridge.rizky.co.id
zimbratalk.rizky.co.id
turn.rizky.co.id
rizky.co.id
########################################################
Path to your SSL certificate PRIVATE KEY [(e.g /path/to/your/ssl.key)] :
/etc/ssl/server.key
Path to your SSL with CA bundle CERTIFICATE [(e.g /path/to/your/ssl_CA_Bundle.crt)] :
/etc/ssl/server.crt
####
# Validate settings
####
==== Validate Zimbra Host ====
==== Check if auth method is available ====
Checking authentication machanism LDAP...
==== Validate SSL ====
Use OWN SSL CERT

10. Konfigurasi DNS Masq

Dibagian ini script installer akan menggenerate otomatis file DNS Masq pada sebuah file di dalam Directory /opt/VNCtalk/vnc-uc/VNCtalk/vnctalkInstaller/configs/

Sebelumnya pastikan konfigurasi DNS sudah benar, jika belum benar, script akan menanyakan kembali untuk melakukan konfigurasi DNS ulang.

####
# DNSMasq config generator
####
Paste this dnsmasq config into your dnsmasq and then restart the daemon.
##################################################################
# xmpp.rizky.co.id
##################################################################
#address=/rizky.co.id/192.168.100.151 # Use this record if the server has this dns name
address=/xmpp.rizky.co.id/192.168.100.151
address=/conference.rizky.co.id/192.168.100.151
address=/auth.rizky.co.id/192.168.100.151
address=/jitsi-videobridge.rizky.co.id/192.168.100.151
address=/focus.rizky.co.id/192.168.100.151
address=/external.rizky.co.id/192.168.100.151
address=/conference.external.rizky.co.id/192.168.100.151
address=/turn.rizky.co.id/192.168.100.151
txt-record=_xmppconnect.xmpp.rizky.co.id,"_xmpp-client-xbosh=
https://xmpp.rizky.co.id:443/http-bind"
txt-record=_xmppconnect.rizky.co.id,"_xmpp-client-xbosh=
https://xmpp.rizky.co.id:443/http-bind"
txt-record=_xmppconnect.external.rizky.co.id,"_xmpp-client-xbosh=
https://xmpp.rizky.co.id:443/http-bind"
srv-host=_xmpp-client._tcp.rizky.id,xmpp.rizky.co.id,5222
srv-host=_xmpp-server._tcp.rizky.id,xmpp.rizky.co.id,5269
srv-host=_xmpp-client._tcp.xmpp.rizky.co.id,xmpp.rizky.co.id,5222
srv-host=_xmpp-server._tcp.xmpp.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.auth.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.auth.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.focus.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.focus.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.jitsi-videobridge.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.jitsi-videobridge.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.conference.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.conference.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.external.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.external.rizky.id,xmpp .rizky.co.id ,5269
srv-host=_xmpp-client._tcp.conference.external.rizky.id,xmpp .rizky.co.id ,5222
srv-host=_xmpp-server._tcp.conference.external.rizky.id,xmpp .rizky.co.id ,5269
##################################################################
Under /opt/VNCtalk/vnc-uc/VNCtalk/vnctalkInstaller/configs/ you will find
the DNSMasq con BIND configs
Did you update your DNS config? Press [ENTER] to continue..

Setelah ini, script akan otomatis menyesuaikan dengan konfigurasi yang baru di setup barusan, serta menginstall beberapa Dependensi yang dibutuhkan. Proses ini membutuhkan beberapa waktu, silakan istirahat serta santai minum kopi terlebih dahulu 😀

Tahapan selanjutnya akan dijelaskan lain waktu.

Leave a Reply

Your email address will not be published. Required fields are marked *

*