How to Configure OpenFiler Tutorial

/ Storage
"Close-up view of a hard disk drive interior, showcasing the platter and read-write arm, illustrating data storage technology."

Complete OpenFiler Configuration Tutorial

Master LDAP setup, user management, network ACLs, volumes, and iSCSI LUN configuration for enterprise storage solutions

OpenFiler is a powerful network-attached storage solution that provides enterprise-level storage management capabilities. This comprehensive tutorial continues from our OpenFiler installation guide and covers the essential configuration steps to get your storage system operational.

πŸ“‹ Prerequisites: This tutorial assumes you have already installed OpenFiler. If you haven’t completed the installation, please refer to our installation guide first.

What This Tutorial Covers

  • LDAP Server Configuration – Set up authentication infrastructure
  • User and Group Management – Create accounts for storage access
  • Network Access Control Lists – Implement IP-based security
  • Volume Management – Create physical and logical volumes
  • Network File Shares – Configure SMB/CIFS and NFS protocols
  • iSCSI LUN Setup – Deploy storage area network capabilities

Setting Up the OpenFiler LDAP Server

OpenFiler supports two authentication methods: NT/AD Authentication and LDAP Authentication. For this tutorial, we’ll configure the integrated LDAP server, which provides robust user management capabilities.

LDAP Configuration Steps

  1. Navigate to the Accounts tab at the top of the OpenFiler interface
  2. Check the box next to “Use LDAP”
  3. Check the box next to “Use local LDAP Server”
  4. Configure the Base DN (default: dc=example,dc=com)
  5. Set the Root Bind DN with proper syntax
  6. Enable SMB LDAP Configuration
  7. Click Submit to apply changes

πŸ’‘ Domain Configuration Example: If using domain “everythingvm.com”, enter dc=everythingvm,dc=com as Base DN and cn=openfiler,dc=everythingvm,dc=com as Root Bind DN.

After configuration, verify the LDAP service is enabled by checking the Services tab. If LDAP shows as enabled, your server is properly configured.

Creating Users and Groups

With LDAP configured, you can now create user accounts and groups. All users must belong to at least one group for proper access control.

Creating Your First Group

  1. Click on the Accounts tab
  2. Click Administration on the right side
  3. Ensure the Group Administration tab is selected
  4. Enter the group name (example: “Normal Users”)
  5. Click Add Group

Adding Users to Groups

  1. Click on the User Administration tab
  2. Enter the username (example: “seanp”)
  3. Enter the password in both Password fields
  4. Select the primary group from the dropdown
  5. Click Add User

Setting Up Network Access Control Lists

Network ACLs provide IP address-based access control to your storage system. This adds an essential security layer by restricting access based on client location, making it easier to manage storage access without complex authentication requirements.

Configuring Network ACLs

  1. Click on the System tab
  2. Scroll to the bottom of the page
  3. Enter a descriptive name for your ACL (example: “Servers”)
  4. Enter the IP Network Address (example: “10.0.0.0”)
  5. Enter the appropriate Netmask (example: “255.0.0.0”)
  6. Click Update to save the ACL

πŸ”’ Security Note: Using the example above (10.0.0.0/255.0.0.0) grants access to any computer with an IP address beginning with “10.” Ensure this aligns with your network security policy.

Repeat these steps to create multiple ACLs for different network segments or server groups. You’ll be able to grant or restrict access based on these ACLs when creating shares and LUNs.

Creating and Managing Volumes

Volume management is the foundation of your storage system. We’ll create physical volumes, organize them into volume groups, and then create logical volumes for different storage needs.

Creating Physical Volumes

  1. Click on the Volumes tab
  2. Click Create new Physical Volume
  3. Select the disk you want to use (example: /dev/sdb)
  4. Scroll down and change partition type to Physical Volume
  5. Configure starting and ending cylinders for desired size
  6. Verify the size column shows your target volume size
  7. Click Create to create the volume

Creating Volume Groups

  1. Click on Volume Groups on the right side
  2. Enter the Volume Group name
  3. Check the box next to the Physical Volume you created
  4. Click Add Volume Group

Creating Logical Volumes

  1. Click Add Volume on the right side
  2. Enter the volume name (example: “MyShare”)
  3. Use the slider to set the volume size
  4. Select filesystem type:
    • EXT3 or XFS for file shares
    • iSCSI for SAN storage
  5. Click Create to finalize the logical volume

Creating Network File Shares

OpenFiler supports multiple file sharing protocols including SMB/CIFS and NFS. This allows integration with Windows, Linux, and Unix environments seamlessly.

Enable File Sharing Services

  1. Click on the Services tab
  2. Click Enable next to SMB/CIFS and/or NFS Server

Create and Configure Shares

  1. Click on the Shares tab
  2. Click on the volume you wish to share
  3. Enter the folder name and click Create sub folder
  4. Click on the newly created folder
  5. Click Share, then Make share
  6. Set Share Access Control mode to Controlled Access
  7. Configure group permissions (PG = Primary Group, RW = Read/Write)
  8. Click Update to save group settings
  9. Configure Host Access by selecting ACL permissions
  10. Enable protocol access (RW under NFS or CIFS/SMB)
  11. Click Update to finalize share configuration

πŸ” Access Control Options: Choose between Public Guest Access (no authentication required) or Controlled Access (username/password required). Both options can still use Network ACLs for IP-based restrictions.

Creating iSCSI LUNs for SAN Storage

iSCSI transforms OpenFiler from a Network Attached Storage (NAS) device into a Storage Area Network (SAN) solution. This protocol sends SCSI commands over standard Ethernet networks, providing block-level storage access.

πŸ“‹ Prerequisites: Before proceeding, ensure you have created an iSCSI volume using the steps in the Volume Management section above.

iSCSI LUN Configuration Steps

  1. Click on the Services tab
  2. Click Enable next to iSCSI
  3. Navigate to the Volumes tab
  4. Click on iSCSI Targets
  5. Click Add to create a new target
  6. Click on LUN Mapping
  7. Click Map to associate your iSCSI volume
  8. Click on Network ACL
  9. Select your desired Network ACL from the dropdown
  10. Select Allow to grant access
  11. Click Update to save the configuration

Your iSCSI LUN is now created and ready for client connections. For detailed information on connecting to your storage from various operating systems, refer to our comprehensive guide on connecting to storage systems using iSCSI, NFS, and CIFS protocols.

Configuration Complete: What’s Next?

Congratulations! You have successfully configured OpenFiler with enterprise-grade storage capabilities. Your system now includes LDAP authentication, user management, network security controls, and both NAS and SAN storage options.

Recommended Next Steps

  • Test Client Connections – Verify access from different operating systems
  • Implement Backup Strategies – Configure data protection and recovery procedures
  • Monitor Performance – Set up system monitoring and alerting
  • Security Hardening – Review and strengthen security configurations
  • Documentation – Document your configuration for future reference

Elevate Your IT Efficiency with Expert Solutions

Transform Your Technology, Propel Your Business

Unlock advanced technology solutions tailored to your business needs. At InventiveHQ, we combine industry expertise with innovative practices to enhance your cybersecurity, streamline your IT operations, and leverage cloud technologies for optimal efficiency and growth.

Discover Our Services