Sesam README for Novell OES Linux and OES Netware

From SEPsesam

Jump to: navigation, search

Contents

Description

The SEP sesam Novell client is a Novell Storage Management Data Requester (SMDR) which allows backups of Novell Open Enterprise Server (OES) on NetWare or Linux.

The backup architecture of Novell Netware systems consists of Storage Management Services (SMS) which is a collection of services providing backup, restore, and data migration. The backup and restore is done by Target Service Agent (TSA) modules loaded on the Novell Server and a second component, called Storage Management Data Requester (SMDR).

To find out more about the backup principles of SEP sesam in a Novell OES environment, please read Backup Principles of SEP in a Novell OES environment.

System Requirements

SEP sesam Server

  • Sesam server with version 3.4 or higher.

OES Linux Client

Operating System

  • OES Linux SP1
  • SuSE Linux 9.1 or higher
  • SuSE Enterprise Server 9
  • RedHat Enterprise Server 4.0
  • Debian 3.1 (Sarge)

SMS Architecture

In order to use Novell SMS architecture the package novell-sms-1.1.4-12.i586.rpm (or higher) must be installed.

OES Netware Client

There is no native Sesam client for OES Netware. To backup it an OES Linux has to be used as Data Mover.

See also: Backup principles using SEP sesam in a Novell OES environment

Data Mover OES2 Linux

SEP recommends to use a OES2 Linux system as Data Mover backing up OES NetWare:

  • If installing SLES 11 as Data Mover, a significant amount of effort will be required from the installation engineer. However, this solution is currently not supported by SEP, because Novell doesn't support SMS components on SLES11.
  • Data Mover based on any other Linux systems SEP AG can not guarantee that the Novell SMS components working properly on it.


Configuration of TSA

Configuration of the TSAs on the OES client

Start of SMDRD daemon

Usually the SMS is started in Run Level 3 and 5. To manually start or stop use

 /etc/init.d/novell-smdrd start/stop

Starting the TSAs

For allocation and configuration of the TSA Services the program /opt/novell/sms/bin/smsconfig is used.

For instance the TSAFS can be loaded with

smsconfig -l tsafs

and unloaded with

smsconfig -u tsafs

TSAs required for the backup types:

  • File System: tsafs
  • GroupWise System: tsafsgw
  • Novell eDirectory: tsands - not available on OES1 - (see section Backup of OES Novell Directory on Linux)
  • Novell iFolder: tsaif - not available on NetWare servers


The file /etc/opt/novell/sms/smdrd.conf allows a permanent configuration.

Example entries in smdrd.conf:

autoload: tsafs --EnableGW
autoload: tsafsgw --home /media/nss/GRPWISE/gw --home /media/nss/GRPWISE/gwpo

Another possibility:

autoload: tsafs --tsamode=linux --cluster


GroupWise TSA

With

 smsconfig -l tsafs --EnableGW

a file system backup will save GroupWise files in a consistent state.

To activate GroupWise object level backup

 smsconfig -l tsafsgw --home {gw_path} --home {gwpo_path}

is necessary.

Example for GroupWise TSA

/opt/novell/sms/bin/smsconfig -u tsafsgw
/opt/novell/sms/bin/smsconfig -l tsafsgw --home /media/nss/GRPWISE/gw --home /media/nss/GRPWISE/gwpo


The TSAFSGW has implemented the parameter --cluster, but it isn't capable. In this case use the tsafs instead:

/opt/novell/sms/bin/smsconfig -l tsafs --EnableGW --cluster


More information regarding NetWare clusters are deposited here: http://wiki.sepsoftware.com/wiki/index.php/Sesam_README_for_Novell_OES_Linux_and_OES_Netware#Backup_of_Clusters

NSS Volume Backup

The TSAFS for OES Linux supports NSS partitions. By default these partitions are treated like regular Linux file systems and the specific data is also backed up. In the case of a 'mixed Cluster', meaning a cluster containing both OES Linux and OES Netware server, it is recommended to choose the Netware Emulation Mode on OES Linux for the configuration of the NSS Volumes to avoid conflicts with the path name. Backup of such a NSS partition is implemented in such a way that it is automatically continued on the available cluster server in case of a server crash.

Set the TSA mode with:

  • to Linux, the default value:
 smsconfig -l tsafs --tsaMode=linux
  • to Netware:
 smsconfig -l tsafs --tsaMode=netware
  • to Dual to use Linux and Netware File System:
 smsconfig -l tsafs --tsaMode=dual

Installation and Update of SEPsesam Client

Please use recent SEPsesam client from http://download.sep.de/netware/OES-Linux/

To install or update:

 rpm -Uvh sesam-novell-client-3.4.1-79.SuSE.i586.rpm

OES Netware Client

ATTENTION:

A Linux system is required to back up OES Netware via SMS. SMS must be installed as described under "2.2.2 SMS Architecture". If SEPsesam server runs on Linux this system may be used to back up OES Netware. Otherwise an adequate SEPsesam client must be used.



SMS Architecure

The SMS components are part of the OES Netware standard installation.

Start of the SMDR

By default, the SMS services SMDR, TSAFS/TSA500, and TSANDS are loaded by the autoexec.ncf script. You can also load them by using the SMSStart.ncf script provided by the SMS installation. To load SMS services manually, use the server console to execute SMSStart.ncf or load required NLM software manually, for instance

    > SMSSTART

or

    > load TSANDS.NLM

Start of TSA Services

Only the required TSA services e.g. TSAFS.NLM must be loaded.

For Netware version 6.5 the following services are necessary:

  • File System Backup: TSAFS.NLM
  • GroupWise System: TSAFSGW.NLM
  • Novell eDirectory: TSANDS.NLM


HINT Restart TSAs: Use scripts to allow automatic load of required TSAs.

HINT GroupWise Backup: With the current TSAFS version a file system backup supports GroupWise with

TSAFS /EnableGW

But this does not allow backing up specific GroupWise resources. It only takes care that GroupWise files are backed up consistently.

HINT TSA versions: Novell recommends explicitly the use of the recent TSA versions! E.g. under http://support.novell.com/filefinder/ with keyword: TSA

Backups of open Files

To backup open files CopyOnWrite has to be activated on NeWare.

This is an excerpt from the Novell documentation:

Open Files Backup
TSAFS.NLM supports backup of open files on Novell Storage Services (NSS) volumes if the CopyOnWrite feature is enabled.

To enable CopyOnWrite on a single NSS volume, do the following:

1. At the server console, enter
    nss /FileCopyOnWrite=volume_name
2. Dismount and remount the volume.
   1. To dismount the volume, enter
      dismount volume_name
   2. To remount the volume, enter
      mount volume_name

To enable the feature on all NSS volumes, enter
nss /FileCopyOnWrite=all

Configuration

The further configuration is continued using the SEPsesam GUI

  • Add the new Novell OES Netware/Linux server. Here 'Netware' respectively 'UNIX' has to be selected as platform and 'Linux' respectively 'OES-Linux' as operating system in case of 'UNIX'.
  • In the properties of the client in the tab 'Novell SMS' (if OS=Linux) respectively 'NetWare Access' (OS=NetWare) a Netware backup user and his password must be entered. This password is used by the SBC_SMDR to login at the Novell server. It is stored encrypted in the SEPsesam database. Insert the hostname of the machine in the field 'Datamover', which has installed the sesam-novell-client.
  • Backup Task Types. There are three types available for backup tasks. Please note that the required TSA Services must be activated on the OES server. The backup tasks are used to select the TSA services.

The source is build from 3 components:

The SMDR server
usually the server name, and
the Target Service Agent
e.g. again a server name or a special identifier and
the Target Service
a source identifier.

For NDS eDirectory and GroupWise the Target Services can also be indicated in the source. The '@' sign is used as delimiter. If the Target service is not explicitely indicated, the first target services is used by default. The indication is therefor only necessary in case of more than one Target Service.

Example:

 TS.GroupWise System@2[SEP]SEPDMUG:


The following Backup Types are available:

Netware

The type 'Netware' is used for the backup of the file system data. In case of a Netware file system the source consists of the volume and if necessary of the directory.

Netware server Full Backup of the Netware server
SYS: Full File Backup of SYS Volume
SYS:SYSTEM/ Backup of the subdirectory SYSTEM on the SYS Volume

In case of a Linux file system the required source is in UNIX Notation e.g. /usr. In case of a Netware client '{client}.NetWare File System' is used as target service agent, and in case of a Linux client '{client}.Linux File System' is used.

eDirectory

TSANDS is only available for OES Netware and (since OES2) on OES Linux. A Linux system with SMS architecture is required to back up NDS. The type 'eDirectory' is used to back up the Novell NDS eDirectory on OES Netware and OES Linux. As source the NDS identifier, e.g. 'NDS1' is sufficient. Use 'Full Directory Backup' as source to store the whole eDirectory.

OES1 Linux Novell Directory

On OES1 Linux there is no TSANDS available. Instead the program 'ndsbackup' has to be used. The configuration is described in chapter "Backup of OES1 Novell Directory on Linux"

Novell iFolder

To backup the Novell iFolder load the TSAIF.

One possible backup source for iFolder is
/admin.78317a6c-1927-4f30-b28c-30b5d89c7fdc

In this case /admin.78317a6c-1927-4f30-b28c-30b5d89c7fdc is the root-directory of the iFolder.

It's possible to restore files/folders with the restore wizard.

GroupWise

For backup of GroupWise systems the GroupWise resource must be indicated as source. For the backup of the entire system

GroupWise Mail Server

is used.

In case of a restore paths or resources may be used. Resources may be used together with paths, e.g. "1[DOM]:/restoreDOM". If a resource is given then the data will be restored under the directory which is referenced by the resource.

To restore deleted Mailbox Items you have to set up a Restore Area, see http://www.novell.com/documentation/gw65/index.html?page=/documentation/gw65/gw65_admin/data/abcggai.html


Hint

Browsing through the file system, especially for the sources of backup types 'eDirectory' and 'GroupWise', is available since GUI Version V3.0 Build 2 R 1.242. Therefore in older versions the source has to be indicated manually. Sources for 'eDirectory' on OES Linux must be retrieved manually.

On a Linux client with SMS architecture the sbc_smdr module is used to determine the loaded TSA Modules and the possible sources.

For the calls you have to use the switch -D (display) together with successive Netware sources.

To determine available SMDRs the backup call

sbc_smdr -b -s test.save -S localhost -v 3 

may be used.

The brackets around the resources must be removed to use as backup task source.

SBC_SMDR Options

The Sesam Backup module sbc_smdr allows several switches to control the backup or restore behaviour.

The special options are shown in sbc_smdr usage output.

oes642fix:~ # /opt/sesam/bin/sesam/sbc_smdr
2009-08-02 12:33:47: sbc-3036: Info:     # @(#)SESAM BACKUP CLIENT FOR NETWARE FILE SYSTEMS,  
VERSION: 2.0A4 Build: 1.433 20090804 13:34:23 Linux i686 postfix #
2009-08-02 12:33:47: sbc-3000: Info:
usage:
sbc -b|r|D|h     [-a <DB_options>][-C <control_host>] [-d <device>]
                [-f <list_source>] [-F <data_format>] [-i <saveset_info>]
                [-j <job_name>] [-l <level>] [-L <control_target>]
                [-n <segment_number>] [-o {options}]
                [-N "<SMDR>:<TSA>:<TS>:<User>:<Pass>:0|1"
                [-O <STOR/RETR_direct>] [-P <PID>] [-R <restore_target>]
                [-s <saveset_spec>] [-S <storage_node>] [-t <tape_spec>]
                [-T <since_time>] [-x <exclude_regexp>] [-X <exclude_list>]
                [-v <level>]
# backup  #   [<backup_source1>[ <backup_source2> <backup_sourceN>]] |
# restore #   [<restore_source1>[ <restore_source2> <restore_sourceN>]] |
# Display #   [<backup_source1>]
# help    # 

{options}: comma separated list of
only for backup:    uncompress            # expand compressed data
                                          ### open modes:
                    OPEN_READ_DENY_WRITE  #  deny write
                    USE_LOCK_MODE_IF_DW_FAILS # lock if deny write failed
                    NO_LOCK_NO_PROTECTION # no lock and not protection
                    OPEN_READ_ONLY        # dirty read
                                          ### TSA specific open modes:
                    PRESERVE_ACCESS_TIME  # allow HSM solutions

only for restore:   rename, overwrite     # rename/overwrite if file exists
                    plain, tree           # restore plain/tree in target dir
                    next                  # start from subsequent tape
                    skip_data             # process only ACL (Trustees)
                    noacl                 # process without ACL (Trustees)


The meanings of the special open mode and TSA specific open modes are described in Novell SMS documentation. (See http://developer.novell.com/documentation//smscomp/index.html - Section "Target Services Generic Open Mode Values" )

Backup of OES1 Novell Directory on Linux

On Novell OES1 Linux there is no TSANDS available for eDirectory. Therefore SEPsesam provides the special backup type "OES Novell Directory" on OES1 Linux. This backup type is using SEP's sbc_nds and Novell's ndsbackup to back up eDirectory. sbc_nds is generating an apropriate commandline for backup level FULL/DIFF and INCR. ndsbackup needs User and Password. These values must be defined in the properties of the Backup Task as Backup Option and Restore Option with -a user={your user},pass={your password}


For instance:

-a user=cn=admin.o=novell,pass=novell


As with OES2 the TSANDS Daemon is available and is used for the Backup. Choose "eDirectory" as Backup type.

Requirements

  • sesam-novell-client >= 3.0.1.15

Configuration

  • Client configured with User and Password
  • If not already exisitng a Backup User with Password for eDirectory Backup must be configured in Novell iManager.
  • Backup Task with Type OES Novell Directory
  • Source must be identifier for eDirectory Tree or Subtree. With the scan function of the program ndsbackup the eDirectory identifiers on OES Linux System may be retrieved:
ndsbackup s 
  • Set 'Backup Options' and 'Restore Options' of backup task to:
 -f @@sbc_nds -F none -a user={User},pass={Password}

Path for ndsbackup since eDirectory 8.8.1

Since eDirectory version 8.8.1 ndsbackup is not located in /usr/bin any longer but in /opt/novell/eDirectory/bin/ndsbackup

To enable an execution with SEPsesam a link into the SEPsesam bin directory is necessary.

Use the following command in case of a standard installation:

ln -sf /opt/novell/eDirectory/bin/ndsbackup /opt/sesam/bin/sesam

Restore in case of OES1-Linux

There is no selective restore possible, but you can filter specific subtrees. To do this you have to choose "Expert Options" in the restore wizard and put the requested subtree under tab 'Filter'.

  • Target '/' restores all data into original tree.
  • With 'Filter' in 'Expert Options' only the given subtree or object will be restored.


Example: Restore of the user 'sesam' of the domain 'sep'

HINT: The identifier for the object may be extracted from the backup protocol.

Backup protocol eDirectory OESNIX1:

2007-05-16 20:55:26: sbc-3036: Info:     # @(#)SESAM BACKUP CLIENT FOR UNIX FILE SYSTEMS, VERSION: 1.8R2 Build: 1.149 ...
2007-05-16 20:55:26: sbc-3063: Info:     -------------------- Operation Parameters --------------------
2007-05-16 20:55:26: sbc-3100: Info:     Program PID:      30213
2007-05-16 20:55:26: sbc-3030: Info:     Operation:        BACKUP, Level: COPY
2007-05-16 20:55:26: sbc-3031: Info:     Storage Host:     miraculix.sep.de:11001,0-0::
2007-05-16 20:55:26: sbc-3032: Info:     Control Host:     miraculix:11001::
2007-05-16 20:55:26: sbc-3033: Info:     Device:           SMS:disk4:SHARE:0
2007-05-16 20:55:26: sbc-3207: Info:     sbc: Found libacl.so -> implicitly switching to acl mode.
2007-05-16 20:55:26: sbc-3034: Info:     Saveset Target:   SC20070516090544:job=oesnix1_nds,nod=oesnix1,cmd=sbc,src=OESNIX1,...
2007-05-16 20:55:26: sbc-3064: Info:     --------------------- Operation Messages ---------------------
2007-05-16 20:55:26: sbc-3002: Info:     Building file list from: [sbc_nds /opt/sesam/bin/sesam/sbc -b -C miraculix:11001 -S ...
2007-05-16 20:55:26: sbc-3003: Info:     Opening saveset: SC20070516090544
2007-05-16 20:55:27: sbc-3104: Info:     Saveset info: [SEGMENT=2]
2007-05-16 20:55:27: sbc-3004: Info:     Begin writing to saveset...
2007-05-16 20:55:27: sbc-3074: Info:     Backup start time [20070516205527]
a .T=OESNIX1.
a .O=sep.
a .CN=admingroup.O=sep.
a .CN=admingrp.O=sep.
a .CN=novlxtier.O=sep.
a .CN=www.O=sep.
a .CN=admin.O=sep.
a .CN=eGuidePublicUser_9392.O=sep.
a .CN=novlwww.O=sep.
a .CN=novlxregd.O=sep.
a .CN=novlxsrvd.O=sep.
a .CN=oesnix1admin.O=sep.
a .CN=sesam.O=sep.
a .CN=wwwrun.O=sep.
a .CN=oesnix1_NSS.O=sep.
a .CN=oesnix1_SYS.O=sep.
a .CN=oesnix1.O=sep.
a .CN=oesnix1-PS.O=sep.
a .CN=LDAP Server - oesnix1.O=sep.
a .CN=LDAP Group - oesnix1.O=sep.
a .CN=Http Server - oesnix1.O=sep.
a .CN=SAS Service - oesnix1.O=sep.
a .CN=SSL CertificateDNS - oesnix1.O=sep.
a .CN=SSL CertificateIP - oesnix1.O=sep.
a .CN=SNMP Group - oesnix1.O=sep.
a .CN=UNIX Workstation - oesnix1.O=sep.
a .CN=UNIX Config.O=sep.
a .sambaDomainName=OESNIX1-W.O=sep.
a .sambaDomainName=OESNIX2-W.O=sep.
a .CN=oesnix1_NSS_POOL_POOL.O=sep.
a .CN=oes1dom.O=sep.
a .CN=MTA.CN=oes1dom.O=sep.
a .CN=post.O=sep.
a .CN=POA.CN=post.O=sep.
a .CN=test.O=sep.
a .CN=post Bibliothek.O=sep.
a .CN=Security.
a .CN=KAP.CN=Security.
a .CN=W0.CN=KAP.CN=Security.
a .CN=OESNIX1 CA.CN=Security.
a .CN=Authorized Login Methods.CN=Security.
a .CN=NDS.CN=Authorized Login Methods.CN=Security.
a .CN=Challenge Response.CN=Authorized Login Methods.CN=Security.
a .CN=Authorized Post Login Methods.CN=Security.
a .CN=Login Policy.CN=Security.
a .CN=Security Policy.CN=Security.
a .CN=Password Policies.CN=Security.
...

To restore the user 'sesam' of the domain 'sep'

.CN=sesam.O=sep.

must be set in the Restore Wizard in Expert Options in Tab Filter.


Restore in case of OES2-Linux

When using OES2-Linux it's possible to restore a eDirectory object.


Backup of Clusters

To backup clusters the service smdr.novell must be registered in SLP (Service Locator Protocol).

In the following a way to retrieve the cause for problems is shown for OES Linux Clusters. The description is similar for Netware Cluster - beside the commands must be adopted for Netware or a Linux Shell emulation must be used.


This example will show, how to configure and adjust the nodes to use the clustermode. The example uses the two nodes lnode1 (172.16.1.202) respectively lnode2 (172.16.1.203) and the ressource DATENPOOL_SERVER (172.16.1.207).


Check via netstat:

#> netstat -apn | grep 40193
tcp        0      0 172.16.1.203:40193     0.0.0.0:*               LISTEN     7539/smdrd
#> netstat -apn | grep 40193
tcp        0      0 172.16.1.202:40193     0.0.0.0:*               LISTEN     7539/smdrd

In this case the cluster ressource neither is bonded to lnode1 nor lnode2.


For a Cluster Backup smdrd must be bound to Cluster IP. Therefore a SLP registration for service smdr.novell is necessary.

Check with:

#> slptool findsrvs smdr.novell
service:smdr.novell://172.16.1.203:413/LNODE2,65535
service:smdr.novell://172.16.1.202:413/LNODE1,65535

The cluster nodes are registered, but not the ressource DATENPOOL_SERVER.

When using more than one IP address, the SLP has to recognize the correct IP. Check /etc/opt/novell/sms/smdrd.conf

Entry for IP of Cluster must be present (using lnode2):

ip: 172.16.1.203


Post SLP registration for IP of Cluster:

#> slptool register service:smdr.novell://172.16.1.203:413/CLUSTER_DATENPOOL_SERVER

Check with

#> slptool findsrvs smdr.novell
service:smdr.novell://172.16.1.203:413/LNODE2,65535
service:smdr.novell://172.16.1.207:413/CLUSTER_DATENPOOL_SERVER,65535
service:smdr.novell://172.16.1.202:413/LNODE1,65535

Now the ressource DATENPOOL_SERVER is registered correctly and is shown as CLUSTER_DATENPOOL_SERVER with SLP, which is the name to use in Sesam.

As from now CLUSTER_DATENPOOL_SERVER can be added as Sesam client. To continue an active backup after a clusterswitch (failover/failback) it's required to use a datamover, which has nothing to do with the cluster.

One possible output when browsing the ressource CLUSTER_DATENPOOL_SERVER:

Image:Cluster_Browse_en.jpg


The source Full Pool backs up all volumes from a 'NetWare Cluster File System'.

Restore an OES Netware backup onto an OES Linux system

Caution!

To restore a backup type OES Netware onto a OES Linux system a SEP sesam Server version 3.4.1.27 or higher is necessary!

By default, after the selection of the restore task on page "Start" in the restore wizard only hosts with the same operating system platform are offered. That means only OES Netware hosts will appear in the field "Target Node". To make it possible to restore this host backup to a OES Linux host you have to activate this with a Sesam database entry.

Before you perform the database command you should set the Sesam profile described here. Now you can execute the sm_db command line.

sm_db "update task_types set flags='os_indep', protection='A' where backup_type='NetWare'"

After that you can select also OES Linux systems as "Target Node" in the restore wizard (see the example in the figure below, there is the OES Linux host "oesnix1").

Selection of platform independent hosts in the field "Target Node"
Selection of platform independent hosts in the field "Target Node"

Novell Teaming

SEP support the backup for Novell Teaming. This product can be installed as a stand-alone solution for Teaming users or it can be integrated into a complete backup, recovery and disaster recovery solution using any of SEP's Novell certified backup products. Discover how to do a Teaming backup here:

[| SEP sesam Teaming Backup part 1]

[| SEP sesam Teaming Backup part 2]

Troubleshooting

See Troubleshooting for Netware

Further Reference

The configuration of the Novell Storage Management Services is described in "Storage Management Services Administration Guide"


The specific TSAs are described in these documents:

Personal tools