Accessing the Web Management Interface

The web browser based management console allows for administration of the QUADStor VTL system. For Linux installations, if you have SELinux enabled on the system, ensure that you follow the instructions mentioned under "SELINUX CONSIDERATIONS" in http://www.quadstor.com/vtlsupport/145-installation-on-rhel-centos-sles-debian.html

Ensure that the httpd/apache2 server is running on the system.

In order to access the console, open a web browser and type the address of the QUADStor VTL system. Ensure that javascript is enabled in your browser. (Javascript is by default enabled for browsers)

Alternative the index html page can be accessed by http://<address>/vtindex.html

Once the HTML page loads you would be presented with a menu as shown in the following figure

QUADStor Web based Management

Each menu "System", "Physical Storage", "Storage Pools" and "Virtual Libraries" is a clickable link. "Physical Libraries" and "Job Management" links are only available with the extended edition product

Securing access to the web interface

With out any additional setup, the web interface can be accessed by any one from a browser. Access can be restricted and secured by simply two steps.

  1. http authentication using htaccess and htpasswd
  2. SSL access

Setup is one-time only and is persistent across quadstor upgrades.

htaccess setup

1. In the cgi-bin directory create a file called .htaccess

2. Add the following lines to the file

AuthName "QUADStor VTL Authentication"
AuthType Basic
AuthUserFile /usr/local/www/apache22/cgi-bin/.htpasswd
Require valid-user
AuthName "QUADStor VTL Authentication"
AuthType Basic
AuthUserFile /var/www/cgi-bin/.htpasswd
Require valid-user

Create the .htpasswd file

htpasswd -s -b -c /var/www/cgi-bin/.htpasswd webadmin webadmin

Replace "webadmin webadmin" with the desired "username password"

Edit the httpd.conf and add "AllowOverride AuthConfig Limit" to the cgi-bin directory section as below


    AllowOverride AuthConfig Limit
    Options None
    Order allow,deny
    Allow from all

cgi-bin and httpd.conf paths

FreeBSD with apache22 
/usr/local/www/apache22/cgi-bin
/usr/local/etc/apache22/httpd.conf

FreeBSD with apache1.x
/usr/local/www/cgi-bin
/usr/local/etc/apache/httpd.conf

RHEL/CentOS
/var/www/cgi-bin
/etc/httpd/conf/httpd.conf

SLES
/srv/www/cgi-bin
/etc/httpd/conf/httpd.conf

Debian
/usr/lib/cgi-bin
/etc/httpd/conf/httpd.conf

Enabling SSL access

SSL access setup is out of scope of this document. Once you have ssl setup for your OS, access the web page using https:// instead of http://
Also add the SSLRequireSSL directive for the cgi-bin Directory section in httpd.conf. This would force ssl access every time you access the web interface
For example:


    AllowOverride AuthConfig Limit
    Options None
    Order allow,deny
    Allow from all
    SSLRequireSSL