Attention: This topic applies to a feature that is in Early Adopter Program (EAP) release status. We intend to provide the finalized
feature in a future release. Please contact OpenText Support for Micro Focus Products if you require further clarification.
Overview of the setup process
You need to manually configure the file service in ESCWA so that it connects to the
Data Tools client, that is, the file editor UI. Currently, the setup supports using remote data servers, not local servers. Enterprise
Server default security must be enabled, otherwise the file service will reject any connection attempts.
The process for setting up the file service is as follows:
- Open the ESCWA web UI.
- Create an RFA (remote file access) listener.
- Enable security for the enterprise server region.
- Allow user access to the cataloged datasets.
Start
Enterprise Server Common Web Administration (ESCWA)
- In a web browser, type the URL
http://localhost:10086.
This starts the
ESCWA UI in a browser.
- Click
Native.
- In the navigation pane, expand
to view existing enterprise server regions.
The following sections assume that an enterprise server region has been created and is visible in ESCWA.
Add an RFA listener
To set up a new listener that communicates with the end-point client:
- Go to
. Ensure that the region is not running.
- Click
.
- Expand
Communications Process 1 to view all listeners.
- Select
New Listener in the Listener Properties page.
- In the
Name field, type the name you want to assign to the listener, for example,
RFA.
Note: The listener name cannot be the same as the name of the region.
- In the
Port field, enter the port number you intend to use.
Note: The hostname and/or IP address can be set to localhost and 127.0.0.1 respectively to limit access to the service to the local
machine, which provides additional security. If localhost is not specified, you should enable TLS, otherwise user credentials
and file details will be transmitted unencrypted across the network.
- Select
RFA in the Conversation Type section.
- If you want to define a TLS enabled file service listener:
- Click
TLS Settings.
- Check
Enable TLS.
- Type the location of the CA certificate into the
Certificate File field.
- Type the location of the private key into the
Keyfile field.
- Click
Save.
The new
RFA listener is displayed under
Communications Process 1.
Enable security for the enterprise server region
The enterprise server region security must be configured. In addition, you must ensure that a user has the correct permissions;
you can do this by creating a new user or edit the permissions of an existing user.
First, verify that security is enabled for the region:
- In ESCWA, select your enterprise server region in the navigation pane.
- Click
to open the Region Security Facility Configuration page.
- Ensure that the option
Use Default Security Facility Configuration is checked.
Configure the user permissions
Next, configure the user to enable access.
- In ESCWA, click
Security.
- In the navigation pane, go to
.
- If editing the permissions of an existing user, click
(Edit) to open the
Properties window. Alternatively, you can create a new user and configure their permissions. To create a new user:
- Click
New.
- In the
Account Id field, enter an account name. In this instance, we will use the account ID
RFAUSER for demonstration purposes.
- In the
Password field, type a suitable password.
- Under
Groups, check
#AllUsrs.
- Click
Save.
Now, you must configure the permissions of the user of the datasets in the data repository.
- Go to
.
- Expand
DATASET, and select the datasets(s) that the user should be allowed to access.
This opens the Resource Options page which allows you to set access rules for the chosen dataset.
- In the
ACL field, type
allow:<AccountId>:alter. As an example, for the user RFAUSER, you would type
allow:RFAUSER:alter.
This allows the user to view and modify the region's catalog. Alter access is required for the editor to open datasets.
- Click
Apply.
- Click
DATASET in the navigation pane.
- Click
New Resource.
- In the
Name field, type
<RegionName>.<AccountId>.
- In the
ACL field, type
allow:<AccountId>:alter, and click
Save.
The class is added to the list of resources and you can view the permissions in the
Description column. The region is ready for access via the file service API.
- To start the region, click
, and click
(Start).