P a g e | 1

Marten Vosmer: +31 622 473 076 | marten.vosmer@lialis.com | http://www.file-jockey.com

File Jockey Cloud security overview and setting up

Marten Vosmer posted this on July, 2013

File Jockey Cloud allows your users to securely access and modify IBM Lotus Quickr and

IBM Connections attachments from their iPads, iPhones, Androids or other mobile

devices… without having to install any new software on your own servers. This means you

don't have to rely on less suitable solutions, like Dropbox. More general information and

pricing can be found on this page: http://www.file-jockey.com/learn-more/

Setup

Lialis runs the WebDAV servers (Apache Proxy and WebDAV server 1 and 2) on Amazon

EC2 cloud systems. These servers are located in Ireland for WebDAV clients across in

Europe. The clients mobile device connects to the central apache proxy server based on a

client specifick URL, for example https://tyrellcorp@lialis.com. It’s possible to use your

company domain for this URL, for example https://webdav@tyrellcorp.com.

Security

All communication is enforced over HTTPS, this is also the case between the WebDAV

Proxy and WebDAV servers. The function of the WebDAV proxy server is to balance the

load between the two WebDAV servers. The WebDAV proxy server acts as an pass thru

between the WebDAV clients and the WebDAV servers. The WebDAV servers translate the

WebDAV client requests to IBM Quickr or Connections language. The WebDAV proxy

server does not store any client related information besides general server logging. On the

WebDAV servers we cache the clients documents send to or received from the Quickr or

Connections servers to improve the speed of the WebDAV server. These files are stored

encrypted on the WebDAV server and are removed after 60 minutes from the WebDAV

server when the files are not used by the users. The client’s credentials, set on the mobile

device, are given to the WebDAV server which passes these credential to the clients

WebDAV

proxy

server

Mobile devices

client 1

Mobile devices

client 2

Mobile devices

client 3 and more

WebDAV

server 1

WebDAV

server 2

Quickr / Connections

server client 1

Quickr / Connections

server client 2

Quickr / Connections

server client 3 and more

P a g e | 2

Marten Vosmer: +31 622 473 076 | marten.vosmer@lialis.com | http://www.file-jockey.com

Connections or Quickr server. Lialis does not log the client’s credentials passwords, only the

user names are logged on the WebDAV server.

The WebDAV server does not check if the user’s credentials are valid. It will allow any user

(who knows the WebDAV URL (for example tyrellcorp@lialis.com) to pass thru to the clients

Quickr or Connections server. At the clients Quickr or Connections server the user

credentials checked. If the credentials are reported as invalid by the clients Quickr or

Connections server the File Jockey server will give a not authorized error to the mobile

device.

The File Jockey server setup is used by users of multiple clients. The File Jockey server

also used for free demonstration purposes of File Jockey with IBM Greenhouse.

The WebDAV proxy server runs on Linux and the WebDAV servers run on Windows 2008.

These servers are EC2 instances located at Amazon Ireland. Access to these servers is

protected by an Amazon security group in which the ports are set to allow communication

via. These ports are 22 (Linux server access), 443 (HTTPS) and 3389 (RDP Windows). On

the Windows server running WebDAV a firewall is enabled where the ports 443 and 3389

are open.

Licensing

Lialis is billed by Amazon for running costs of the EC2 servers. These costs include the hire

of the Windows and Linux operating systems. Lialis runs WebDAV Cloud on Apache

Tomcat (not on Lotus Domino server). All licenses that must to be paid to third parties are

paid by Lialis.

Failover

The WebDAV servers running at Amazon Ireland are also running at Amazon N. Virginia.

Suppose Amazon Ireland goes down then Lialis can switch to Amazon N. Virginia by

changing the IP address of the WebDAV URL (for example tyrellcorp@lialis.com). Then this

DNS change must replicate over the world which will take minutes till hours.

Amazon EC2 servers

File Jockey Cloud servers run on Amazon EC2 systems. The great advantage of EC2 is that

Lialis can increase or lower the performance of the system within 1 minute.

P a g e | 3

Marten Vosmer: +31 622 473 076 | marten.vosmer@lialis.com | http://www.file-jockey.com

Setting up instructions

For setting up WebDAV cloud Lialis needs the following information from the client.

1. The URL of the Connections or Quickr server (for example

https://quickr@tyrellcorp.com)

2. Optional: a File Jockey account to one Quickr place of Connections Community

dedicated to Lialis so we can test the setup and monitor the availability of the

complete WebDAV system.

Monitoring

Lialis has a WebDAV monitoring system in place that downloads a particular file from the

Quickr place or Connections community every 5 minutes. When this download fails Lialis

and the client will be notified by email. For this monitoring system the File Jockey account

and access to one Quickr place of Connections Community of the client must be in place.

User guides.

On this page we have written a few guides how to use different WebDAV clients on for

example iPad, iPhone, Android, Mac and Windows PC. You can use these guides to write

your own documentation. View the document link table at the end of this document.

We will expand this list monthly with new guides so please visit the File Jockey website

regularly.

Setting up a Windows based WebDAV client for IT personal

Normal WebDAV users will use the mobile devices with apps like the Goodreader. For IT

personnel it’s convenient to have a Windows based WebDAV client for checking if the

WebDAV system is working and give users support. This guide explains how to setup the

Bitkinex client.

http://www.file-jockey.com/webdav-clients-for-windows/

P a g e | 4

Marten Vosmer: +31 622 473 076 | marten.vosmer@lialis.com | http://www.file-jockey.com

When following this guide you must use your client specific WebDAV URL and the

credentials supplied to you by Lialis during the configuration of File Jockey Cloud.

Special requirements for IBM Lotus Quickr users of File Jockey

File Jockey will not work if the Quickr users are only registered as Quickr users inside the

Quickr places. File Jockey requires, the Domino server running Quickr, to be able to

validate the users via the Domino directory or via directory assistance on the Domino server

running Quickr. You have the option to replicate the production Domino directory (with all

users) to the Domino server running Quickr being the names.nsf or being a secondary

Domino directory (for example names2.nsf) that is configured as an additional Directory in

directory assistance. You have also the possibility to setup directory assistance on the

Domino server running Quickr to lookup the users via a LDAP repository or to lookup the

users in a Domino Directory on a different Domino server. More details on setting up

directory assistance can be found here.

Quickr for Domino, new places do not show up on WebDAV, the reason is caching by the

Quickr server. You can disable caching by adding this setting to the Notes.ini of the Domino

server running WebDAV QuickPlaceWebCacheEnabled=0 or you can limit caching:

QUICKPLACEWEBCACHEENABLED=1

QUICKPLACEWEBCACHEGCINTERVALINMIN=60

File Jockey also supports Quickr running on WebSphere. LDAP must be configured on

WebSphere for the user authentication.

Special requirements for IBM Connections users of File Jockey

None

File Jockey is the missing link between mobile device and IBM. We have written several other manuals in using apps combined with File Jockey and IBM Connections and Quickr.

More details about the File Jockey software can be found on http://www.file-jockey.com

P a g e | 5

Marten Vosmer: +31 622 473 076 | marten.vosmer@lialis.com | http://www.file-jockey.com

Manuals Collaboration Quickr / Connections

Lotus Notes databases

iPad iPhone and Android

Make paper a memory with Notability, IBM Connections and File Jockey Paperless meetings with iPad Goodreader and IBM Connections community files Working with Office documents on your iPad and saving them directly in IBM Connections with File Jockey Manage your documents in IBM Connections with File Jockey and Readdle Documents Signing and storing of legal documents in IBM Connections Paperless meetings with Android FolderSync, IBM Connections and File Jockey Notability for iPhone How To Increase Lotus Notes & Quickr Mobile User Adoption Read, annotate, sign, … PDF’s from IBM environments, with PDF Expert and File Jockey

Upload photo's from mobile device directly into Notes mail file folder Releasing files in any Notes database to mobile devices with File Jockey

Windows

Archive your Quickr places or Connections communities Sync files between IBM Connections, file server, Quickr, Dropbox and many more cloud file storage solutions Network drive directly to the files in IBM Connections WebDAV clients for Windows 7 Automatic sync of your IBM Connections files to a folder on your computer (for Windows, Mac and Linux) Windows WebDAV client Total Commander

Mac Working with WebDAV on a Mac