FileWave Server Installation & Upgrade
- FileWave Server Installation
- FileWave Access - Passwords
- FileWave Server On-Premise
- FileWave Server Time
- FileWave Server Upgrades
FileWave Server Installation
FileWave Server is the key component to device management. The setup process will require not only a FileWave Server installation, but basic configuration will require the FileWave Central App (macOS or Windows). Some additional configuration may also be achieved through the web admin: FileWave Anywhere.
Other appliances not covered in this chapter are:
- Boosters
- IVS
Overall requirements
FileWave server installation. This can be hosted or on-premise. For on-premise, FileWave Download pages not only provide the installer, but pre-built VMs are available for quick setup.
Manual Installation
If not using a pre-built VM:
- Download the latest server version and copy to the FileWave Server
- If using a shell, open this to the server, e.g. ssh, putty, etc. and elevate to the root user
- Unzip the download
- Run the installer
Follow the instructions, regarding the commands required, from the matching download pages.
FileWave Server networking
Please review the Default TCP and UDP Port Usage and also review FileWave Server should not have IPv6 enabled.
FileWave Access - Passwords
FileWave Administrator
FileWave installations provide an initial user which has full permissions. On initial launch, this password should be changed as a matter of security. The default account is:
- Name: fwadmin
- Password: filewave
The password may be changed in the FileWave Central software application Menus, through:
- Assistants > Manage Administrators
Select the 'fwadmin' account, followed by the 'Set Password' radial button. Enter the chosen secure password
SSH
SSH is initially enabled and the root account of the default setup has the same password as fwadmin, however, they are not aligned. Consider immediately changing the root users account password and disable the ability to access SSH to the server from the internet.
Log into a shell on the server as root and run the following command:
passwd
A prompt will require input of the new password and secondary confirmation of this new password.
FileWave Server On-Premise
Where servers are installed in on-premise environments, a couple of basic procedures should follow immediately.
Server Name
Arguably, the local server name need not necessarily matter, but the FileWave Server name is very much something to consider carefully.
When naming the server, always provide a Fully Qualified Domain Name. This should be a name that could be used externally, even if that is not the initial plan at inception. Subsequently changing the server name has massive impact or devices already enrolled. Using a name that could be used at a latter date, provides future-proofing, extensively simplifying workload.
Certificates
A cert will need to be generated with a Subject Alternate Name (SAN) which matches the chosen server name. Please see our KB pages on certificates:
https://kb.filewave.com/books/certificates
Once a P12 certificate is generated, it may be uploaded to the FileWave Server through the FileWave Central Application.
Naming the Server
The chosen name should be entered into the FileWave Central application's Mobile tab. For example, for a server called 'demo.filewave.ch':
Server Command Line Configuration
With a certificate and name configured, there is a small amount of input required via the server's command line.
Hosts File
The server's host file should be edited to ensure the FileWave Server name is entered. Take the following example hosts file:
127.0.0.1 localhost
::1 localhost
From the same above example 'demo.filewave.ch', the hosts file may edited in one of two ways. Either:
127.0.0.1 localhost demo.filewave.ch
::1 localhost demo.filewave.ch
or
127.0.0.1 localhost
127.0.0.1 demo.filewave.ch
::1 localhost
::1 demo.filewave.ch
It does not matter if the additional entry is space separated on the same line or a new line entry, either method does the same process.
Apache Conf File
This is only required if the local server name does not match the FileWave Server name.
Edit the following file:
/usr/local/filewave/apache/conf/httpd_custom.conf
Add the following entry for ServerName:
ServerName demo.filewave.ch
Restart Server Process
After configuration change, the server process should be restarted. This command should be ran as root.
fwcontrol server restart
FileWave Server Time
Time is critical with servers and acceptance of certificates and communication. As such, it is imperative that time is kept in sync. It is possible to run one-off commands to achieve this, but better still, consider enabling automated time sync.
macOS
macOS devices may just have time configured through the System Preferences or Settings
Linux
For linux servers, check out our KB on this topic:
Set date/time on Virtual Appliances
FileWave Server Upgrades
Upgrading for hosted servers will be a matter of communication between FileWave and hosted customers. However for on-premise, consider the following process
Upgrade Process
- Download the chosen upgrades from the FileWave Download Pages. This will be at the very least the FileWave Server and FileWave Central application
- Copy FileWave server installer to the server
- Copy FileWave Central installer to a chosen macOS or Windows device
- Lock all devices, from the right click contextual menu 'Lock' (Mobile and Computer devices can be locked separately from the relevant client View. Multiple devices may be selected and actioned in one go.)
- Run an Update Model
- Run a backup
- If this is a VM, stop the FileWave Server process and take a snapshot
- Follow upgrade instructions from the download pages matching the installer version, including updating the server OS.
- Once completed, instal or upgrade FileWave Central application
- Connect and test a Model Update
- Unlock an example, test device and ensure all is well
- Either test further or once satisfied, unlock all other devices necessary
Before locking clients, confirm none are already locked for an alternate reason. Once completed and unlocking, these devices may then be targeted to remain locked.