PageViews: 947 hits / 123 nets

Remote Administration of DeleGate

Yutaka Sato

December 7, 2005

DeleGate/9.0.5 supported a form based remote configuration and administration of DeleGate via HTTPS. With this interface, an authorized administrator can create or edit configuration(s) of a DeleGate server(s), start and stop servers, create and issue digital certificates, browse administration data including log files, and so on. The administration interface of a DeleGate server is enabled optionally, at admPort on admHost, and is available at the URL "https://admHost:admPort/-/admin/".

Here is a server for the demonstration of DeleGate with remote administration.
Here is a sample snapshot of the screen for the administration.

To use this feature, dynamic linking libraries of OpenSSL0.9.7 or later is necessary. Use the DYLIB parameter when your libraries are not at the standard location. For users who have some problem to make OpenSSL libraries for dynamic linking, binary versions of it for Linux (lib{ssl,crypto}.so.0.9.7), MacOSX (lib{ssl,crypto}.0.9.7.dylib) and Win32 ({ssleay,libeay}32.dll) are available at ftp://ftp.delegate.org/pub/DeleGate/bin/.

How to authorize the administrator

Use AUTH=admin option to specify how to authenticate a remote user and authorize the remote administration of this DeleGate.

SERVER=http -P8080/admin AUTH="admin::dgadmin:dgpass"

In this example, if the client send the username "dgadmin" with the password "dgpass", then the client is authorized to be the administrator. Remote administration is recommended to be done via HTTPS/SSL, accessing this server as "https://thisHost:8080/-/admin/". A port number followed by "/admin" means accepting HTTPS/SSL on the port too. DeleGate for any application protocol can have a dedicated port for administration.

SERVER=ftp -P21,9021/admin AUTH="admin::dgadmin:dgpass"