1903
Comment: install, LE, TODO
|
3975
Complete the notes
|
Deletions are marked like this. | Additions are marked like this. |
Line 44: | Line 44: |
* Use {{{ bbb-conf -check }}} to find all the locations where the external IP of the host should be used (the Cloudflare IP will be appearing here incorrectly) * Use stun:stun.freeswitch.org for the STUN server * These locations include: * /opt/freeswitch/etc/freeswitch/vars.xml * /opt/freeswitch/etc/freeswitch/sip_profiles/external.xml * /etc/bigbluebutton/nginx/sip.nginx * /usr/local/bigbluebutton/bbb-webrtc-sfu/config/default.yml * /usr/share/bbb-web/WEB-INF/classes/spring/turn-stun-servers.xml * /etc/kurento/modules/kurento/WebRtcEndpoint.conf.ini * A copy of the output of {{{ bbb-conf -check }}} has been placed in /home/wheel/docs/bbb-conf-check.txt |
|
Line 45: | Line 56: |
The LDAP config for the UCC BigBlueButton is in the Greenlight .env file /root/greenlight/.env It roughly looks like this {{{ LDAP_SERVER=samson.ad.ucc.gu.uwa.edu.au LDAP_PORT=636 LDAP_METHOD=ssl LDAP_UID=sAMAccountName LDAP_BASE=dc=ad,dc=ucc,dc=gu,dc=uwa,dc=edu,dc=au LDAP_BIND_DN=CN=greenlightbind,CN=Users,DC=ad,DC=ucc,DC=gu,DC=uwa,DC=edu,DC=au LDAP_AUTH=simple LDAP_PASSWORD=REPLACEME LDAP_ROLE_FIELD=ou LDAP_FILTER= LDAP_ATTRIBUTE_MAPPING=name=displayName;uid=uid; }}} |
|
Line 48: | Line 78: |
Check that things mostly work with the Demo |
|
Line 50: | Line 82: |
=== Database === You can copy the existing databases from the previous host across from /root/greenlight/db into the same location on the new host You will need to do some work to update the DB password and do the database migration ( [TRS] can you help fill this out ) {{{ docker run --rm bigbluebutton/greenlight:v2 bundle exec rake secret docker-compose up -d docker run --rm --env-file .env bigbluebutton/greenlight:v2 bundle exec rake conf:check docker exec -it greenlight-v2 /bin/bash docker-compose down docker-compose up -d }}} === Recordings === This can be copied from /var/bigbluebutton/published to the new host |
|
Line 53: | Line 106: |
Have a long evening chat with your fellow UCCans | |
Line 56: | Line 110: |
=Future Tasks= | * apt-get purge bbb-demo = Future Tasks = |
Line 61: | Line 117: |
== Thanks == Thanks to [MPT], [NTU], [TRS], [TPG] and [MTL] for making it work again |
Describe BigBlueButtonRebuild here.
Rebuild Procedure
VM and Operating System
- Back up previous VM
- Change IP address of previous VM to another IP in UCC Machine Room range
- Create new VM on UCC Proxmox cluster
- New VM config is 8GB, 8 cores, defaults for most things
- New VM storage is 32G, on vmstore_ssd
Install base operating system for BigBlueButton
- Ubuntu 18.04 (via netboot.xyz.iso)
- Provision on network with original VM IP address
- Add UCC wheel keys to root user and permit root logins remotely via SSH
UCC SOE
The UCC Ansible SOE https://gitlab.ucc.asn.au/ucc-systems/ucc-ansible-soe has a playbook for making the new BigBlueButton host a UCC server.
- If not already present, add the host to ucc-hosts inventory under bbb-hosts
- Run the playbook
ansible-playbook -K -i ucc-hosts bbb-hosts.yml
Big Blue Button Install
install.sh
Download the install.sh script wget https://ubuntu.bigbluebutton.org/bbb-install.sh
- Run with the following command line arguments
time eatmydata ./bbb-install.sh -v bionic-230-dev -a -w -g -s meetings.ucc.asn.au -e [email protected] -x
Let's Encrypt
As the host will not have a working webserver initial to do URL based challenges, you need do a DNS TXT challenge manually. Do this via the usual UCC DNS update mechanism
Configuration changes
Use bbb-conf -check to find all the locations where the external IP of the host should be used (the Cloudflare IP will be appearing here incorrectly)
- Use stun:stun.freeswitch.org for the STUN server
- These locations include:
- /opt/freeswitch/etc/freeswitch/vars.xml
- /opt/freeswitch/etc/freeswitch/sip_profiles/external.xml
- /etc/bigbluebutton/nginx/sip.nginx
- /usr/local/bigbluebutton/bbb-webrtc-sfu/config/default.yml
- /usr/share/bbb-web/WEB-INF/classes/spring/turn-stun-servers.xml
- /etc/kurento/modules/kurento/WebRtcEndpoint.conf.ini
A copy of the output of bbb-conf -check has been placed in /home/wheel/docs/bbb-conf-check.txt
LDAP
The LDAP config for the UCC BigBlueButton is in the Greenlight .env file /root/greenlight/.env
It roughly looks like this
LDAP_SERVER=samson.ad.ucc.gu.uwa.edu.au LDAP_PORT=636 LDAP_METHOD=ssl LDAP_UID=sAMAccountName LDAP_BASE=dc=ad,dc=ucc,dc=gu,dc=uwa,dc=edu,dc=au LDAP_BIND_DN=CN=greenlightbind,CN=Users,DC=ad,DC=ucc,DC=gu,DC=uwa,DC=edu,DC=au LDAP_AUTH=simple LDAP_PASSWORD=REPLACEME LDAP_ROLE_FIELD=ou LDAP_FILTER= LDAP_ATTRIBUTE_MAPPING=name=displayName;uid=uid;
Demo
Check that things mostly work with the Demo
Data Migration
Database
You can copy the existing databases from the previous host across from /root/greenlight/db into the same location on the new host
You will need to do some work to update the DB password and do the database migration ( [TRS] can you help fill this out )
docker run --rm bigbluebutton/greenlight:v2 bundle exec rake secret docker-compose up -d docker run --rm --env-file .env bigbluebutton/greenlight:v2 bundle exec rake conf:check docker exec -it greenlight-v2 /bin/bash docker-compose down docker-compose up -d
Recordings
This can be copied from /var/bigbluebutton/published to the new host
Testing
Have a long evening chat with your fellow UCCans
Clean Up
- apt-get purge bbb-demo
Future Tasks
- Set up the Let's Encrypt cert before BBB install (needs UCC DNS helper infrastructure first)
- Look at one of the suggested ansible roles for installation from the BBB website and integrate into the UCC Ansible SOE
Thanks
Thanks to [MPT], [NTU], [TRS], [TPG] and [MTL] for making it work again