CentOS 7.x create lightsail redmine instance

From Notes_Wiki
Revision as of 07:08, 26 January 2019 by Saurabh (talk | contribs) (Created page with "<yambe:breadcrumb>CentOS_7.x_redmine|redmine</yambe:breadcrumb> <yambe:breadcrumb>CentOS_7.x_Setup_lightsail_instances|Setup lightsail instances</yambe:breadcrumb> =CentOS 7.x...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

<yambe:breadcrumb>CentOS_7.x_redmine|redmine</yambe:breadcrumb> <yambe:breadcrumb>CentOS_7.x_Setup_lightsail_instances|Setup lightsail instances</yambe:breadcrumb>

CentOS 7.x create lightsail redmine instance

To create a AWS ligtsail instance with redmine use following steps:

  1. Create appropriate lightsail instance
  2. For production instances create static IP and attach with instance
  3. Create DNS entry for FQDN mapping to static IP
  4. Allow HTTPS access to server in fail2ban instance networking firewall section
  5. Download corresponding regions private key
  6. chmod 400 <private-key>
  7. ssh -i <private-key> centos@<instance-public-ip>
  8. sudo su -
  9. yum -y install vim
  10. vim ~/.ssh/authorized_keys
    Add own key, Allow <private-key> direct root aaccess. (First line 155x)
  11. Set hostname
    hostname <desired-fqdn>
    vim /etc/hostname
  12. Exit
  13. ssh directly as root with self public key
  14. Search for bitnami installer URL
  15. yum -y install epel-release
  16. yum -y install wget
  17. wget '<Download-URL>' -O '<Installer-filename>'
  18. yum -y install perl-Data-Dumper
  19. Create appropriate swap space using CentOS 7.x adding swap space using file
  20. chmod +x <Installer-filename>
  21. ./<Installer-filename>
    Give standard answers with simple password and admin username. Email can be configured later.
  22. Setup fail2ban using CentOS 7.x fail2ban including firewalld using CentOS 7.x Basic firewalld configuration
  23. Set correct time zone CentOS 7.x Change system timezone
  24. Configure system to store history date time using Storing date / time along with commands in history
  25. exit and ssh again for history settings to take effect
  26. cd /opt/redmine-<ver>/apache2/htdocs
  27. mv index.html index-old.html
  28. wget sbarjatiya.com for downloading index.html containing HTTP meta refresh for redirection
  29. vim index.html
    Add redirect for /owncloud, Remove google identifier, Set appropriate name
  30. Login into redmine and enable authentication and disable self-signup. Optionally enable REST API access.
  31. Generate lets-encrypt certificate if public DNS FQDN is set using:
    /opt/redmine-<ver>/letsencrypt/scripts/generate-certificate.sh -m <admin-email-id> -d <FQDN>
    Run above command again if it fails first time.
    Refer: https://docs.bitnami.com/aws/how-to/generate-install-lets-encrypt-ssl/
  32. 'crontab -e' and update
    0 0 1 * * /opt/redmine-4.0.0-0/letsencrypt/lego
    line to to have first two digit 0 and 0 randomized to minutes between 5 to 55 and hour between 1 to 4
  33. Open site using https://<fqdn> and verify that it is opening properly
  34. For compulsary https access edit /opt/redmine-<ver>/apache2/conf/bitnami/bitnami.conf and under
    DocumentRoot "/opt/redmine-<ver>/apache2/htdocs"
    Append
    RewriteEngine On
    RewriteCond %{HTTPS} !=on
    RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [R,L]
  35. /opt/redmine-<ver>/ctlscript.sh restart apache
  36. Test whether automatic redirection to https is working in private browser
  37. yum -y install bzip2
  38. Open /opt/redmine-<ver>/apps/redmine/htdocs/config/database.yml and see database, username and password
    /opt/redmine-<ver>/mysql/bin/mysql -u bitnami -p bitnami_redmine
    with password read in above step
  39. Create /opt/take-database-backup.sh with following contents:
    /opt/redmine-<ver>/mysql/bin/mysqldump -u bitnami -p<password> bitnami_redmine | bzip2 > /opt/bitnami_redmine.sql.bz2
  40. chmod +x above file and test it by running.
  41. Configure backup for /opt folder which executes /opt/take-database-backup.sh before backup.
  42. Install logwatch and set /etc/aliases for root user



<yambe:breadcrumb>CentOS_7.x_redmine|redmine</yambe:breadcrumb> <yambe:breadcrumb>CentOS_7.x_Setup_lightsail_instances|Setup lightsail instances</yambe:breadcrumb>