Univention Corporate Server (UCS) is a server operating system based on Debian GNU/Linux with integrated management system for the central administration of servers, services, clients, desktops and users.

This quickstart guide offers a short introduction on how to get started with UCS. Several features of UCS are only mentioned briefly with a reference to further documentation. The documentation on UCS is available at https://docs.software-univention.de/.

The installation DVD can be downloaded from the Univention website at https://www.univention.com/downloads/ucs-download/iso-installation-image/. The installation DVD is only available for the host architecture amd64 (64-bit). It has support for the Unified Extensible Firmware Interface-Standard (UEFI) including SecureBoot.

Alternatively preinstalled images for VMware and VirtualBox can be used. These are available for download at https://www.univention.com/downloads/ucs-download/preinstalled-vm-images/..

The system requirements vary considerably depending on the intended purpose and the number of users. The minimum requirements for the installation are 1 GB memory and 8 GB hard drive space.

The installation is performed via a menu-driven installer and can be used both interactively and completely profile-based [ext-doc-inst].

The system language, keyboard layout and time zone can be selected in accordance with local requirements.

A valid network configuration should be set during the installation. If, for example, a gateway and a name server are specified, but the name server cannot be reached, this may result in unnecessary timeouts. In these cases, it makes more sense not to specify a gateway. The network configuration can be employed using DHCP. If there is already a name server available in the local network, it should be used. If additional UCS systems are installed in the domain at a later point in time, the master domain controller and any backup domain controller systems should be entered as name servers.

§

Figure 2.1. Selecting the domain setup

During installation, the system can be used for various purposes which can only be configured at this point in the setup process.

An overview of the other different system roles can be found in [ucs-systemrole].

With UCS and the Active Directory Takeover an existing Active Directory domain can be migrated completely to UCS. For information on how to set up the UCS system for this scenario, see [ad-takeover].

In the subsequent course of the installation, the fully qualified host name, under which the computer should be accessible in the network, is entered for a master domain controller. A local name should also be used as the domain name in this case, e.g., company.intranet. (If the system is used as a mail server, for example, the mail domains can be used independently of the domain names). For example, to commission the mailserver host system in the company.intranet DNS domain, mailserver.company.intranet should be entered as the fully qualified host name. The LDAP base is suggested based on the fully qualified host name and only needs to be adjusted in exceptional cases. The root password must be at least eight characters long and is also set as the password for the user Administrator during the installation of the first UCS system (master domain controller).

An autopartitioning feature can be used during the installation which creates an LVM volume group on the first hard drive by default.

The installed software components can be adapted later at any time and subsequently installed from the Univention App Center.

After confirming the configuration settings the installation is initiated. Once completed, the system must be restarted. The further configuration is made using the Univention Management Console (UMC).

The web interface of an installed UCS system is directly available via its IP address (https://server_ip or http://server_ip, HTTPS is recommended). By default, a portal page is configured on the master domain controller where all applications are listed that are installed in the domain. For all other system roles, the start site consists of an overview of all locally installed applications. (View as well as the partitioning of entries can be customized in a very flexible manner, see also [ucs-portal].)

§

Figure 3.1. Illustration of the portal page on the master domain controller with all domain wide available applications

On each start site of a UCS system, there is an entry System and domain settings in the section Administration (or System settings, respectively) that points to the Univention Management Console (UMC) of the local system. Univention Management Console is the central tool for web-based administration of a UCS domain. There are different modules available on the UCS system depending on the installation and system role selected. The login to Univention Management Console is performed as user Administrator with the password specified for the user root during the installation.

For administrating UCS, the LDAP directory is the central component of a UCS domain. In the LDAP, domain wide information such as the users, groups and computer accounts is saved. Depending on the settings, this information is replicated to the other domain controllers in the domain either completely or selectively. The UMC modules which edit the LDAP directory directly can be accessed only on the master domain controller via Univention Management Console. Furthermore, they can also be controlled using the command line interface Univention Directory Manager [ucs-udm].

§

Figure 3.2. Modules in the UMC

UCS updates can be installed in the UMC module Software update.

Additional software, like for example the Active Directory Connection, can be installed using the Univention App Center in the Univention Management Console:

§

Figure 4.1. Subsequent installation of UCS components

Univention Configuration Registry is the central tool for managing the local system configuration of a UCS system. Settings are specified in a consistent format, the so-called Univention Configuration Registry variables. These variables are used to generate the configuration files used effectively by the services/programs. Direct editing of the configuration files is only needed in exceptional cases.

Univention Configuration Registry variables are managed via the Univention Management Console module Univention Configuration Registry. Configuration files are automatically updated when the UCR variables registered on them are changed.

§

Figure 5.1. Managing Univention Configuration Registry variables

In addition to the UCS systems, a UCS domain can also integrate different clients. The following clients are supported:

This quickstart guide only provides an entry into UCS. UCS is very scalable, additional services can simply be installed on additional systems. This domain join is described in [ucs-join].

UCS offers various additional services which are covered by the UCS license and which can be integrated at a later point in time:

Univention Corporate Server provides comprehensive documentation: