The use of services provided by Limawi, especially MyCrypNet.
Some points must be clarified in order to understand how a sharing works.
Difference between users and devices
The MyCrypNet access ensures the authentication of a device on a MyCrypNet network, it does not ensure the authentication of a user.
In order to share files, you must also have a way to authenticate the user who uses the MyCrypNet access.
SMB provides a way to authenticate users.
Difference between files sharing servers and clients
A file sharing made by SMB is a client/server architecture.
Some devices will store, check the authentication and distribute the files over the MyCrypNet network through their MyCrypNet access. They are the files sharing servers.
Some devices will just ask for a file through their MyCrypNet access over the MyCrypNet network and send the credentials needed for the files server to check the user identity. They are the files sharing clients.
The uppercase names below have to be replaced with the corresponding values.
|OFFICE-DESKTOP||It is the remote domain name of a MyCrypNet access set up with a files sharing server. It is the name of the access available on the management interface.|
|ALICE||It is the name of the user who has to be identified by SMB in order to access the files sharing server. No whitespace is allowed.|
|ALICE-PASSWORD||It is the password of the user who has to be identified by SMB in order to access the files sharing server.|
|USERS-GROUP||It is the group of users having permissions to access your SMB share. No whitespace is allowed.|
|BOB||It is the name of a second user who has to be identified by SMB in order to access the files sharing server. No whitespace is allowed.|
|SHARE-NAME||It is the name of the SMB configuration in the files sharing server. It is used to differentiate multiple SMB configurations on a same server. No whitespace is allowed.|
|FOLDER-PATH||It is the internal path of the folder that is shared via SMB through the MyCrypNet network.|
How to install a files sharing in a MyCrypNet network
If you want to install a files sharing server on a device connected to your (or one you receive a delegation from) MyCrypNet network, you can follow these tutorials:
If you want to install a files sharing client on a device connected to your (or one you receive a delegation from) MyCrypNet network, you can follow these tutorials:
Create your secure network
If you want the installation in a Linux environnent with command lines, take a look here.
You must have a MyCrypNet access first. You can buy one here or ask a delegation to someone who bought one.
Step 1: Download and install the software
From a package repository. For “Debian-like”:
sudo apt-get install openvpn resolvconf network-manager-openvpn-gnome
Step 2: Download the settings file
Download the MyCrypNet.conf file and put it into a dedicated folder. MyCrypNet.conf
Make sure to keep this folder in a safe place on your disk.
Step 3: Download the key and certificate
Download the two settings files (vpn.cert and vpn.key) from the “Your apps” page or the “Delegated apps” page and put them together into the same folder as the MyCrypNet.conf file.
Step 4: Open the configuration interface
Go to the Gnome menu and select “VPN Off”.
Click on “VPN Settings”.
Step 5: Load the configuration
Add a VPN configuration by clicking on the “+” on the “VPN” section.
Select “Import from file…” and look for the MyCrypNet.conf file.
Sometimes GNOME® bugs and force you to save the configuration (by clicking on the “save” button) in order to make it work.
Step 6: Check the configuration
You should see the VPN configuration appearing on the “VPN” section.
Check the “OFF” switch to start the configuration. If the “OFF” goes back, you should open your configuration, click “save” then check the “OFF” switch again.