|
iCal Server 2.0 - the one that comes with Mac OS X Snow Leopard Server 10.6.3
It is not too hard to get this dark corner of Mac OS X working, but you do need to understand DNS, Time and International Settings, Authentication, and Calendaring. You also need to suspend knowledge of other systems and remember, Mac OS X Server is not a fully ‘developed’ in its GUI admin. You got that? Ok - Lets go.
iCal Server DNS SRV records
In order to better set up iCal Server on Mac OS X Server 10.6.3 you can set an SRV record using Server Admin contrary to the 10.6 Server iCal Server Admin Guide. Select the domain from the DNS, then create the SRV record for the domain and set:
Service Name: <<leave empty>>
Service Type: _caldav.tcp <<non-ssl,>>
Host: <<your server's hostname>>
Port: <<matching port for non-ssl or ssl>>
SRV records are recommended but they are not required by iCal. If there is no SRV the iCal calendar application will try contacting the iCal Server on the default ports that are normally used for iCal Server on OS X server.
iCal Server notifications
iCal Server really tries to be a well engineered open source project from Apple. You can find out more at www.calendarserver.org or on twitter @calendarserver
The workflow is this:
- Turn on iCal Server in Server Admin
- Turn on notifications and email invitations and set a few details
- Leave running
The trouble is, the few details bit! I was only able to get it working with the simplest internal settings. I want to change this and tighten, but now its at least running I want to document it.
Invitations settings for iCal Server
iCal needs to email anyone external to your mail domain.
email address:
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
incoming server: localhost
port: 143
SSL: off
user name: com.apple.calendarserver
password: password from com.apple.calendarserver entry in system keychain (browse in keychain access, open, copy, paste)
outgoing server: localhost
port: 25
SSL: off
user name: com.apple.calendarserver
password: password from keychain
I was utterly unable to use a different account than this system defaut one.
Mail Server considerations
I had to tell my Mac OS X based mail server to relay ‘localhost’ email I dont think this is a very secure approach. Suggestions welcome.
Server Admin considerations
I had to turn off SACL's for mail and iCal as part of my debug. Havent turned them back on yet.
Setting up calendar account access for shared calendars in iCal 4.0
Go to Preferences -> Accounts -> Delegation. Here you can change who can access your own calendars by clicking ‘Edit’ to add or remove other users from the directory for the iCal Server. Likewise once someone else has added you to see their calendar, their name will appear in your "Accounts I can access" box. You can then check the box to view their calendar. Unfortunately this is a tedious manual process. Crying out for a guy admin tool or a managed account capability.
iPhone
If you have been using dot mac sync for calendars since the beginning of iTools time then it is a wrench to move iPhone calendars to CalDAV. It was a case of carefully setting the CalDAV settings on my iPhone. I found I had to turn of Kerberos authentication in iCal Server to get it to work. NB I also have an Exchange calendar controlled by ActiveSync. Annoyingly I found I could not control Calendar Colour for this calendar. Calendar colour is not supported by ActiveSync apparently.
Issues Delegate calendars do not show up on the iPhone. I could subscribe but I should not have to. I assume this will eventually be fixed. Manual setup is tedious. Documentation, in the form of the 10.6 Server iCal Server guide, is terse and complex with no illustrative examples, some typos and some wrong information.
Overall It is working. It functions well, and required the default calendar server http port to be opened to work correctly. It was hard, very hard, to make invitations work. Documentation and worked examples would help but there are none. I still have to try over SSL. That can wait.
|
