Networking is a feature in Totara enabling resources to be shared between Totara sites using a single sign-on. If you want to setup networking with other Totara sites contact Totara support.
Your server must have Curl and OpenSSL PHP extensions installed in order to use Totara Networking.
The network feature allows a Totara administrator to establish a link with another Totara, and to share some resources with the users of that Totara.
The initial release of MNet is bundled with a Authentication Plugin, which makes single-sign-on between multiple Totara possible. A user with the username jody logs in to her Totara server as normal, and clicks on a link that takes her to a page on another Totara server. Normally, she would have only the privileges of a guest on the remote Totara, but behind the scenes, single-sign-on has established a fully authenticated session for Jody on the remote site.
WARNING: MNet requires the use of xmlrpc. Please go to your phpinfo page if you are interested in using this and search for --with-xmlrpc. If your php has not been compiled with xmlrpc then you need to address that first! At present it appears that PEAR xmlrpc will not work.
The MNet feature requires that your server has the Curl and OpenSSL extensions installed. When you install Totara, your system will generate a new OpenSSL certificate for encrypted communication with other Totaras, and will thereafter rotate encryption keys on a monthly basis (approx).
Communication takes place over an XML-RPC transport, and the XML-RPC documents are wrapped first in an XMLDSIG (XML digital signature) envelope, and then in an XMLENC (XML encryption) envelope. The encryption all happens within PHP, and does not require an https (Apache SSL) server.
A special mode can be enabled which would allow a machine with a specified IP address to make calls to the XML-RPC layer without using either encryption or signature envelopes. This mode is provided to enable Totara to communicate with other software systems in which the integration of signatures and encryption might be prohibitively difficult. It is not envisioned that unencrypted inter-Moodle networking will ever be enabled.
This is the basic layout of the system. It can be very useful to run one Totara per faculty or departments, each with its own user management, and yet permit users to roam across the Totara installs... subject to permissions of course.
The instructions will cover 2 Totara installations: TotaraA and TotaraB. Both are installed correctly and have never had a Totara Network configuration.
Note: If you experience problems, ensure debugging is turned on in Site Administration > Server > Debugging. Extra diagnostic messages may be displayed
Get remote enrolments going -- this is optional. It allows administrator of TotaraB can enrol users that are "native" to TotaraB in courses in TotaraA, and viceversa.
A Mnet hub (do not confuse it with the Community hub project of Moodle 2.0) is a Totara server that is configured to accept connections from other Totara servers, and to provide a set of services to users of these other servers. This guideline will direct you to connect to a Mnet hub, assess the services it has to offer, and enable those services for your users.
If the Mnet Hub has already enabled a service for you, there will be a tick alongside the appropriate checkbox, for example: if the Hub is publishing Moodle Networked Enrolment, then a tick will appear alongside the subscribe checkbox for this service. Note that in order to enable some functionality, prominently single-sign-on, you may have to publish a service, e.g. the Identity Providerservice. The Mnet Hub will access this service on your Totara, asking it to authenticate your users.
A Mnet hub is a regular Totara site that runs in a special mode. As a Totara Administrator, when you add another Totara site to your list of network peers, your Totara will contact that site to find out what it is called, and to request its public key for encrypted communication. Normally, the remote server will simply provide this information without making any record of the transaction.
A Mnet hub is different. As soon as you add an entry for a Mnet hub to your system, the Mnet hub will create an entry for your server in its list of hosts, and may immediately begin to offer services to the users of your site.
This section will guide you to set up a Mnet hub, and select services to offer to all comers.