Sun OpenSSO Enterprise Policy Agent 3.0 Guide for Oracle WebLogic Server/Portal 10

Installing and Configuring the WebLogic Server/Portal 10 Agent in a Cluster

Installing and configuring the WebLogic Server/Portal 10 agent in a clustered environment is similar to the process for a stand-alone environment. Exceptions are noted in this section.

Installing the WebLogic Server/Portal 10 Agent in a Cluster

In a cluster, you must install the WebLogic Server/Portal 10 agent in this order:

  1. First, install the agent on the Administration Server. The agent on the Administration Server sets up the Agent Authenticator for the entire domain. See Installing the WebLogic Server/Portal 10 Agent on the Administration Server.

  2. Then, install the agent on each of the Managed Servers that you want to protect. See Installing the WebLogic Server/Portal 10 Agent on a Managed Server.

Installing the WebLogic Server/Portal 10 Agent on the Administration Server

ProcedureTo Install the WebLogic Server/Portal 10 Agent on the Administration Server

  1. Ensure that the Administration Server is not running.

  2. Install the agent as you would in a stand-alone environment. See Installing the WebLogic Server/Portal 10 Agent.

  3. Configure the agent classpath for the Administration Server. See Configuring a WebLogic Server 10 Instance With the Agent classpath and Java Options.

  4. Start the Administration Server.

  5. Configure the Agent Authentication Provider. See Configuring the Agent Authentication Provider for the WebLogic Server/Portal 10Agent.

Installing the WebLogic Server/Portal 10 Agent on a Managed Server

ProcedureTo Install the WebLogic Server/Portal 10 Agent on a Managed Server

  1. Ensure that the Managed Server is not running.

  2. Install the WebLogic Server/Portal 10 agent as you would in a stand-alone environment, with these exceptions:

    • When you are prompted to enter the startup script location, specify the same path that you provided when you installed the agent on the Administration Server.

    • When you are prompted to enter the WebLogic Server instance name, specify the Managed Server instance name. For example: server1

  3. Start the Managed Server using the appropriate startup script:

    • Solaris and Linux systems: domain-name/bin/startManagedWeblogic.sh

    • Windows systems: domain-name\bin\startManagedWeblogic.cmd

    where domain-name is where you located the domain.

    For example, on a Solaris system:

    cd /opt/bea/user_projects/domains/domain1/bin
    ./startManagedWeblogic.sh server1 http://adminhost.example.com:7001

    Alternatively, you can start a Managed Server instance using Node Manager. See Configuring Node Manager for the WebLogic Server/Portal 10 Agent in a Cluster.

Post-Installation Tasks for the WebLogic Server/Portal 10 Agent in a Cluster

Table 4 Post-Installation Tasks for the WebLogic Server/Portal 10 Agent in a Cluster

Post-Installation Task 

Where to go for Information 

Setting the Java Options on IBM AIX Systems 

Setting the Java Options on IBM AIX Systems

Adding a WebLogic Administrator to the Bypass List 

Adding a WebLogic Administrator to the Bypass List for the WebLogic Server/Portal 10 Agent

Enabling Agent Protection in Web Applications 

Installing the Agent Filter for the WebLogic Server/Portal 10 Agent

Deploying the Agent Application in a Cluster 

Deploying the Agent Application for the WebLogic Server/Portal 10 Agent in a Cluster

Configuring Node Manager for the WebLogic Server/Portal 10 Agent in a Cluster 

Configuring Node Manager for the WebLogic Server/Portal 10 Agent in a Cluster.

For additional tasks, see Post-Installation Tasks for the WebLogic Server/Portal 10 Agent

Deploying the Agent Application for the WebLogic Server/Portal 10 Agent in a Cluster

Deploy the agent application (agentapp.war) on each instance in the cluster on which the agent is installed, including the Administration Server and each Managed Server. Instances in the cluster require the agent application to receive notifications.

A deployment can have multiple applications protected by the same agent running on the same Managed Server instance. All applications hosted on the same Managed Server instance use the agent application deployed for that instance.

Deploy the agent application using either the WebLogic Server command-line tools or Administration Console.

ProcedureTo Deploy the Agent Application Using the WebLogic Server/Portal 10 Administration Console

  1. Login to the WebLogic Server/Portal 10 Administration Console

  2. Expand the Deployments tab.

  3. Click Lock & Edit.

  4. In the right pane, click Install.

  5. Click upload your file(s).

    Upload the agentapp.war file from the following directory:

    PolicyAgent-base/etc/agentapp.war

    When selecting the target for the Web Application module, select either the entire cluster or individual servers. Deploy the agentapp.war file for each server node on which you installed the agent.

Configuring Node Manager for the WebLogic Server/Portal 10 Agent in a Cluster

You have the option of starting Managed Servers in a cluster using the WebLogic Server/Portal 10 Node Manager.

ProcedureTo Configure Node Manager for the WebLogic Server/Portal 10 Agent in a Cluster

  1. In the WebLogic Server/Portal 10 Administration Console, expand the Servers node.

  2. Select the node for the server you want to manage with Node Manager.

  3. Configure the agent classpath in Node Manager:

    1. In the Administration Console, select the Configuration tab.

    2. Select the Server Start tab.

    3. Locate the agent classpath for the specific Managed Server as found in setAgentEnv_sever-instance.sh.

    4. Add the agent classpath to the following classpath text field:

      ${CLASSPATH}:PolicyAgent-base/lib/agent.jar:PolicyAgent-base/
      lib/openssoclientsdk.jar:PolicyAgent-base/locale:PolicyAgent-base/
      AgentInstance/config

      where AgentInstance represents the agent instance directory, such as Agent_001.


      Tip –

      To avoid typing errors, copy and paste the agent classpath entries from the setAgentEnv_managed-sever-instance.sh file.


      managed-server-instance is the name of the Managed Server instance. For example, server1.

    5. To the same classpath text field referred to in the previous step, prepend the following classpath entries:

      DeployContainer-base/BEA-Java-Home/lib/tools.jar:
      DeployContainer-base/wlserver_10.0/server/lib/weblogic.jar

      DeployContainer-base is the directory in whichWebLogic Server/Portal 10 was installed.

      BEA-Java-Home is the directory that contains the JDK for theWebLogic Server/Portal 10 instance.

    6. Click Save.

    7. Click Activate Changes.

  4. Configure the agent Java options in Server Start.

    1. In the WebLogic Server/Portal 10 Administration Console, select the Configuration tab.

    2. Select the Server Start tab.

    3. Locate the Java options as found in setAgentEnv_sever-instance .sh for the specific Managed Server.

    4. Add the Java options to the Arguments text field as follows:

      -Djava.util.logging.config.file=PolicyAgent-base/config/
      OpenSSOAgentLogConfig.properties 
      -DLOG_COMPATMODE=Off

      Tip –

      To avoid typing errors, copy and paste the agent Java option entries from the setAgentEnv_managed-sever-instance.sh file.


    5. Click Save.

    6. Click Activate Changes.