Sun Java Enterprise System 2005Q1 Deployment Example Series: Evaluation Scenario

Installation and Configuration Plan Details

A complete installation and configuration lists the installer and the configuration wizards in the correct order for your Java ES solution. For each installer or configuration wizard, the plan lists the values you supply when you run the installer or configuration wizard. The completed plan guides you through the installation and configuration process.

The plan does not tell you how to run the installer and the configuration wizards. It simply lists the configuration that must be performed, in the correct order, and specifies the significant values that you must supply for each configuration task.

The installation and configuration plan is organized by the tools used to install and configure the solution. For the evaluation solution, the installation plan is presented in the following sections.

Java ES Installer Details

This section lists the values you input to install the evaluation solution with the Java ES installer. For the evaluation solution, you use the installer to install all the components used in the solution and configure Directory Server, Web Server, Access Manager, and Portal Server. The other components are configured later with individual component configuration wizards.

The input values are listed in Table 4–1. Detailed procedures for running the installer are in Chapter 5, Installing the Components.

Table 4–1 Input Values for Java ES Installer


Installer Page	Field Names and Input Values	Significance of Input
Language Support	Select any languages you want to support. English is always supported.	You specify the languages supported in your evaluation solution.
Component Selection	Select the components identified in the architecture: Messaging Server Calendar Server Instant Messaging Portal Server Communications Express Web Server Access Manager Directory Server Administration Server	You select the components for installation.
Installation Directories	Accept the default values.	You choose to accept the default directories for the component files.
Configuration Type	Select Configure Now.	You specify that installer will configure some components.
Common Server Settings	Administrator password: password	You set up default values that appear on the pages that follow.
Web Server Administration (1 of 2)	Accept the default values.	You create the Web Server administrator account.
Web Server Default Web Server Instance (2 of 2)	Runtime User ID: root Runtime Group: other Automatically Start Web Server When System Restarts: select Web Server User and Group permissions must match permissions of the components that run in Web Server	You configure Web Server to interoperate with Access Manager and Portal Server.
Directory Server: Administration (1 of 5)	Accept the default values.	You configure the administrator account and the directory manager account.
Directory Server: Server Settings (2 of 5)	Server Identifier: default (`evaluation_host`) Server Port: default (389) Suffix: o=examplecorp Administrative Domain: example.com System User: root System Group: other	You specify the base DN for the evaluation solution.
Directory Server: Configuration Directory Server Settings (3 of 5)	Accept the default values.	You specify that the Directory Server instance will be used for configuration data.
Directory Server: Server Settings (4 of 5)	Accept the default values.	You specify that the Directory Server instance will be used for user and group data.
Directory Server: Server Settings (5 of 5)	Accept the default values.	You specify that the installer puts sample data in the directory.
Administration Server: Server Settings (1 of 2)	Accept the default values.	You configure Administration Server to interoperate with Directory Server.
Administration Server: Server Settings (2 of 2)	Accept the default values.	You configure Administration Server to interoperate with Directory Server.
Access Manager: Administration (1 of 6)	Password: password LDAP Password: ldappassword	You configure the administrator accounts.
Access Manager: Web Container (2 of 6)	Accept the default values.	You specify that Access Manager runs inside a Web Server web container.
Access Manager: Sun Java System Web Server (3 of 6)	Accept the default values.	You configure Access Manager to interoperate with Web Server
Access Manager: Web Container for Running Identify Server Services (4 of 6)	Accept the default values.	You configure Access Manager for deployment to Web Server
Access Manager: Directory Server Information (5 of 6)	Accept the default values.	You configure Access Manager to interoperate with Directory Server
Access Manager: Directory Server Information (6 of 6)	Accept the default values.	You specify that the Directory Server instance does not currently contain user and group data.
Portal Server: Web Container (1 of )	Accept the default values.	You specify that the Portal Server instance runs in Web Server's web container.
Portal Server: Sun Java System Web Server (2 of )	Accept the default values.	You configure the Portal Server instance for deployment in Web Server's web container.
Portal Server: Web Container Deployment (3 of )	Accept the default values.	You specify the Web Server instance for Portal Server deployment.

Directory Server Preparation Tool Details

The Directory Server Preparation Tool configures a Directory Serverinstance for use with the communications components. For the evaluation solution, you input values that specify the Directory Server instance you created with the Java ES installer. The input values are listed in Table 4–2. Detailed procedures for running the preparation tool are in Configuring the Directory for Communications Services.

Table 4–2 Input Values for the Directory Server Preparation Tool


Prompt	Input Value	Significance of Input
Enter the Full Path to the Directory Where the Sun ONE Directory Server Was Installed:	Accept the default value: /var/opt/mps/serverroot	You identify the directory where you installed Directory Server.
Which Instance Do You Want?	Choose the instance you created with the installer, slapd_`evaluation_host`. This is normally the default value.	You identify the Directory Server instance that you created with the installer.
Please Enter the Directory Manager DN:	Accept the default value (cn=Directory Manager)	You supply the directory manager DN you established with the installer.
Please Enter the Directory Manager password:	Type: password	You supply the directory manager password you established with the installer.
Will This Directory Server Be Used For Users and Groups?	Accept the default value (Yes).	You indicate that the directory is used for user and group data.
Please Enter the User/Groups Base Suffix:	Accept the default value (o=examplecorp).	You supply the directory base suffix you established with the installer.
Please Enter the Schema Type:	Accept the default value (2).	You indicate that the directory is using schema 2. The directory is configured for Schema 2 when you install Access Manager.

Messaging Server Configuration Wizard Details

The Messaging Server Configuration wizard creates instances of the Messaging Server server software you installed with the Java ES installer. For the evaluation solution, you need to create a Messaging Server instance that interoperates with the Directory Server instance. The input values for the Messaging Server Configuration wizard are listed in Table 4–3. Detailed procedures for running the wizard are in Configuring Messaging Server.

Table 4–3 Input Values for the Messaging Server Configuration Wizard


Wizard Page	Field Names and Input Values	Significance of Input
Fully Qualified Host Name	Fully qualified domain name of your `evaluation_host`.	You specify the computer system on which the Messaging Server instance is created.
Select Directory to Store Configuration and Data Files	Accept the default value (/var/opt/SUNWmsgsr).	You accept the default directory for instance configuration data.
Select Components to Configure	Accept default values (Message Transfer Agent, Message Store, and Messenger Express are selected).	You specify which Messaging Server subcomponents are configured on the specified computer system. For the evaluation solution, the three subcomponents required for basic messaging services are selected.
Messaging Server User and Group	Username: mailsrv Group: mail	You specify the user and group used to administer the Messaging Server instance.
Configuration Directory Server	Config Server LDAP URL: ldap://`evaluation_host`:389 Bind: cn=Directory Manager Password: password	You specify the Directory Server instance for the configuration data generated by the Messaging Server instance.
User/Group Directory Server Panel	User/Group Server LDAP URL: ldap://evaluation_host:389 Bind: cn=Directory Manager Password: password	You specify the Directory Server instance where the Messaging Server instance locates user and group data. For the evaluation solution, this Directory Server instance is also used as the configuration directory.
Postmaster Email Address	Enter Email Address: admin@examplecorp.com	You specify the email account for postmaster notification.
Password for All Admin Accounts	Enter Password: password Re-enter Password: password	You specify the password for Messaging Server administration accounts.
Default Email Domain	Enter Email Domain: examplecorp.com	You specify the default email domain managed by the Messaging Server instance.
Organization DN for the Default Email Domain	Enter Email Domain: o=examplecorp.com,o=examplecorp	You specify the LDAP organization used for user and group data for the default email domain. The configuration wizard creates this LDAP organization.

Calendar Server Configuration Wizard Details

The Calendar Server Configuration wizard creates runnable instances of the Calendar Server server software you installed with the Java ES installer. For the evaluation solution, you need to create a Calendar Server instance that interoperates with the Directory Server instance. The input values for the Calendar Server Configuration wizard are listed in Table 4–4. Detailed procedures for running the configuration wizard are in Configuring a Calendar Server Instance.

Table 4–4 Input Values for Calendar Server Configuration Wizard


Wizard Page	Field Names and Input Values	Significance of Input
Administration, User Preferences, and Authentication	LDAP Server Host Name: `evaluation_host` LDAP Server Port: 389 Directory Manager DN: cn=Directory Manager Directory Manager Password: password Base DN: o=examplecorp.com,o=examplecorp Administrator User ID: calmaster Administrator Password: password	You configure the Calendar Server instance to interoperate with Directory Server. You also specify the administrator account.
Email and Email Alarms	Email Alarms: Enabled Administrator Email Address: calmaster@examplecorp.com SMTP Host Name: `evaluation_host`	You configure the Calendar Server instance to send email alarms to the calmaster account.
Runtime Configuration Page	Service Port: 89 Maximum Sessions: 5000 Maximum Threads: 20 Number of Server Processes: 1 Runtime User ID: icsuser Runtime Group: icsgroup Start After Successful Configuration: selected Start on System Startup: selected	You configure the runtime characteristics of the Calendar Server instance.
Directories to Sore Configuration and Data Files	Accept the default values.	You specify the directories for files generated by the configuration wizard's configuration process.
Archive and Hot Backup Configuration	Accept the default values.	You specify the directories for the archive and hot backup features.

Instant Messaging Configuration Wizard Details

The Instant Messaging Configuration wizard creates runnable instances of the Instant Messaging server software you installed with the Java ES installer. For the evaluation solution, you need to create an Instant Messaging instance that interoperates with the Directory Server instance. The input values for the Instant Messaging Configuration wizard are listed in Table 4–5. Detailed procedures for running the configuration wizard are in Configuring an Instant Messaging Instance.

Table 4–5 Input Values for the Instant Messaging Configuration Wizard


Wizard Page	Field Names and Input Values	Significance of Input
Select Components	Accept default values (all three components are selected).	You specify the Instant Messaging subcomponents installed on the computer system. For the evaluation solution, all subcomponents are installed on the same system.
Network Connection	Confirm that the default values identify your evaluation system. Host Name: `evaluation_host` DNS Domain Name: `evaluation_domain`	You identify the network connection for Instant Messaging.
IM Server/ Identity Server Options	Single Sign-on: selected Policy Agent: selected	You configure Instant Messaging to interoperate with Access Manager.
Instant Messaging Server Runtime Files Directory	Accept the default values.	You specify the directory used for runtime files.
Instant Messaging Server Configuration	Domain Name: examplecorp.com IM Server Port: 45222 Multiplexor Port: 5222	You configure the Instant Messaging instance to use the examplecorp.com LDAP organization for user and group data.
Instant Messaging LDAP Configuration	LDAP Host Name: `evaluation_host` LDAP Port Number: 389 Base DN: o=examplecorp.com,o=examplecorp Bind DN: cn=Directory Manager Password: password	You configure Instant Messaging to interoperate with Directory Server. You specify that user data for Instant Messaging is found in examplecorp.com LDAP organization.
Select the Codebase for Instant Messaging	Codebase: http://`evaluation_host`:80/im	You configure the URL from which users download Instant Messaging resources.
Select Identity Options	Accept the default values.	You choose not to authorize existing users for the Instant Messaging service.
Instant Messaging Services Startup	Accept the default values (both services are selected).	You configure the Instant Messaging service to start when configuration is complete and whenever the computer system is restarted.

Communications Express Configuration Wizard Details

The Communications Express Configuration wizard creates runnable instances of the Communications Express software you installed with the Java ES installer. For the evaluation solution, you need to create a Communications Express instance that interoperates with the Directory Server instance. The input values for the Communications Express Configuration wizard are listed in Table 4–6. Detailed procedures for running the configuration wizard are in Configuring a Communications Express Instance.

Table 4–6 Input Values for the Communications Express Configuration Wizard


Wizard Page	Field Names and Input Values	Significance of Input
Select Directory to Store Configuration and Data File	Accept the default values.	You accept the default directories for storing instance data.
Install Mail and Calendar Components	Accept the default values (both Mail and Calendar are selected).	You configure the instance to provide both mail and calendar interfaces.
Network Connection	Hostname: `evaluation_host` DNS Domain Name: `evaluation_domain`	You confirm the network connection for Communications Express.
Select a Web Container	Accept the default value (Web Server is selected).	You specify Web Server as the web container (the web server) for the instance.
Web Server Configuration Details	Server Root Directory: 1 Server Instance Identifier: `evaluation_host` Virtual Server Identifier: https-`evaluation_host` HTTP Port field: 80	You specify the Web Server instance to which Communications Express is deployed.
Web Container User and Group	Web Container User ID: root Web Container Group: other	You specify the user account that runs Communications Express in Web Server
URI Path	Accept the default value (http://`evaluation_host`:80/uwc).	You specify the URL for Communications Express deployed in Web Server.
Do You Want Hosted Domain Support?	Accept the default value (hosted domain support is not selected).	You indicate that hosted domain support is not needed in the evaluation solution.
User/Group Directory Server Details	LDAP URL: ldap://evaluation_host:389 Bind DN: cn=Directory Manager Administrator Password: password	You configure Communications Express to interoperate with Directory Server.
DC Tree Suffix	Confirm the default value (o=examplecorp).	You configure Communications Express to use the LDAP directory base suffix you established with the Java ES installer.
Default Domain Name	Enter the domain name: examplecorp.com	You configure Communications Express to use the examplecorp.com organization in your LDAP directory for user and group data.
Identity Server Preferences	Login URL: http://`evaluation_host`:80/amserver/ UI/login Administrator DN: uid=amAdmin,ou=People,o=examplecorp.	You configure Communications Express to interoperate with Access Manager.
Messenger Express Port	Messenger Express Port: 88.	You configure Communications Express to interoperate with Messaging Server.
Calendar Server Host and Port	Calendar Server Host Name: `evaluation_host` Calendar Server Port Number: 89	You configure Communications Express to interoperate with Calendar Server.
Calendar Server Administration Details	Administrator User ID: calmaster Administrator Password: password	You configure Communications Express to interoperate with Calendar Server.
Postmaster Email Address	admin@examplecorp.com	You specify the postmaster account for the evaluation solution.
PAB Directory Server Details	Login URL: ldap://evaluation_host:389 Administrator DN: cn=Directory Manager Administrator Password: password	You configure Communications Express to use the Directory Server instance you created with the Java ES installer as the personal address book directory.

Delegated Administrator Configuration Wizard Details

The Delegated Administrator Configuration wizard creates runnable instances of the Delegated Administrator software that you installed with the Java ES installer. For the evaluation solution, you need to create a Delegated Administrator instance that interoperates with the Directory Server instance. The input values for the Delegated Administrator Configuration wizard are listed in Table 4–7. Procedures for running the configuration wizard are in Configuring the Delegated Administration Utility.

Table 4–7 Input Values for the Delegated Administrator Configuration Wizard


Wizard Page	Field Names and Input Values	Significance of Input
Directory to Store Configuration and Data Files	Accept the default values	You accept the default directory for storing instance data.
Select Components to Configure	Accept the default values (all three components are selected).	You specify that all three sub-components will be configured.
Access Manager Host and Port	Hostname: `evaluation_host` Port: 80	You configure Delegated Administrator to interoperate with Access Manager.
Default Domain	Enter Domain: examplecorp.com	You configure Delegated Administrator to use the examplecorp.com organization as of the default location for user management operations.
Default SSL Port for Delegated Administration Client	Accept the default value.	You accept the default port for SSL communication with Delegated Administrator.
Web Container	Accept the default value (Web Server is selected).	You specify that Delegated Administrator uses Web Server for web container services.
Web Server Configuration Details	Server Root Directory: /opt/SUNWwbsvr Server Instance Identifier: `evaluation_host` Virtual Server Identifier: https-`evaluation_host` Server HTTP Port: 80	You specify that Delegated Administrator is deployed to theWeb Server instance you created with the Java ES installer.
Access Manager Base Directory	Accept the default value.	You specify the directory for Access Manager instance data.
Directory (LDAP) Server	LDAP URL: http://`evaluation_host`:389 Bind As: cn=Directory Manager Password: password	You configure Delegated Administrator to interoperate with Directory Server.
Access Manager Top Level Administrator	Username: amadmin Password: password	You configure Delegated Administrator with log in information for Access Manager.
Access Manager Internal LDAP Authentication Password	Username: amldapuser Password: ldappassword	You configure Delegated Administrator with the LDAP authentication password for Access Manager.
Organization DN for the Default Domain	Enter Org DN: o=examplecorp.com,o=examplecorp	You specify the LDAP distinguished name for the default domain you specified on the Default Domain page.
Top Level Administrator for the Default Organization	Username: admin Password: password	You define Delegated Administrator's top level administrator account for the default domain. (Delegated Administrator can divide administration privileges between different level administrators. This feature is not used in the evaluation solution.)
Service Package and Organization Sample	Load Sample Service Packages: selected Load Sample Organizations: selected Preferred Mailhost: `evaluation_host`	You specify that the configuration wizard will configure the default domain with sample service data.

Delegated Administrator Command Line Details

This section summarizes the commands that are used to configure the examplecorp.com organization for authentication of messaging and calendar service users, and to create a test end user account. The commands are summarized in Table 4–8. Procedures for running the commands are inConfiguring Your LDAP Organization for Mail and Calendar Services and Provisioning an End User Account.

Table 4–8 Summary of Delegated Administrator Commands


Delegated Administrator Command	Command Syntax	Significance of Input
`commadmin domain modify`	`-D` `admin` (administrator user account) `-w` `password` (administrator account password) `-d` `examplecorp.com` (domain to modify) `-S` `mail` (add mail service) `-H` `evaluation_host` (system running mail service) `-S` `cal` (add calendar service) `-B` `evaluation_host` (system running calendar service) `-P` `allowProxyLogin:yes` (permit proxy login) `-T` `America/Los_Angeles` (set time zone)	You add object classes to the examplecorp.com organization that are used to authenticate users for mail and calendar services.
`commadmin user create`	`-D` `admin` (administrator user account) `-w` `password` (administrator account password) `-l` `TestUser` (user account name) `-F` `Test` (user's first name) `-L` `User` (user's last name) `-W` `password` (user account password) `-S` `mail` (authorize user for mail service) `-H` `evaluation_host` (system running mail service) `-E` `test.user@examplecorp.com` (user email) `-S` `cal` (authorize user for calendar service) `-B` `evaluation_host` (system running calendar service) `-J` `0` `-T` `America/Los_Angeles` (user's time zone) `-k` `legacy`	You create a user account to use your evaluation services.
`commadmin user modify`	`-D` `admin` (administrator user account) `-w` `password` (administrator account password) `-l` `TestUser` (user account to modify `-A` `+objectclass:sunssoadapterperson` (authorize user for portal service) `-A` `+objectclass:sunportaldesktopperson` (authorize user to access portal desktop	You add object classes to the test user account that identify the account as an authorized portal user.