Due to a known problem with this version of the Web Policy Agent, you must start an X-display session on the server host using a program such as Reflections X or VNC, even though you use the command-line installer. For more information about this known problem, see On UNIX-based machines, all web agents require that the X11 DISPLAY variable be set properly. in Sun Java System Access Manager Policy Agent 2.2 Release Notes.
As a root user, log into the ProtectedResource–1 host machine.
Create a directory into which you can download the Web Server agent bits and change into it.
# mkdir /export/WebPA1 # cd /export/WebPA1 |
Download the web policy agent for Web Server from http://www.sun.com/download/.
# ls -al total 294548 drwxr-xr-x 2 root root 512 Aug 7 13:23 . drwxr-xr-x 3 root sys 512 Aug 7 13:16 .. -rw-r--r-- 1 root root 150719523 Aug 7 13:24 sjsws_v70_SunOS_agent.zip |
Unzip the downloaded file.
# unzip sjsws_v70_SunOS_agent.zip |
Change the permissions for the resulting agentadmin binary.
# cd /export/WebPA1/web_agents/sjsws_agent/bin # chmod +x agentadmin |
Verify that crypt_util has execute permission before running the installer.
# cd /export/WebPA1/web_agents/sjsws_agent/bin # chmod +x crypt_util |
Create a temporary file for the password that will be required later during agent installation.
# echo web4gent1 > /export/WebPA1/pwd.txt # cat /export/WebPA1/pwd.txt |
Run the agent installer.
# ./agentadmin --install |
When prompted, do the following.
|
Type yes and press Enter. |
|
| ||
|
Type /opt/SUNWwbsvr/https-ProtectedResource-1.example.com/config and press Enter. |
|
|
Type LoadBalancer-3.example.com and press Enter. |
|
|
Type 9443 and press Enter. |
|
|
Type https and press Enter. |
|
|
Press Enter to accept the default /amserver. |
|
|
Type ProtectedResource-1.example.com and press Enter. |
|
|
Type 1080 and press Enter. |
|
|
Press Enter to accept the default http. |
|
|
Type webagent-1 and press Enter. |
|
|
Type /export/WebPA1/pwd.txt and press Enter. |
|
|
Type 1 and press Enter. |
|
|
Modify the AMAgent.properties file.
Backup AMAgent.properties before you modify it.
Change to the config directory.
# cd /export/WebPA1/web_agents/sjsws_agent/Agent_001/config |
Set the values of the following properties as shown.
com.sun.am.policy.am.login.url = https://LoadBalancer-3. example.com:9443/amserver/UI/Login?realm=users com.sun.am.load_balancer.enable = true
Save the file and close it.
Restart the Protected Resource 1 Web Server instance.
# cd /opt/SUNWwbsvr/https-ProtectedResource-1.example.com/bin # ./stopserv; ./startserv server has been shutdown Sun Java System Web Server 7.0 B12/04/2006 10:15 info: CORE3016: daemon is running as super-user info: CORE5076: Using [Java HotSpot(TM) Server VM, Version 1.5.0_09] from [Sun Microsystems Inc.] info: HTTP3072: http-listener-1: http://ProtectedResource-1.example.com:1080 ready to accept requests |
Log out of the ProtectedResource–1 host machine.