Installing Portal Server 7.1 on Web Server 7.0

This section contains the following Portal Server 7.1 installation procedures on Web Server 7.0:

• Default installation

• SSL installation and post installation

• Configuring Portal Server 7.1 on 64–bit Web Server 7.0 instance

• Installing Portal Server 7.1 as a non-root user

Installing Portal Server on Sun Java System Web Server

Portal Server can be installed on Sun Java System Web Server using the Java ES installer. Sun Java System Web Server can be selected as component to install. Later you can select Sun Java System Web Server as the web container to install Portal Server using the Java ES installer.

For more information on the default installation procedure, see Chapter 1, Installing Sun Java System Portal Server 7.1.

Installing Portal Server on Sun Java System Web Server 7.0 in the SSL Mode

The secure socket layer (SSL) mode enables a user to access Portal Server using the https protocol. The https protocol ensures secured communication between the user and Portal Server. In this scenario, you need to create a secured Web Server instance. After creating a secured Web Server instance, you direct the Portal Server web container to the secured Web Server instance.

This section describes following procedures:

• Create a new configuration instance

• Create a request certificate

• Generate a server certificate

• Add the Server Certificate to the Certificate Database

• Add root ca to the Certificate Database

• Enable SSL on the Listener

To Create a New Configuration Instance

Before You Begin

Install Web Server 7.0 on Node 1.

1. Log in to the Web Server 7.0 administrator console.

   https://node1.domain-name:8989

2. Select New Configuration under the Configuration Tasks option.

3. Type the following values:

   • Configuration name: node1

   • Server name: node1.domain-name

   • Hosts: node1.domain-name

   • Server user: root

   • Port: 8200

4. Move the node from the Available list box to the Selected list box.

5. Click Finish.

6. Start the server configuration and access it.

   http://node1.domain-name:8200

To Create a Request Certificate

1. Run the following command.

   WebServer_base/SUNWwbsvr7/bin/wadm create-cert-request --user=admin --host=node1.domain-name --port=8989 --echo=true --rcfile=rcfile --config=node1 --token=internal --server-name=node1.domain-name --org=org --locality=locality --state=state --country=country

2. Type the token values.

   • Pin: password

   • Administrator user password: password

   The request certificate is created.

3. Send the request certificate to the Certificate Authority for approval.

To Add the Server Certificate to the Certificate Database

1. Add the Server Certificate, servercert, to the certificate database.

   WebServer_base/SUNWwbsvr7/bin/wadm install-cert --user=admin --password-file=password --host=node1.domain-name --port=8989 --ssl=true --rcfile=rcfile1 --echo=true --token=internal --config=node1 --cert-type=server --file-on-server=true --nickname=servercert WebServer_base/SUNWwbsvr7/bin/servercert

2. Type the token values.

   • Pin: password

   • Administrator user password: password

To Add the Root CA Certificate to the Certificate Database

1. Add the root ca certificate to the database.

   WebServer_base/SUNWwbsvr7/bin/wadm install-cert --user=admin --password-file=ps --host=node1.domain-name --port=8989 --ssl=true --rcfile=rcfile1 --echo=true --token=internal --config=node1 --cert-type=ca --file-on-server=true --nickname=rootca root-CA-file-path

2. Type the token values.

   • Pin: password

   • Administrator user password: password

3. Restart the server configuration.

To Enable SSL on the Listener

1. Access the Web Server 7.0 administrator console.

   https://node1.domain-name:8989

2. Select New Configuration on the Tasks page.

3. Select Edit Configuration.

4. Select Virtual Servers.

5. Select http-listener1.

6. Click the Security tab.

7. Select Security option.

8. Click Apply and Close.

9. Click the Deploy button.

10. Restart the servers.

    WebServer_base/SUNWwbsvr7/bin/stopserv WebServer_base/SUNWwbsvr7/bin/startserv

11. Verify the SSL instance by accessing the following URL.

    https://node1.domain-name:8200

Configuring Portal Server 7.1 on a 64–bit Web Server 7.0 Instance

Portal Server 7.1 supports 64–bit Web Server 7.0 on the following platforms:

• Solaris 10 SPARC

• Solaris 9 SPARC

• Solaris 10 amd64 (Opteron based systems)

While you install Portal Server using the Java ES installer, it is installed in the 32–bit mode. If you need to install Portal Server in 64–bit mode, you need to install it in two sessions:

• In the first session, you need to install the components, such as Web Server 7.0, Directory Server, and Access Manager.

• In the second session, you need to install Portal Server and configure it to support 64–bit mode.

To Configure Portal Server 7.1 on a 64–bit Web Server 7.0 Instance

1. Install Web Server 7.0, Directory Server, and Access Manager using the Java ES installer.

2. Start the Directory Server instance.

3. Ensure that the Web Server 7.0 administrator server is running.

   https://node1.domain-name:8989

4. Ensure that the Web Server instance is running.

   http://node1.domain-name:80

5. Configure Web Server to support 64–bit mode.

   WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile -config=host_name platform=64 WebServer_base/bin/wadm set-thread-pool-prop -user=admin --port=8989 --password-file=passfile -config=host_name stack-size=261144 WebServer_base/bin/wadm deploy-config -user=admin --password-file=passfile -port=8989 --restart=true host_name

6. Ensure that the web container instance and administrator server are running.

   https://node1.domain-name:8989

   http://node1.domain-name:80

7. Install Portal Server 7.1 in the Configure Now mode using the Java ES installer.

Switching Portal Server Installation From 64–bit Mode to 32–bit Mode

If you have installed Portal Server in 64–bit mode, you can use the following procedure to convert Portal Server to support 32–bit mode. After configuring Portal Server to support 32–bit mode, you need to manually configure the search server.

To Switch Portal Server Installation From 64–bit Mode to 32–bit Mode

1. Start the Directory Server instance.

2. Ensure that the Web Server administrator server is running.

3. Ensure that Web Server instance is running.

4. Configure Web Server to support 32–bit mode.

   WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile --config=host_name platform=32 WebServer_base/bin/wadm set-jvm-prop --user=admin --port=8989 --password-file=passfile --config=host_name ative-library-path-prefix="/PortalServer_base/SUNWportal/lib

5. Remove all compiled JSPs for the Portal desktop.

   rm -rf /var/opt/SUNWportal/portals/PORTAL_ID/desktop/compiled/_jsps/*

   WebServer_base/bin/wadm deploy-config --user=admin --password-file= passfile --port=8989 --restart=true host_name

6. Stop and start the Web Server instance.

To Configure the Search Setup from 64–bit Mode to 32–bit Mode

1. Go to the Search Server directory.

   cd /var/opt/SUNWportal/searchservers/searchserver_name/db

2. Remove the unwanted files.

   rm -rf _*

3. Edit the search.conf file.

   vi /var/opt/SUNWportal/searchservers/search1/config/search.conf

4. Set the search-platform property to 32.

5. Stop and start the Web Server instance.

Switching Portal Server Installation From 32–bit Mode to 64–bit Mode

If you have installed Portal Server in 32–bit mode, then you can use the following procedure to convert Portal Server to support 64–bit mode. After configuring Portal Server to support 64–bit mode, you need to manually configure the search server.

To Switch Portal Server Installation From 32–bit Mode to 64–bit Mode

1. Start the Directory Server instance.

2. Ensure that the Web Server 7.0 administrator server is running.

3. Ensure that Web Server instance is running.

   WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile --config=host_name platform=64 WebServer_base/SUNWwbsvr7/bin/wadm set-thread-pool-prop --user=admin --port=8989 --password-file=passfile --config=host_name stack-size=261144 WebServer_base/SUNWwbsvr7/bin/wadm set-jvm-prop --user=admin --port=8989 --password-file=passfile --config= host_name native-library-path-prefix= "/PortalServer_base/SUNWportal/lib/sparcv9" (amd64 for x86) WebServer_base/SUNWwbsvr7/bin/wadm delete-jvm-options --user=admin --port=8989 --password-file=passfile --config= host_name "-Xms512M -Xmx768M -Xss128k" WebServer_base/SUNWwbsvr7/bin/wadm create-jvm-options --user=admin --port=8989 --password-file=passfile --config= host_name "-Xms512M -Xmx768M -Xss512k"

4. Remove all compiled JSPs for the Portal desktop.

   rm -rf /var/PortalServer_base/SUNWportal/portals/PORTAL_ID/desktop/compiled/_jsps/*

   WebServer_base/SUNWwbsvr7/bin/wadm deploy-config --user=admin --password-file= passfile --port=8989 --restart=true host_name

To Switch the Search Setup From 32–bit Mode to 64–bit Mode

1. Go to the Search Server directory and delete the unwanted files.

   cd /var/SUNWportal/searchservers/searchserver_name/db rm -rf _*

2. Edit the search.conf file.

   vi /var/opt/SUNWportal/searchservers/search1/config/search.conf

3. Set the search-platform property to 64.

4. Stop and start the Web Server instance.

Installing Portal Server 7.1 as a Non-Root User

If you do not have administrator privileges for the machine where you install Portal Server, use the following procedure to install Portal Server.

To Install Portal Server 7.1 as a Non-Root User

1. Install the Directory Server using the Java ES installer.

   During installation, provide the username and group information whenever prompted.

2. As the non-root user, start Directory Server and verify whether it is running.

   ps -aef | grep slapd

3. Install web container as the non-root user using the Java ES installer.

4. Install Access Manager.

   For more information on installation steps, see the Technical Note: Installing Access Manager to Run as a Non-Root User.

5. Install Portal Server in the Configure Later mode.

6. During installation, provide the non-root user information whenever prompted.

7. Change the ownership and access rights of SUNWportal to the User ID and Group of the non-root user.

   chown -R Userid:Group /PortalServer_base/SUNWportal chown -R Userid:Group /etc/SUNWportal chown -R Userid:Group /var/SUNWportal chmod -R 755 /PortalServer_base/SUNWportal chmod -R 755 /etc/SUNWportal chmod -R 755 /var/SUNWportal

8. Restart the web container.

To Create a New Portal Server Instance as a Non-Root User

1. Create a web container instance as a non-root user.

2. Telnet as a non-root user and run the psadmin create-instance command.

3. Telnet as the root user and run the chown -R psuser:portal /var/opt/SUNWportal/portals/myPortal/ command.

4. Telnet as a non-root user and restart the web container instance.

To Create a New Search Server in Web Server Non-Root Install

1. Create a Web Server instance using the Web Server 7.0 administration console as a non—root user.

2. Create a search server.

3. Log in as a root user into the machine and change the search server instance.

   chown -R nonrootuser.nonroot /var/opt/SUNWportal/searchservers/search-server-id

   For the Linux platform, use the following command: chown -R nonrootuser.nonroot /var/opt/sun/portal/searchservers/search-server-id.

4. Change permissions of the search instance.

   chmod -R og+rX /var/opt/SUNWportal/searchservers/search-server-id

   For the Linux platform, use the following command: chmod -R og+rX /var/opt/sun/portal/searchservers/search-server-id

5. Restart Web Server as the non-root user.