Sun OpenSSO Enterprise 8.0 Installation and Configuration Guide

ProcedureTo Run the Diagnostic Tool to Create Checksum Files

Before You Begin

You must have unzipped the ssoDiagnosticTools.zip file and set your JAVA_HOME environment variable, as described in Getting Started With the OpenSSO Diagnostic Tool.

  1. Log in to the system where OpenSSO Enterprise is deployed and change to the directory where you unzipped the ssoDiagnosticTools.zip file.

  2. Invoke the Diagnostic Tool. For example, in GUI mode on Solaris Systems: ./ssodtool.sh

  3. Under Category, select Tamper-Detection.

  4. In Configuration Directory, specify one of the following paths:

    • OpenSSO Enterprise server configuration path. For example: /opensso

      or

    • Web container directory path where the OpenSSO Enterprise server bits are deployed. For example, for Sun Java System Application Server 9.1:

      /opt/SUNWappserver/domains/domain1/applications/j2ee-modules/opensso

  5. Under Select Test, specify Create Checksum.

  6. Click Run Selected.

    The Diagnostic Tool creates a checksum file named _configdir-pathname.checksum in the diagnostic-tool-zip-root/services/tamperdetection/backup directory.

    For example:

    • _opensso.checksum

    • _opt_SUNWappserver_domains_domain1_applications_j2ee-modules_opensso.checksum

    Caution. The Tamper Detection test relies on the operating system security permissions to protect the checksum files. Depending on the requirements of your deployment, you might need to copy these files to a more secure location.

  7. To save the results as an HTML file, click Save All Results.

  8. The Diagnostic Tool logs all test results in the diagnostic-tool-zip-root/ssodtool.log file. Optionally, as required by your deployment, check and save this log file.

Next Steps

Repeat this procedure to create a checksum file for the other path in Step 4.