iPlanet Trustbase Transaction Manager 3.0.1 Beta Configuration and Installation: Introduction

Previous Contents DocHome Index Next

iPlanet Trustbase Transaction Manager 3.0.1 Beta Configuration and Installation

Introduction

The following chapter discusses all related documents to this guide.

Overall Layout

The complete documentation set comprises of:

iTTM3.0.1-Install-Configuration-Guide.pdf (this Document) is designed for operators looking to produce applications that utilise the iPlanet Trustbase Transaction Manager framework. It is designed to provide information for operators looking to install the iPlanet Trustbase Transaction Manager platform. This guide identifies hardware and software required prior to installation, how to install iPlanet Trustbase Transaction Manager from CD-ROM

iTTM3.0.1-Developer-Guide.pdf that indicates how to build your own services.
This manual Covers:

Overview of the Installation

Detailed Installation procedures

Hardware Architectural Considerations

Dynamic Configuration
At the end of the manual there is an appendix on how to operate your own PKI using the command line tool TokenKeyTool

Related Documents

Solaris 8 and Java Development Kit

http://docs.sun.com

http://java.sun.com/products/jdk/1.1/docs/index.html

iPlanet Application Server 6.5

http://docs.sun.com/db/prod/s1.ipasee

http://docs.iplanet.com/docs/manuals/ias.html

iPlanet Web Server 6.0

http://docs.sun.com/db/prod/s1.websrv60

http://docs.iplanet.com/docs/manuals/enterprise.html

iPlanet Certificate Management System

http://docs.sun.com/db/prod/s1certsrv

http://docs.iplanet.com/docs/manuals/cms.html

Oracle 8.1.7 Installation and Configuration Guides

http://www.oracle.com

Hardware Security nCipher KeySafe 1.0 and CAFast

http://www.ncipher.com

Identrus Message Specifications

http://www.identrus.com

Transaction Coordinator requirements (IT-TCFUNC)

Core messaging specification (IT-TCMPD)

Certificate Status Check Messaging specification (IT-TCCSC)

Software Requirements

Solaris(TM) 8 for SPARC(TM)
JDK 1.3.1
iPlanet Web Server 6.0 SP2
iPlanet Application Server 6.5
iPlanet Trustbase(TM) Transaction Manager 3.0.1
Any JMS Provider (optional)
Oracle 8.1.7
Certificate Authority [e.g. iPlanet Certificate Management System 4.2]
Optional Hardware Security Module (HSM) on server [mandatory for Identrus participation - nCipher nShield 300 SCSI]

Hardware requirements

Memory

Recommended single machine setup 512 MB

Disk Space

Recommended single machine setup 1 GB

Recommended Installation Template

Before attempting an installation you should prepare a template outlining all your proposed settings. The following table provides the setting used throughout the documentation.

iWS 6.0 SP2

Install directory /opt/iws6
Would you like to continue with installation? [Yes]: Yes
Do you agree to the license terms? [Yes]: Yes
Choose an installation type [2]: 2
Install location [/opt/iws6]: /opt/iws6
Specify the components you wish to install [A] A
Specify the components to install [1, 2, 3, 4,]: 1,2,3,4
Computer name [myhost.mycompany.com]: myhost.mycompany.com
System User [tbase]: tbase
System Group [iplanet]: iplanet
Run iWS Administration Server as [root]: root
IWS Admin Server User Name [admin]: admin
IWS Admin Server Password:
IWS Admin Server Password (again):
IWS Admin Server Port [8888]: 8888
Web Server Port [80]: 80
Web Server Content Root [/opt/iws6/docs:
Do you want to use your own JDK [No]: Yes
JDK Directory [/usr/Java]: /usr/java1.3
LibPath:
JDK Classpath:

These last two questions can be answered by pressing return

iAS 6.5

[0] CDROM directory /cdrom/cdrom0/ias6
[0] Install directory /opt/ias6
Would you like to continue with installation? [Yes]: Yes
Do you agree to the license terms? [No]: Yes
Select the component you want to install [1]: 1
Choose an installation type [2]: 2
Install location [/opt/ias6]: /opt/ias6
iPlanet Server Products components: Specify the components to install [All]: All
iPlanet Server Family Core: Specify the components to install [1, 2, 3]: 1,2,3
iPlanet Directory Suite components: Specify the components to install [1, 2]: 1,2
Administration Services components: Specify the components to install [1, 2]: 1,2
iPlanet Application Server Suite components: Specify the components you wish to install [1, 2, 3, 4,5]: 1,2,3,4,5
Computer name [myhost.mycompany.com]: myhost.mycompany.com
System User [tbase]:tbase
System Group [iplanet]: iplanet
Netscape configuration directory server? [No]: No
Do you want to use another directory to store your data? [No]: No
Directory server network port [389]: 389
Directory server identifier [myhost]: myhost
administrator ID [admin]: admin
Password:
Password (again):
Suffix [o=mycompany.com]: o=mycompany.com
Directory Manager DN [cn=Directory Manager]: cn=Directory Manager
Password:
Password (again):
Admin Domain [mycompany.com]: mycompany.com
Administration port [8889]: 8889
Run Administration Server as [root]: root
Product Key: XXXXXXXXXXX-XXXXXXXXXXX
Enter the location of your webserver: /opt/iws6/https-myhost.mycompany.com
Do you want to enable the user to access the registry and plugin libraries? [y] y
Do you want to continue with the iAS installation? [y] y
Username [admin]: admin
Password:
Password (again):
Do you want to enable I18N support for iAS? [No]: No
Username does not match [No]: Yes

Note patches may be required to install iAS6.5 on Solaris 8

iTTM 3.0.1

Do you agree to the license terms? [No]: Yes
Install location [/opt/ittm]: /opt/ittm
The root location of iPlanet Application Server ? /opt/ias6
The root location of iPlanet Web Server documents directory? /opt/iws6/docs
The user to start iTTM is [ tbase ]
The group to which the Trustbase user belongs [ iplanet ]
What is the database user name that is used by iTTM? tbase
What is the database password that is used by iTTM? tbase
On what host is your database stored? mydatabase.mycompany.com
On what port is your database running? 1521
On what SID is your database? orcl
On what URL is your local OCSP responder? http://myresponder.mycompany.com:8080/NASApp/OCSPResponder/OCSPResponderServlet
What is the AIA of this iTTM? https://myhost.mycompany.com
Enter the password to use for the tokenkeystore? password

OCSPResponder

What is the Base DN of the LDAP Server that stores your certificate revocation list?
What is the Bind DN of the LDAP server that stores your certificate revocation list?
What is the Bind password?password
On what host is your LDAP? myhost.mycompany.com
On what port is your LDAP? 387

JMSProxy

What Port is your ittm listening on? 80
On what host is your iTTM iPlanet Web Server ? [ myhost.uk.sun.com ]
On what HTTP port is your iTTM iPlanet Webserver running ? [ 80 ]
The JMS queue name for messages received from system backend ? [ backend_to_itps ]
The JMS queue server host ? [ myqueue.uk.sun.com ] { myqueue.mycompany.com }
The JMS queue server port ? [ 7676 ]

iTTM Certificate Aliases

(1) Location of alias = "IRCA" certificate e.g.
"CN=Identrus Root,OU=Identrus Root,O=Identrus,C=US"
(2) Location of alias = "L1CA" certificate e.g.
"CN=L1 Bank CA,OU=L1 Bank,O=L1,C=GB"
(3) Request/response for alias= "L1EESC" certificate e.g.
"CN=L1 Bank End Entity Signing Certificate,OU=L1 Bank,O=L1"
(4) Request/response for alias= "L1EESSL" certificate e.g.
"CN=L1 Bank SSL CertificateCertificate,OU=L1 Bank,O=L1"
(5) Request/response for alias= "L1IPSC" certificate e.g.
"CN=L1 Bank Inter-Participant Signing Certificate,OU=L1 Bank,O=L1"

You should make a note of the defaults that you use as you may need them in later installs.

Previous Contents DocHome Index Next
Copyright © 2001 Sun Microsystems, Inc. Some preexisting portions Copyright © 2001 Netscape Communications Corp. All rights reserved.

Last Updated October 31, 2002