Skip Headers
Oracle® Identity Manager Installation and Upgrade Guide for JBoss
Release 9.0
B25938-01
  Go To Documentation Library
Home		Go To Table Of Contents
Contents
Previous
Previous 		 Next
Next		  

11 Installing and Configuring Oracle Identity Manager Design Console

This section explains how to install the Oracle Identity Manager Design Console, which is a Java client. You have the option to install the Design Console on the same computer as your Oracle Identity Manager server or on a separate computer.

Requirements

Verify that your environment meets the following requirements for Design Console installation:


Note:

If you cannot resolve the hostname of the application server, then try adding the hostname and IP address in the hosts file in the directory C:\winnt \system32\drivers\etc\.

Installing the Design Console

To install the Design Console on a Windows host:

  1. Insert the Oracle Identity Manager Installation CD into your CD-ROM drive.

  2. Launch Windows Explorer, then navigate to the installServer directory on the installation CD.

  3. Double-click the setup_client.exe file.

  4. On the Welcome page, click Next.

  5. On the Target directory screen, complete one of the following sub-steps:


    Important:

    All Oracle Identity Manager components must be installed in different home directories. If you are installing the Design Console on a machine that is hosting another Oracle Identity Manager component such as the Oracle Identity Manager server or the Remote Manager), specify an install directory that hasn't been used yet.

    1. The default directory for the Design Console is C:\Oracle. To install the Design Console into this directory, click Next.

    2. To install the Design Console into another directory, type the path in the Directory field, then click Next.

      or

      Click Browse, navigate to the desired location, then click Next.


      Note:

      If the directory path that you does not exist, the Base Directory settings text box appears: Click OK. Oracle Identity Manager creates this directory for the Oracle Identity Manager server. If you do not have write permission to create the default directory for the Oracle Identity Manager server, a popup appears informing you that the installer could not create the directory, Click OK to dismiss the popup, then contact your System Administrator to obtain the appropriate permissions.

  6. On the Application Server page, select JBoss, then click Next. The next screen prompts you to specify the JRE to use with Design Console.

  7. Select either the JRE that is installed with Oracle Identity manager or specify an existing JRE. Click Next. The Application Server configuration screen appears.

  8. On the Application Server Host Information page, enter the information appropriate for the application server hosting your Oracle Identity Manager server:

    1. Type the host name or IP address in the upper text box.

    2. Type the naming port for the application server on which Oracle Identity Manager is deployed in the lower text box.


      Note:

      The host name is case-sensitive.

    3. Click Next.

  9. On the Graphical Workflow Rendering Information page, enter the Application server configuration information:

    1. Enter the Oracle Identity Manager server host IP address.

    2. Enter the port number.

    3. Select Yes or No to specify whether the Design Console should use SSL.

    4. Click Next.

  10. On the Shortcut page, select (or deselect) the check boxes for the shortcut options according to your preferences:

    1. Choose to create a shortcut to the Design Console on the Start Menu.

    2. Choose to create a shortcut to the Design Console on the desktop.

    3. Click Next when you are satisfied with the check box settings.

  11. On the Summary page, click Install to initiate Design Console installation.

  12. The final installation page displays a reminder to copy certain application server-specific files to your Oracle Identity Manager server installation. Follow these instructions and then click OK.

  13. Click Finish to complete the installation process.

Post-Installation Requirements for the Design Console

For both clustered and non-clustered installations, copy the <JBOSS_HOME>\client\jbossall-client.jar file from the machine hosting your Oracle Identity Manager server to the directory <XL_DC_HOME>\xlclient\ext on the machine where you are installing the Design Console instance.

Perform the following steps for clustered installations:

  1. Change the <Discovery> settings in the <XL_DC_HOME>/xellerate/config/xlconfig.xml file for all Design Console installations.

    For example, you would change a string something like the following:

      <java.naming.provider.url>    jnp://localhost:1100  </java.naming.provider.url>

    to the following string:

      <java.naming.provider.url>    jnp://<IP of node1>:1100,<IP of node 2>:1100  </java.naming.provider.url>

  2. Add the following tag to Discovery.CoreServer section of the Design Console's xlconfig.xml file, located in the <XL_DC_HOME>/xellerate/config directory:

       <jnp.partitionName>MyPartition</jnp.partitionName>

    where "MyPartition" is the partition name you specified during Oracle Identity Manager on JBoss clusters.

  3. To configure Workflow Visualization to access all available nodes in the cluster:

    1. Open the <XL_DC_HOME>/xlclient/config/xlconfig.xml and locate the following statement:

      <ApplicationURL>...</ApplicationURL>

    2. Replace the application server URL with the IP address and port of the Web server, as follows:

      <ApplicationURL>http://<webserverIP>/xlWebApp/LoginWorkflowRenderer.com</ApplicationURL>

Configuring Design Console Communication to the Oracle Identity Manager Server Over SSL (optional)

After installing the Oracle Identity Manager Design Console, you may want to configure it to communicate to your Oracle Identity Manager Server over SSL. Use the following steps to configure communication from your Design Console to the Oracle Identity Manager Server over SSL:

  1. Backup your jboss-<version#> folder

  2. Export the Oracle Identity Manager Server certificate using the following commands:

    1. cd <XL_HOME>\config

    2. %JAVA_HOME%\bin\keytool -export -file xlserver.cer(-keystore .xlkeystore -storepass xellerate -alias xell

      A file named xlserver.cer is created in the config folder.

  3. Open the <XL_HOME>\config\xljbossssl-service.xml file:

    1. Find the following line:

      <attribute name="KeyStorePass"><XDtConfig:configParameter ValueparamName="KeyStorePass"/></attribute>

    2. Change the line to the following:

      <attribute name="KeyStorePass">xellerate</attribute>

  4. Change the installation profile using the following commands:

    1. cd <XL_HOME>\profiles

    2. Open the jboss.profile file and set the following properties:

      • configure.ssl.invoker=true

      • jboss.ssl.invocation=true

      • jboss.ssl.port=10443

      • jboss.ssl.clustered.port=10444

      • jboss.stateful.invoker=xl-stateful-rmi-invoker

      • jboss.stateless.invoker=xl-stateless-rmi-invoker

  5. Run the setup command by using the following commands:

    1. cd <XL_HOME>\setup

    2. setup_jboss.cmd

  6. Edit the login-config.xml file by using the following commands:

    1. cd <JBOSS_DIR>\server\default\conf

    2. Open the login-config.xml file and find the XML tags toward the end in the file that look like the following:

      <policy>.........       <application-policy name= "xellerate">               <authentication>               ....               ....              </authentication>       </application-policy></policy>

    3. You will see two application-policy entries. Remove the last entry.


      Note:

      Be sure to remove the lines starting with <application-policy name="xellerate"> and ending through </application-policy>. Do not remove the last line ending with </policy>.

  7. Copy the <XL_HOME>\config\xlserver.cer file to <XL_DC_HOME>\java\lib\security on all Design Console systems that will communicate with the Oracle Identity Manager server. Use the following command to copy the xlserver.cer file:

    ..\..\bin\keytool -import -file xlserver.cer -keystore cacerts -storepass changeit -trustcacerts -alias xell

    When prompted, enter yes to trust the certificate.

  8. Copy the <XL_HOME>\config\.xlkeystore file to the <JBOSS_HOME>\server\default\conf directory.

  9. Copy the cacerts from the <XL_DC_HOME>\java\lib\security directory to the <JBOSS_HOME>\server\default\conf directory.

  10. Open the <JBOSS_HOME>\server\default\deploy\jbossweb-tomcat50.sar\server.xml file:

    1. Find the line that starts with:

      <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->

    2. Edit the lines in this entry so that it appears as follows:

      <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->        <Connector port="8443" address="${jboss.bind.address}"              maxThreads="100" minSpareThreads="5" maxSpareThreads="15"              scheme="https" secure="true" clientAuth="false"              keystoreFile="${jboss.server.home.dir}/conf/.xlkeystore"              keystorePass="xellerate"              truststoreFile="${jboss.server.home.dir}/conf/cacerts"              truststorePass="changeit"             sslProtocol = "TLS" />

    3. Uncomment the entry.

    4. Save and close the updated server.xml file.

Starting the Design Console

Double-click <XL_DC_HOME>\xlclient\xlclient.cmd or select Design Console from the Windows Start menu or desktop.

  Previous
Previous 		 Next
Next
  Go To Documentation Library
Home		Go To Table Of Contents
Contents