SSM Installation and Configuration Guide

     Previous  Next    Open TOC in new window    View as PDF - New Window  Get Adobe Reader - New Window
Content starts here

Configuring a Custom SSM

This section describes how to create and configure a custom SSM.

A custom SSM can be created by making a copy of an existing SSM and then making a few modifications before running the ConfigTool. This is a fairly straight-forward process, because all configuration information is stored in modifiable text files. Once the custom SSM is created, the same files can be used to replicate it across multiple systems.

The out-of-box SSMs that can be copied for this purpose are the following:

 

Creating a Custom SSM

  1. Determine the the out-of-box SSM that most closely resembles what you need. Then select that SSM’s directory and copy it to a directory to hold the custom SSM.

    2. For example, copy BEA_HOME\ales30-ssm\java-ssm to BEA_HOME\ales30-ssm\custom-ssm.

  2. Rename the custom-ssm\config\java-ssm directory to custom-ssm\config\custom-ssm.
  3. Change to the BEA_HOME\ales30-ssm\custom-ssm\config\custom-ssm\ales-policies directory and modify the default policies as follows:
    1. Add the following line to the subject file:

      2. //user/@ales.identity.dir@/@my.custom.user@/

    2. Add the following line to the rule file:

      3. grant( //role/Administrators, @ales.resource.root@, //user/@ales.identity.dir@/@my.custom.user@/) if true;

  4. Change to the BEA_HOME\ales30-ssm\custom-ssm\config\custom-ssm directory and add the following line to all-params.properties:

    5. my.custom.user = string, Enter the name of the custom user

  5. Make a backup copy of BEA_HOME\ales30-ssm\custom-ssm\adm\myssm_config.properties. Then make the following changes to myssm_config.properties.
    1. Set the ssm.type to custom-ssm.
    2. Define my.custom.user to a username.
    3. Modify other values as needed.
  6. Run ConfigTool.bat -check myssm_config.properties to check the properties file.
  7. Run ConfigTool.bat -process myssm_config.properties.

 

Replicating a Custom SSM

After creating a custom SSM as described above, perform the following steps to replicate it on another system:

  1. Copy the custom-ssm directory from the source to the destination system.
  2. If the SSM was installed to use an SCM, start the SCM.
  3. If the enrollment process has not been performed for the BEA_HOME on the destination system, run the enrollment program as described in Enrollment.
  4. If the custom SSM is based on the WLS or WLS 8.1 SSM, create a domain for the application to be secured.
  5. If needed, update myssm_config.properties with the domain name, the correct path, and other variables.
  6. Run the ConfigTool on the destination system.

  Back to Top       Previous  Next