In this section, we will create a non-root user on the two machines that will host the Distributed Authentication User Interface and install Sun Java System Web Server using the non-root user. Use the following list of procedures as a checklist for completing the task.
To Create a Non-Root User on the Distributed Authentication User Interface 1 Host Machine
To Install the Web Server for Distributed Authentication User Interface 1
To Create a Non-Root User on the Distributed Authentication User Interface 2 Host Machine
To Install Sun Java System Web Server for Distributed Authentication User Interface 2
Create the non-root user using the roleadd command in the Solaris Operating Environment on the Distributed Authentication User Interface 1 (da-1) host machine.
As a root user, log in to the da-1 host machine.
Use roleadd to create a new user.
# roleadd -s /sbin/sh -m -g staff -d /export/da80adm da80adm |
(Optional) Verify that the user was created.
# cat /etc/passwd root:x:0:0:Super-User:/:/sbin/sh daemon:x:1:1::/: ... nobody4:x:65534:65534:SunOS 4.x NFS Anonymous Access User:/: da80adm:x:223830:10::/export/da80adm:/sbin/sh |
(Optional) Verify that the user's directory was created.
# cd /export/da80adm # ls local.cshrc local.profile local.login |
(Optional) Create a password for the non-root user.
# passwd da80adm New Password: da80a6m Re-ener new Pasword: da80a6m passwd: password successfully changed for da80adm |
If you do not perform this step, you will not be able to switch user (su) when logged in as the non-root user.
This procedure assumes that you have just completed To Create a Non-Root User on the Distributed Authentication User Interface 1 Host Machine and are still logged in as the root user.
Read the Web Server 7.0 Release Notes to determine the latest patches you might need to install.
On the da-1 host machine, install required patches if necessary.
In this case, the Release Notes indicate that based on the hardware and operating system being used, patch 117461–08, patch 119963–08, and patch 120011–14 are required.
Run patchadd to see if the patches are already installed.
# patchadd -p | grep 117461–08 |
A list of patch numbers is displayed. This machine is already patched with 117461–08.
# patchadd -p | grep 119963-08 |
No results are returned which indicates that the patch is not yet installed on the system.
# patchadd -p | grep 120011-14 |
No results are returned which indicates that the patch is not yet installed on the system.
Make a directory for downloading the patches you need and change into it.
# mkdir /export/patches # cd /export/patches |
Download the patches.
You can search for patches directly at http://sunsolve.sun.com. Navigate to the PatchFinder page, enter the patch number, click Find Patch, and download the appropriate patch.
Signed patches are downloaded as JAR files. Unsigned patches are downloaded as ZIP files.
Unzip the patch files.
# unzip 119963-08.zip # unzip 120011-14.zip |
Run patchadd to install the patches.
# patchadd /export/patches/119963-08 # patchadd /export/patches/120011-14 |
You can use the -M option to install all patches at once. See the patchadd man page for more information.
After installation is complete, run patchadd to verify that each patch was added successfully.
# patchadd -p | grep 119963-08 |
A series of patch numbers is displayed, and the patch 119963-08 is present.
# patchadd -p | grep 120011-14 |
A series of patch numbers is displayed, and the patch 120011–14 is present.
Create a directory into which you can download the Web Server bits and change into it.
# mkdir /export/WS7 # cd /export/WS7 |
Download the Sun Java System Web Server 7.0 Update 2 software from http://www.sun.com/download/products.xml?id=45ad781d.
Follow the instructions on the Sun Microsystems Product Downloads web site for downloading the software.
Unpack the software package.
# gunzip sjsws-7_0u2-solaris-sparc.tar.gz # tar xvf sjsws-7_0u2-solaris-sparc.tar |
Run setup.
# cd /export/WS7 # ./setup --console |
When prompted, provide the following information.
|
Press Enter. Continue to press Enter when prompted. |
|
|
Enter yes. |
|
|
Enter /opt/SUNWwbsvr |
|
|
Enter yes. |
|
|
Enter 2. |
|
|
Enter 1,3,5. |
|
|
Enter 1. |
|
|
Enter 1. |
|
|
Enter no. |
|
|
Accept the default value. |
|
|
Accept the default value. |
|
|
Enter no. |
|
|
Enter da80adm. |
|
|
Accept the default value. |
|
|
Enter web4dmin. |
|
|
Enter web4dmin. |
|
|
Accept the default value. |
|
|
Enter 1080. |
|
|
Accept the default value. |
|
|
Enter no. |
|
|
Enter 1. |
When installation is complete, the following message is displayed:
Installation Successful. |
(Optional) To verify that Web Server was installed with the non-root user, examine the file permissions.
# cd /opt/SUNWwbsvr/admin-server # ls -al total 16 drwxr-xr-x 8 root root 512 Jul 19 10:36 . drwxr-xr-x 11 da80adm staff 512 Jul 19 10:36 .. drwxr-xr-x 2 root root 512 Jul 19 10:36 bin drwx------ 2 da80adm staff 512 Jul 19 10:36 config drwx------ 3 da80adm staff 512 Jul 19 11:09 config-store drwx------ 3 da80adm staff 512 Jul 19 10:40 generated drwxr-xr-x 2 da80adm staff 512 Jul 19 10:40 logs drwx------ 2 da80adm staff 512 Jul 19 10:36 sessions |
The appropriate files and directories are owned by da80adm.
Start the Web Server administration server.
# su da80adm # cd /opt/SUNWwbsvr/admin-server/bin # ./startserv |
(Optional) Verify that the non-root user was able to start Web Server.
Log out of the da–1 host machine.
Create the non-root user using the roleadd command in the Solaris Operating Environment on the Distributed Authentication User Interface 2 (da-2) host machine.
As a root user, log in to the da-2 host machine.
Use roleadd to create a new user.
# roleadd -s /sbin/sh -m -g staff -d /export/da80adm da80adm |
(Optional) Verify that the user was created.
# cat /etc/passwd root:x:0:0:Super-User:/:/sbin/sh daemon:x:1:1::/: ... nobody4:x:65534:65534:SunOS 4.x NFS Anonymous Access User:/: da80adm:x:227627:10::/export/da80adm:/sbin/sh |
(Optional) Verify that the user's directory was created.
# cd /export/da80adm # ls local.cshrc local.profile local.login |
(Optional) Create a password for the non-root user.
# passwd da80adm New Password: da80a6m Re-ener new Pasword: da80a6m passwd: password successfully changed for da80adm |
If you do not perform this step, you will not be able to switch user (su) when logged in as the non-root user.
This procedure assumes that you have just completed To Create a Non-Root User on the Distributed Authentication User Interface 2 Host Machine and are still logged in as the root user.
Read the Web Server 7.0 Release Notes to determine the latest patches you might need to install.
On the da-2 host machine, install required patches if necessary.
In this case, the Release Notes indicate that based on the hardware and operating system being used, patch 117461–08, patch 119963–08, and patch 120011–14 are required.
Run patchadd to see if the patches are already installed.
# patchadd -p | grep 117461–08 |
A list of patch numbers is displayed. This machine is already patched with 117461–08.
# patchadd -p | grep 119963-08 |
No results are returned which indicates that the patch is not yet installed on the system.
# patchadd -p | grep 120011-14 |
No results are returned which indicates that the patch is not yet installed on the system.
Make a directory for downloading the patches you need and change into it.
# mkdir /export/patches # cd /export/patches |
Download the patches.
You can search for patches directly at http://sunsolve.sun.com. Navigate to the PatchFinder page, enter the patch number, click Find Patch, and download the appropriate patch.
Signed patches are downloaded as JAR files. Unsigned patches are downloaded as ZIP files.
Unzip the patch files.
# unzip 119963-08.zip # unzip 120011-14.zip |
Run patchadd to install the patches.
# patchadd /export/patches/119963-08 # patchadd /export/patches/120011-14 |
You can use the -M option to install all patches at once. See the patchadd man page for more information.
After installation is complete, run patchadd to verify that each patch was added successfully.
# patchadd -p | grep 119963-08 |
A series of patch numbers is displayed, and the patch 119963-08 is present.
# patchadd -p | grep 120011-14 |
A series of patch numbers is displayed, and the patch 120011–14 is present.
Create a directory into which you can download the Web Server bits and change into it.
# mkdir /export/WS7 # cd /export/WS7 |
Download the Sun Java System Web Server 7.0 Update 2 software from http://www.sun.com/download/products.xml?id=45ad781d.
Follow the instructions on the Sun Microsystems Product Downloads web site for downloading the software.
Unpack the software package.
# gunzip sjsws-7_0u2-solaris-sparc.tar.gz # tar xvf sjsws-7_0u2-solaris-sparc.tar |
Run setup.
# cd /export/WS7 # ./setup --console |
When prompted, provide the following information.
|
Press Enter. Continue to press Enter when prompted. |
|
|
Enter yes. |
|
|
Enter /opt/SUNWwbsvr |
|
|
Enter yes. |
|
|
Enter 2. |
|
|
Enter 1,3,5. |
|
|
Enter 1. |
|
|
Enter 1. |
|
|
Enter no. |
|
|
Accept the default value. |
|
|
Accept the default value. |
|
|
Enter no. |
|
|
Enter da80adm. |
|
|
Accept the default value. |
|
|
Enter web4dmin. |
|
|
Enter web4dmin. |
|
|
Accept the default value. |
|
|
Enter 1080. |
|
|
Accept the default value. |
|
|
Enter no. |
|
|
Enter 1. |
When installation is complete, the following message is displayed:
Installation Successful. |
(Optional) To verify that Web Server was installed with the non-root user, examine the file permissions.
# cd /opt/SUNWwbsvr/admin-server # ls -al total 16 drwxr-xr-x 8 root root 512 Jul 19 10:36 . drwxr-xr-x 11 da80adm staff 512 Jul 19 10:36 .. drwxr-xr-x 2 root root 512 Jul 19 10:36 bin drwx------ 2 da80adm staff 512 Jul 19 10:36 config drwx------ 3 da80adm staff 512 Jul 19 11:09 config-store drwx------ 3 da80adm staff 512 Jul 19 10:40 generated drwxr-xr-x 2 da80adm staff 512 Jul 19 10:40 logs drwx------ 2 da80adm staff 512 Jul 19 10:36 sessions |
The appropriate files and directories are owned by da80adm.
Start the Web Server administration server.
# su da80adm # cd /opt/SUNWwbsvr/admin-server/bin # ./startserv |
(Optional) Verify that the non-root user was able to start Web Server.
Log out of the da–2 host machine.