Sun ONE logo      Previous      Contents      Index      Next     

Sun ONE Portal Server 6.1 Installation Guide

Appendix A
Sun ONE Portal Server 6.1 Installation for Sun ONE Application Server 7.0

Sun™ ONE Portal Server 6.1 can be deployed on a Sun™ ONE Application Server using it as its web application container.

This appendix contains the following sections:

Familiarity with Sun ONE Portal Server 6.1 Release Notes, and Sun ONE Portal Server 6.1 Administrator’s Guide are recommended. The installation information only describes the procedure for installing the Sun ONE Portal Server with default settings and includes the sample desktop.

Overview

The Sun ONE Application Server is a Java™ application server that enables deployment of web applications, such as the Sun ONE Portal Server, and web services. The Sun ONE Application Server implements the J2EE™ platform specification and supports servlets, JSPs, Enterprise JavaBeans™ (EJB™), and other platform services. In addition, the Sun ONE Application Server allows you to use the Sun ONE Web Server to serve up static HTML and image files as well as JSPs and servlets.

When installing the Sun ONE Portal Server software, the installation script asks you which deployment type you are using. Once you select Sun ONE Application Server, the install script sets up the appropriate default directories and adds a number of .war files that facilitate running the Portal Server on a Sun ONE Application Server.

An example of some of the Sun ONE Application Server information the install script needs to know is the application server directory (by default /opt/SUNWappserver7) and the application server instance into which portal server should be deployed (by default, server1).

Hardware and Software Requirements

Before installing the Sun ONE Portal Server software, ensure that your system meets the following requirements:

Hardware Requirements

For a new installation of the software, your system must meet the following minimal hardware requirements:

Software Requirements

The software discussed here is required for a successful installation of the Sun ONE Portal Server software. Other versions of these software products are not supported.

Space Requirements

These requirements are the ones that are checked for in the Portal Server installation script. Table A-1 is a three column table. The first column lists the directory, the second the size in megabytes, and the third adds relevant comments.

Table A-1  Space Requirements

Directory

Size

Comments

/etc/opt

200 MB

 

/var/opt

200 MB

Add more for extended logging.

/usr

50 MB

If installing JDK 1.4.1_01.

Application server base directory (/opt/SUNWappserver7)

50 MB

If using migration tools.

DS_BASEDIR (/usr/ldap)

300 MB

For Directory Server.

Application server base directory (/opt/SUNWappserver7)

300 MB

For iPlanet Directory Server Access Management Edition.

Application server base directory (/opt/SUNWappserver7)

200 MB

For Portal Server only.

Application server base directory (/opt/SUNWappserver7)

500 MB

For Secure Remote Access on the same machine as the Portal Server software.

S1PSBASEDIR (/opt)

100 MB

For Secure Remote Access support on the machine that has the Portal Server software when the gateway is on a separate machine.

Operating System Requirements

The Sun ONE Portal Server software requires at least a user distribution of the Solaris™ 8 or Solaris™ 9 software as the operating system. The Solaris 8 operating system requires the following operating system patches as well for a successful installation of the product:

These are the minimum required patches. The last two digits of the patch number are the minor revision number. If updates to the patch have been released, install the most recent patch revision (the one with the higher revision number). Typically, these patches are made obsolete when a new patch is released and only the most recent patch is available at the SunSolve site. Please review the readme for each patch to find out what dependencies or patches may be required.

Installing the Sun ONE Portal Server Software

This installation example only gives the procedure for installing the Sun ONE Portal Server with default settings, which includes the sample desktop.

Note

Portal Server cannot be installed into an application server instance or domain whose name contains a dash or a space, for example, Default-Server or Default Server. If you try to install into an application server instance or domain with a dash or space in the name, the installation script returns the error message Invalid response! and prompts for the application server domain or application server instance name again.

Note

Do not use this procedure if you are planning to run the portal server on a Secure Sockets Layer (SSL) enabled application server instance. To run the portal server on an SSL-enabled application server, you should secure the application server instance before you install the Sun ONE Portal Server software. See "Installing the Sun ONE Portal Server into a Secure Application Server Instance" for information.

The installation script sets the parameters needed. You supply the Sun ONE Application Server password and Portal Server passphrase to complete the install.

Note

The Sun ONE Portal Server software will be installed in the Sun ONE Application Server directory.

  1. Go to the directory where the portal server software is, then type the install command:

    2. # ./pssetup

  2. After you have accepted the licensing agreement, select option 1, Install Portal Server.
  3. Select option 1, Sun ONE Application Server, as the deployment type.
  4. This installs the portal server with these defaults.

    Application Server summary

    --------------------------

    Directory: /opt/SUNWappserver7

    Domain: /var/opt/SUNWappserver7/domains/domain1

    Instance: server1

    Document Root: /var/opt/SUNWappserver7/domains/domain1/server1/docroot

    Administrator: admin

    Administration Protocol: http

    Administration Port: 4848

    JDK installation summary

    ------------------------

    Directory: /usr/java1.4.1_01

    Directory Server installation summary

    -------------------------------------

    Base Directory: /usr/ldap

    Host: myappserver.sesta.com

    Port: 389

    Instance: myappserver

    Root Suffix: dc=iplanet,dc=com

    Directory Manager: cn=Directory Manager

    Administrator: admin

    Administration Port: 58900

    Identity Server installation summary

    ------------------------------------

    Base Directory: /opt/SUNWappserver7

    Access URL: http://myappserver.sesta.com:80

    Portal Server installation summary

    ----------------------------------

    Base Directory: /opt/SUNWappserver7

    Deployment URI: /portal

    Sample Portal: y

    Upgrade Mode: n

    Use these settings? [y]/n y

    What is the password for the Application Server administrator? Again?

    What is the passphrase for this server? Again?

    What is the Identity Server Internal LDAP Authentication User password? Again?

  5. When asked the question: Use these settings?

    6. Type y to accept the default settings.

    Type n to change as necessary.

  6. Enter the password for the application server and confirm it.
  7. Enter a passphrase for the portal server and confirm it.
  8. Enter the Identity Server Internal LDAP Authentication User password and confirm it.

Note

The password used for the passphrase and the password used for the Identity Server Internal LDAP Authentication User (amldapuser) password can not be the same. If you use the same password for the passphrase and amldapuser password you will be prompted to enter a different password for the amldapuser.

The install script finishes installing the portal server.

  1. Check the /var/sadm/install/logs/pssetup.pid/setup.log file for errors.
  2. Stop and restart the application server.
  3. Test the Sun ONE Portal Server installation by launching the Portal Desktop in a browser by using:

    4. http://fullhostname:listen-port/portal/dt

    If the sample desktop displays without any exception, then your portal server installation is good.

Installing the Sun ONE Portal Server into a Secure Application Server Instance

Setting up the Sun ONE Portal Server to run on an SSL-enabled Sun ONE Application Server instance is a two-step procedure, First, secure the application server instance into which you will install the portal server. Then install the Sun ONE Portal Server software.

To Secure the Application Server Instance

  1. Log in to the Sun ONE Application Server administration console. as administrator (admin) by entering http://fullhostrname:port in your browser’s web address field. The default port is 4848. Use the password you entered at installation.
  2. Select the application server Instance on which you installed or will install the Identity Server.

    3. The right pane shows that the configuration has changed.

  3. Click Apply Changes.
  4. Click Restart.

    5. The application server should automatically restart.

  5. In the left pane, click Security under the application server instance on which you installed or will install the Identity Server.
  6. Click the Manage Database tab.
  7. Click Create Database if it is not selected.
  8. Enter the new database password and confirm it, then click the OK button.

    9. Ensure that you write down the database password for later use.

  9. Once the Certificate Database has been created, click the Certificate Management tab.
  10. Click the Request link if it is not selected.
  11. Enter the Request data for the certificate as follows:
    1. Select if this is a new certificate or a certificate renewal.

      2. Many certificates expire after a set period of time, such as six months or a year. Some Certificate Authorities (CA) will automatically send you a renewal.

    2. Specify how you want to submit the request for the certificate.
      • If the CA expects to receive the request in an email message, check CA Email and enter the email address of the CA. For a list of CAs, click List of available certificate authorities.
      • If you are requesting the certificate from an internal CA that is using the Sun ONE Certificate Server, click CA URL and enter the URL for the Certificate Server. This URL should point to the certificate server’s program that handles certificate requests.
    3. Select the cryptographic module for the key-pair file you want to use when requesting the certificate from the drop-down list.
    4. Enter the password for your key-pair file.

      5. This is the password you specified in Step 8.

    5. Enter your identification information.

      6. In the Common Name field, enter the full name of the server including the port number, for example myserver1.sesta.com:80.In the Locality and State or Province fields, spell out your location completely. Abbreviations, such as CA for California, will not work.

  12. Click OK button, you will see a message such as:

    13. --BEGIN NEW CERTIFICATE REQUEST---
    afajsdllwqeroisdaoi234rlkqwelkasjlasnvdknbslajowijalsdkjfalsdflasdf
    alsfjawoeirjoi2ejowdnlkswnvnwofijwoeijfwiepwerfoiqeroijeprwpfrwl
    --END NEW CERTIFICATE REQUEST--

  13. Copy all of this text to a file. Click OK.

    14. Ensure that you get the Root CA certificate.

  14. You will receive an e-mail certificate response containing the certificate, such as:

    15. --BEGIN CERTIFICATE---
    afajsdllwqeroisdaoi234rlkqwelkasjlasnvdknbslajowijalsdkjfalsdflasdf
    alsfjawoeirjoi2ejowdnlkswnvnwofijwoeijfwiepwerfoiqeroijeprwpfrwl
    --END CERTIFICATE--

  15. Copy this text into your clipboard, or save the text into a file.
  16. Go the Sun ONE Application Server administration console and click on Install link.
  17. Select Certificate for This Server.
  18. Enter the Certificate Database password in the Key Pair File Password field. It is the same password you entered in Step 8.
  19. Paste the certificate into the provided text field, Message text (with headers), or enter the filename in the Message is in this file text box. Select the appropriate radio button.
  20. Click OK button.

    21. The browser displays the certificate, and provides a button to add the certificate.

  21. Click Add Server Certificate.
  22. Install the Root CA Certificate in the same manner described in Step 9 through Step 21. In Step 17, select Certificate for Trusted Certificate Authority instead.
  23. Once you have completed installing both certificates, expand HTTP Server node in the left pane
  24. Select HTTP Listeners under HTTP Server.
  25. Select http-listener-1.

    26. The browser displays the socket information.

  26. Change the value of the port used by http-listener-1 to a more appropriate value such as 443.
  27. Select SSL/TLS Enabled.
  28. Select Certificate Nickname.
  29. Specify the Return server.

    30. This should match the common name specified in Step 11.

  30. Click Save.
  31. Select the application server instance on which you will install the Sun ONE Portal Server software.

    32. The right pane shows that the configuration has changed.

  32. Click Apply Changes.
  33. Click Restart.

    34. The application server should automatically restart.

To Install the Sun ONE Portal Server to Run as SSL

Once the Sun ONE Application Server instance is secured, install the Sun ONE Portal Server software as follows:

  1. Go to the directory where the portal server software is, then type the install command:

    2. # ./pssetup

  2. After you have accepted the licensing agreement, select option 1, Install Portal Server.
  3. Select option 1, Sun ONE Application Server, as the deployment type.
  4. Do not accept the default settings—enter n at the prompt.
  5. Enter the application server password and server passphrase and hit return to accept the default values for each prompt except the Run SSL on <hostname>? y/[n] prompt. Do not accept the default value of n. Enter y at this prompt to use SSL.
  6. At the What port should be used to access the portal server? [443] prompt, enter the port number that was entered as the http-listener1 in Step 26 of "To Secure the Application Server Instance".
  7. Review the values that will be used for the install and if they are correct accept them.
  8. Log in to the Sun ONE Application Server administration console. as administrator (admin) by entering http://fullservername:port in your browser’s web address field. The default port is 4848. Use the password you entered at installation.
  9. Select the application server instance on which you installed or will install the Sun ONE Identity Server. The right pane shows that the configuration has changed.
  10. In the left pane, click Security under the application server instance on which you installed the Identity Server/Portal Server.
  11. Select the JVM Settings Tab in the right pane.
  12. Select the JVM Options link.
  13. Type -Djava.protocol.handler.pkgs=com.iplanet.services.comm into JVM Option text field and click Add.
  14. Click Save.
  15. In the Sun ONE Application Server administration console, select the application server instance on which Identity Server is running.

    16. The right pane shows that the configuration has changed.

  16. Click Apply Changes.
  17. Click Restart button.

    18. The application server should automatically restart.

  18. Open the AMConfig.properties file in a text editor. By default, the location of this file is the /opt/SUNWappserver7/SUNWam/lib directory.
  19. Set property com.iplanet.am.admin.cli.certdb.dir to APP_SERVER_INSTANCE_DIR/config. For example, /var/opt/SUNWappserver7/domains/domain1/server1/config.
  20. Set property com.iplanet.am.admin.cli.certdb.prefix to empty.

    21. For example, this line will have the following value by default com.iplanet.am.admin.cli.certdb.prefix=https-<fqdn>-<hostname>-. Change it to com.iplanet.am.admin.cli.certdb.prefix=.

  21. Save the AMConfig.properties file.
  22. Restart the application server Instance from command line. It should prompt you for password. Enter the Certificate Database password.



Previous      Contents      Index      Next     

Copyright 2003 Sun Microsystems, Inc. All rights reserved.