To Reconfigure the Web Server Administration
Servers to Run as Non-Root Users
In this procedure, you reconfigure the administration server for each of the Web Servers that contain Access Manager. Although this is not required, it's a good practice to run the Access Manager Web Servers and their administration servers as the same non-root user ID. This eliminates permissions problems. For example, if the Access Manager Web Server runs as a non-root user, and its administration server runs as a root user, then files created by the administration server may not be readable by the Access Manager Web Server.
-
As a root user, log into host AccessManager-1.
-
Stop the Web Server administration server by issuing the commands:
# cd /opt/SUNWwbsvr/https-admserv # ./stop
-
Change the “runs as” user ID from root to nobody.
# cd /opt/SUNWwbsvr/ # chown -R nobody:nobody https-admserv/* httpacl/ alias # rm -rf /tmp/https-admserv
-
Edit the magnus.conf file.
Make a backup of this file before making changes to the file.
# vi https-admserv/config/magnus.conf
Change the User property value from root to nobody.
-
Verify that the Web Server administration server successfully runs as a non–root user.
-
As a root user, log into host AccessManager-2.
-
Stop the Web Server administration server by issuing the commands:
# cd /opt/SUNWwbsvr/https-admserv # ./stop
-
Change the “runs as” user ID from root to nobody.
# cd /opt/SUNWwbsvr/ # chown -R nobody:nobody https-admserv/* httpacl/ alias # rm -rf /tmp/https-admserv
-
Edit the magnus.conf file.
# vi https-admserv/config/magnus.conf
Change the User property value from root to nobody.
-
Verify that the Web Server administration server successfully runs as a non–root user.
- © 2010, Oracle Corporation and/or its affiliates