Deployment Example 2: Federation Using SAML v2

4.1 Installing Two Directory Servers

The Java ES installer must be mounted on the host computer system where you will install Directory Server. See the section 2.2 Downloading and Mounting the Java Enterprise System 2005Q4 Installer in this manual.

Use the following as your checklist or installing two Directory Server:

  1. Install Directory Server 3SP.

  2. Install Directory Server 4SP.

ProcedureTo Install Directory Server 3SP

  1. As a root user, log in to the Directory Server 3SP host.

  2. Start the installer with the nodisplay option. Example:

    # cd /mnt/Solaris_sparc
    # ./installer -nodisplay
  3. When prompted, provided the following information:

    Welcome to the Sun Java(TM) Enterprise System; 
    serious software made simple...
    <Press ENTER to Continue>

    Press Enter. 

    <Press ENTER to display the Software 
    License Agreement>

    Press Enter. 

    Have you read, and do you accept, all of
    the terms of the preceding Software License

    Enter y.

    Please enter a comma separated list of 
    languages you would like supported with this 

    Enter 8 to select “English only.”

    Enter a comma separated list of products
    to install, or press R to refresh the 

    Enter 6,20.

    Be sure you've specified Sun Java System Administration Server 5 2005Q4 and Sun Java System Directory Server 5 2005Q4. 

    Press "Enter" to Continue or Enter a comma 
    separatedlist of products to deselect.

    Press Enter. 

    Enter 1 to upgrade these shared components and 
    2 to cancel.

    If upgrades are required, enter 1 to upgrade shared components.

    Enter the name of the target 
    installation directory for each product:

    Accept the default value for each product. 

    System ready for installation...

    Enter 1 to continue.

    Select Type of Configuration

    Enter 1 to configure now.

    Enter Host Name [DirectoryServer-3SP]

    Accept the default value. 

    Enter DNS Domain Name []

    Accept the default value. 

    Enter IP Address []

    Accept the default value. 

    Enter Server admin User ID [admin]

    Accept the default value. 

    Enter Admin User's Password (Password cannot be 
    less than 8 characters)

    For this example, enter admin123.

    Confirm Admin User's Password []

    Enter the same password again. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    Enter Server Admin ID [admin] 

    Accept the default value. 

    Enter Admin User's Password 
    (At least 8 characters long)

    For this example, enter admin123.

    Retype Password []

    Enter the same password again. 

    Enter Directory Manager DN 
    [cn=Directory Manager] 

    Accept the default value. 

    Enter Directory Manager's Password 
    (At least 8 characters long)

    For this example, enter 11111111.

    Retype Password []

    Enter the same password again. 

    Directory Server Root  

    Accept the default value. 

    Enter Server Identifier [DirectoryServer-3SP]

    Accept the default value. 

    Enter Server Port [390]

    Enter 1390.

    Enter a valid Suffix 

    Enter dc=siroe,dc=com.

    Enter Administration Domain 

    Accept the default value. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    This server's configuration can be stored in 
    this new directory server or in another 
    previously prepared configuration server.

    Enter 1 to choose “The new instance will be the configuration directory server.”

    This server can store its own user data 
    and group data, or it can access user data and 
    group data from another instance of directory 

    Enter 1 to store data in the new directory server.

    The new directory server can be populated 
    with sample or real data. 

    Enter 4 to choose “Populate with no data.”

    Do you wish to disable Schema Checking 
    when importing data?

    Enter n.

    Enter the Server Root 

    Accept the default value. 

    Enter the Administration Port [390]

    Enter 1391.

    Enter the Administration Domain 

    Accept the default value. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    Enter Administration ID for 
    Configuration Server 
    Administration ID[admin]

    Accept the default value. 

    Enter the admin Password []

    For this example, enter admin123.

    Enter the Configuration Directory Host 

    Accept the default value. 

    Enter the Configuration Directory Port [1390]

    Accept the default value. 

    Ready to Install.
    The following components will be installed:
    Directory Server Preparation Tool
    Directory Server 5
    Administration Server

    Enter 1 to install now.

  4. (Optional) During installation, you can monitor the log to watch for installation errors. Example:

    # cd /var/sadm/install/logs

    # tail —f Java_Enterprise_System_install.B xxxxxx

  5. Upon successful installation, enter ! to exit.

  6. Verify that Directory Server was successfully installed.

    1. As a root user, log in to Directory Server 3SP.

    2. Start the Directory Server.

      # cd /var/opt/mps/serverroot/slapd-DirectoryServer-3SP
      # ./stop-slapd; ./start-slapd
    3. Use the tail command to monitor the Directory Server error log and see that the server successfully starts up.

      # tail -50 logs/errors
    4. Use the netstat command to verify that the Directory Server port is open and listening.

      # netstat -an | grep 1390
      * 1390			*.*			0			0 49152			0 LISTEN
    5. Start the Administration Server that manages Directory Server.

       cd /var/opt/mps/serverroot 
      ./stop-admin; ./start-admin 

      Installation is successful if the Administration Server displays a start-up message.

    6. Use the netstat command to verify that the Administration Server port is open and listening.

      # netstat -an | grep 1391
      * 1391			*.*			0			0 49152			0 LISTEN

ProcedureTo Install Directory Server 4SP

  1. As a root user, log in to the Directory Server 4SP host.

  2. Start the installer with the nodisplay option. Example:

    # cd /mnt/Solaris_sparc
    # ./installer -nodisplay
  3. When prompted, provided the following information:

    Welcome to the Sun Java(TM) Enterprise System; 
    serious software made simple...
    <Press ENTER to Continue>

    Press Enter. 

    <Press ENTER to display the Software 
    License Agreement>

    Press Enter. 

    Have you read, and do you accept, all of
    the terms of the preceding Software License

    Enter y.

    Please enter a comma separated list of 
    languages you would like supported with this 

    Enter 8 to select “English only.”

    Enter a comma separated list of products
    to install, or press R to refresh the 

    Enter 6,20.

    Be sure you've specified Sun Java System Administration Server 5 2005Q4 and Sun Java System Directory Server 5 2005Q4. 

    Press "Enter" to Continue or Enter a comma 
    separatedlist of products to deselect.

    Press Enter. 

    Enter 1 to upgrade these shared components and 
    2 to cancel.

    If upgrades are required, enter 1 to upgrade shared components.

    Enter the name of the target 
    installation directory for each product:

    Accept the default value for each product. 

    System ready for installation...

    Enter 1 to continue.

    Select Type of Configuration

    Enter 1 to configure now.

    Enter Host Name [DirectoryServer-4SP]

    Accept the default value. 

    Enter DNS Domain Name []

    Accept the default value. 

    Enter IP Address []

    Accept the default value. 

    Enter Server admin User ID [admin]

    Accept the default value. 

    Enter Admin User's Password (Password cannot be 
    less than 8 characters)

    For this example, enter admin123.

    Confirm Admin User's Password []

    Enter the same password again. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    Enter Server Admin ID [admin] 

    Accept the default value. 

    Enter Admin User's Password 
    (At least 8 characters long)

    For this example, enter admin123.

    Retype Password []

    Enter the same password again. 

    Enter Directory Manager DN 
    [cn=Directory Manager] 

    Accept the default value. 

    Enter Directory Manager's Password 
    (At least 8 characters long)

    For this example, enter 11111111.

    Retype Password []

    Enter the same password again. 

    Directory Server Root  

    Accept the default value. 

    Enter Server Identifier [DirectoryServer-4SP]

    Accept the default value. 

    Enter Server Port [390]

    Enter 1390.

    Enter a valid Suffix 

    Enter dc=siroe,dc=com.

    Enter Administration Domain 

    Accept the default value. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    This server's configuration can be stored in 
    this new directory server or in another 
    previously prepared configuration server.

    Enter 1 to choose “The new instance will be the configuration directory server.”

    This server can store its own user data 
    and group data, or it can access user data and 
    group data from another instance of directory 

    Enter 1 to store data in the new directory server.

    The new directory server can be populated 
    with sample or real data. 

    Enter 4 to choose “Populate with no data.”

    Do you wish to disable Schema Checking 
    when importing data?

    Enter n.

    Enter the Server Root 

    Accept the default value. 

    Enter the Administration Port [390]

    Enter 1391

    Enter the Administration Domain 

    Accept the default value. 

    Enter System User [root]

    Accept the default value. 

    Enter System Group [root]

    Accept the default value. 

    Enter Administration ID for 
    Configuration Server 
    Administration ID[admin]

    Accept the default value. 

    Enter the admin Password []

    For this example, enter admin123.

    Enter the Configuration Directory Host 

    Accept the default value. 

    Enter the Configuration Directory Port [1390]

    Accept the default value. 

    Ready to Install.
    The following components will be installed:
    Directory Server Preparation Tool
    Directory Server 5
    Administration Server

    Enter 1 to install now.

  4. (Optional) During installation, you can monitor the log to watch for installation errors. Example:

    # cd /var/sadm/install/logs

    # tail —f Java_Enterprise_System_install.B xxxxxx

  5. Upon successful installation, enter ! to exit.

  6. Verify that Directory Server was successfully installed.

    1. As a root user, log in to Directory Server 4SP.

    2. Start the Directory Server.

      # cd /var/opt/mps/serverroot/slapd-DirectoryServer-4SP
      # ./stop-slapd; ./start-slapd
    3. Use the tail command to monitor the Directory Server error log and verify that the server successfully starts up.

      # tail -50 logs/errors
    4. Use the netstat command to verify that the Directory Server port is open and listening.

      # netstat -an | grep 1390
      * 1390			*.*			0			0 49152			0 LISTEN
    5. Start the Administration Server that manages Directory Server.

       cd /var/opt/mps/serverroot 
      ./stop-admin; ./start-admin 

      Installation is successful if the Administration Server displays a start-up message.

    6. Use the netstat command to verify that the Administration Server port is open and listening.

      # netstat -an | grep 1391
      * 1391			*.*			0			0 49152			0 LISTEN