C H A P T E R  5

Installing and Configuring the RFID Information Server (UNIX)

The RFID Information Server can be installed after your selected application server has been successfully installed and is running on the host machine. You also need an properly installed and licensed installation of a supported database.

The following sections are included in this chapter:


Requirements for Installing the RFID Information Server (UNIX)

Installing the RFID Information Server has the following prerequisites:

You can select the installer option to have the installer update the policy file during installation or you can perform this step manually after installing the RFID Information Server. See To Update the Application Server Policy File for the RFID Information Server (UNIX) to perform this step manually.

You can do this step either before or after you install the RFID Information Server. If you do it after installing the RFID Information Server, you will need to restart the application server before you can start the RFID Information Server.



Note - If you are using the Oracle 9i or 10g Database with the BEA WebLogic Server 8.1 SP4, you do not need to install the JDBC drivers manually. Typically, the necessary JDBC drivers are part of the BEA WebLogic Server 8.1 SP4 installation.



Installing the JDBC Drivers

The RFID Information Server is deployed to the selected application server. The application server communicates with the database through JDBC to handle additions, deletions and insertions of rows for the EPC tags identified. You need to install the necessary JDBC driver for your database and application server combination.


procedure icon  To Install the JDBC Driver for Use With the RFID Software (UNIX)

You must perform this procedure to use either the RFID Management Console or the RFID Information Server. You can perform this procedure either before or after installing either of those RFID modules. If you update the JDBC drivers after installing the RFID modules, you must restart the application server before starting either the RFID Information Server or the RFID Management Console.

1. Get the proper JDBC driver for your database.

Sun does not ship JDBC drivers as part of this release. These drivers can be obtained in the following ways:

For example, on UNIX systems, the default path for Oracle 10g might be /opt/oracle/product/10g/jdbc/lib/ojdbc14.jar

If you cannot find the JDBC driver in your Oracle installation, you can find it at http://www.oracle.com/technology/software/tech/java/sqlj_jdbc/index.html.

http://jdbc.postgresql.org

2. Copy the JDBC driver to the designated directory in the application server installation path as follows:

/opt/SUNWappserver/domains/domain1/lib/ext

Typically, the Oracle JDBC driver is already included in the BEA WebLogic Server 8.1 SP4 installation.

For PostgreSQL, copy the JDBC driver to the following directory, BEA-install-dir/server/lib.

/opt/SUNWappserver/domains/domain1/lib/ext

Typically, the Oracle JDBC driver is already included in the WebLogic installation.

For PostgreSQL, copy the JDBC driver to the following directory, BEA-install-dir/server/lib.

3. (For BEA WebLogic Server 8.1 SP4 using a PostgreSQL database): Add the location of the JDBC driver to the class path.

Copying the JDBC driver JAR file to the proper directory is not sufficient by itself. You must add the JAR file to your class path variable, which is set inside the WebLogic startup script. The name and location of this script file varies. Your database administrator will know this information.

For example, the script could be named startWebLogic.sh. Modify the class path declaration from: CLASSPATH = ${EXISTING_CLASSPATH} to CLASSPATH =BEA-install-dir/server/lib/postgres-jdbc.jar:${EXISTING_CLASSPATH} where the variable, BEA-install-dir, represents your BEA WebLogic Server 8.1 SP4 installation directory and the variable, postgres-jdbc.jar, represents the proper JDBC JAR file.

4. Restart your application server.


Installing the RFID Information Server (UNIX)

Use the following procedure to install the RFID Information Server on a supported Solaris OS or Linux platform.


procedure icon  To Install the RFID Information Server (UNIX)

1. Review and confirm the requirements for installation of the RFID Information Server.

See Requirements for Installing the RFID Information Server (UNIX).



Note - Confirm that your application server is running.



2. If you have not already done so, get the software.

See Getting the RFID Software and the RFID Documentation.

3. Enable access to the X server.


% xhost + machine-name

4. Become superuser (root).


%su root

5. Set the DISPLAY environment variable to display to your machine name. For example, using the csh shell, you would type:


% setenv DISPLAY [machine-name:]0.0

6. Start the RFID Information Server installation.

a. Change to the appropriate directory.

b. Start the installer.


#./setup

The Welcome panel appears.

7. From the Welcome panel, click Next and follow the instructions on the installer wizard panels.

Use the Typical installation option. There is no useful difference between typical and custom installation when installing the RFID Information Server.

8. On the Application Server Configuration panel, enter the configuration information for your application server installation.

It is important that this information be entered correctly, as the RFID Information Server cannot function correctly unless it is properly deployed to your application server.

The following screen captures show examples of the application server configuration fields for the Application Server Platform Edition and the BEA WebLogic Server 8.1 SP4.


FIGURE 5-1 Configuration Panel for Application Server Platform Edition

Screen capture showing sample Configuration panel for Application Server Platform Edition.



FIGURE 5-2 Configuration Panel for BEA WebLogic Server 8.1 SP4

Screen capture showing a sample Application Server Configuration panel for BEA WebLogic Server 8.1 SP4.


9. On the Deploy Database Tables panel, indicate whether you want the installer wizard to deploy the RFID database schema for you.

This option requires a locally installed database.


Screen capture showing a sampe Deploy Database Tables panel.

Screen capture showing a sampe Deploy Database Tables panel.

 

Caution - Data could be lost. When the installer performs this step for you, any previous RFID tables are dropped and all previous data is lost. Do not select this option of the installer unless you have backed up the existing database or you are deploying the database schema for the first time.



10. On the Database Selection panel, select your database and enter the configuration information when prompted.

The following screen capture shows a sample Database Configuration Panel for deploying sample data using an Oracle database.


Screen capture shows Database Configuration panel for deploying sample data using an Oracle database.


TABLE 5-1 Database Configuration Parameters

Database

Configuration Parameters[1]

Value or Description

Oracle

User Name

Password (and confirm Password)

 

 

 

DB Server

 

 

 

 

DB Port - database port number

 

Oracle SID

 

Additional fields appear if you are deploying the sample data.

 

 

 

 

Oracle HOME*

 

 

SQLPlus Path*

This is the user that is used to create the Oracle database tables. For example, epcis.

Password for the user - epcis

 

The name or IP address where the database is installed. Confirm this value as the installer defaults this value to the name of the machine where the installer is running.

 

Port number where you connect to the database. This defaults to 1521.

 

 

Contact your database administrator for information if you do not know the values of these fields.

 

 

The path to the location of your oracle database, oradata. For example: /opt/oracle

 

The path to the executable sqlplus. For example, /opt/oracle/product/10g/bin

 

PostgreSQL

User Name

Password (and confirm Password)

 

DB Server

DB Port

DB Name

 

PSQL Path*

 

DB Admin User*

This is the user name that is used to create the database tables.

 

Location of the database installation.

 

 

The location of the executable psql.

The user with administrator rights to the database.


11. When installation is complete, click Close.

You might need to perform additional steps before your RFID Information Server is ready to use. If you did not select the option to update your application server policy file during installation, you need to update the file manually.

See To Update the Application Server Policy File for the RFID Information Server (UNIX) or To Update the BEA WebLogic Server 8.1 SP4 Policy File as applicable for the application server that you are using.

12. (Sun Java System Application Server 8.1) Verify communication between your application server and your database installation.

See To Verify Database Communication Between the RFID Information Server and Sun Java System Application Server 8.1.

13. Define the valid users for your RFID Information Server.

See Defining Valid Users for RFID Information Server.

14. (Optional) Validate your RFID Information Server installation by viewing the EPCIS Index page in your browser window.

See To Validate the RFID Information Server Installation.


procedure icon  To Verify Database Communication Between the RFID Information Server and Sun Java System Application Server 8.1

1. Log in to the application server's Admin Console as the admin user.

The Admin Console URL is as follows:

http://hostname:4848

https://hostname:4849

2. Check the JDBC connection pool by choosing Resources right arrow JDBC right arrow Connection Pools right arrow jdbc-sun-pool.

On this page you see three buttons, Save, Load Defaults, Ping.

3. Click Ping.

The message "Ping succeeded" indicates that your database communication is working correctly. If you see an error, confirm that you have installed the JDBC driver correctly. See To Install the JDBC Driver for Use With the RFID Software (UNIX).


Configuring Your Application Server for RFID Information Server (UNIX)

To use the RFID Information Server, you must customize your application server. Review the following sections and perform the required procedures for your installation.


procedure icon  To Update the Application Server Policy File for the RFID Information Server (UNIX)

An option to perform this task has been added to the RFID Information Server installer. If you selected the option to have the installer update the server.policy file, you do not need to perform this procedure. If you did not select this installer option, follow this procedure using the file locations appropriate for your OS platform.

1. In a terminal window, change to the directory containing the RFID policy file and find the file named server.policy.

This file needs to replace the file of the same name that is located in the application server's configuration directory. The RFID policy file can be found in the following default locations.

2. Copy the server.policy file to your application server's configuration directory.

The path to this directory depends on your application server installation and the location might vary depending on the specific platform and version of the application server that you are using.

3. If you are performing this procedure after installing the RFID Information Server, restart your application server.


procedure icon  To Update the BEA WebLogic Server 8.1 SP4 Policy File

1. In a terminal window, change to the directory containing the RFID policy file and find the file named server.policy.

The default location of this file is as follows:

This file needs to replace the file weblogic.policy that is located in the BEA WebLogic Server 8.1 SP4 configuration directory.

2. Copy server.policy to the BEA WebLogic Server 8.1 SP4 configuration directory to a file named weblogic.policy.

The path to the configuration directory depends on your server installation and the location may vary depending on the specific platform and version that you are using.

The full default path to the policy file is: /usr/local/bea/weblogic81/server/lib/weblogic.policy.

3. (Optional) If you are performing this procedure manually after installing the RFID Management Console, you must restart the application server for the change to take effect.


Defining Valid Users for RFID Information Server

Authentication and authorization are central concepts of Sun Java Application Server security. RFID Information Server uses Application Server's built in security. Application Server enforces its authentication and authorization policies upon the following entities: Users, Groups, Roles and Realms.

Understanding Users, Groups, Roles, and Realms

Users - A user is an individual identity that has been defined in the Application Server. A user can be associated with a group. The RFID Information Server defines two users, guest and tester, in the deployment descriptor. The guest user is in the viewer group and the tester user is in the modifier group.

Groups - A group is a category of users classified by common traits, such as read/ write access to the information of RFID Information Server. Categorizing users into groups makes it easier to control access by large numbers of users. The RFID Information Server defines two groups, viewer and modifier, in the deployment descriptor. The viewer group has the readonly role and the modifier group has the readwrite role.

Roles - A role defines which applications and what parts of each application users can access and what they can do. In other words, roles determine a user's authorization level. To control the access permission of information, the RFID Information Server defines two security roles, readonly and readwrite, in the deployment descriptor. The readonly role has read-only permission and the readwrite role has read/write permission.

Realms - A realm, also called a security policy domain or security domain, is a scope over which the server defines and enforces a common security policy. In practical terms, a realm is a repository where the server stores user and group information. The Application Server is preconfigured with three realms: file (the initial default realm), certificate, and admin-realm. The RFID Information Server uses the file realm as the security domain.

Authenticating Users

Authentication is the way the RFID Information Server determines that an RFID Information Server user is valid. A user must provide security credentials (user name and password) to authenticate his/her identity to the RFID Information Server.

Typically, authentication means a user logging in to RFID Information Server using a web browser or a programmatic mechanism with a user name and password. If RFID Information Server verifies those credentials, the user is authenticated.

The user is associated with this authenticated security identity for the remainder of the session.

Authorizing Users

Once a user is authenticated, the level of authorization determines which operations the user can perform. A user's authorization level is based on their role. For instance, RFID Information Server defines the readonly and the readwrite roles.


procedure icon  To Define Users for the RFID Information Server Using Application Server 8.1

You can define a valid user for the RFID Information Server in two ways. You can either use the default user, tester, or define your own user names. Follow these steps and use the appropriate values as indicated by the examples in Step 6.

1. If necessary, review the background information in the section, Defining Valid Users for RFID Information Server.

2. Log in to your Application Server's Admin Console.

3. To configure users:

4. Click Manage Users ...

5. Click New ...

The Create File Realm User dialog box appears.


Screen capture showing the Application Server Create File Realm User dialog box. Fields are User ID, Password, Confirm Password, Group List. Buttons are OK and Cancel.

6. Type the values corresponding to the user that you are defining.

7. Click OK, then click Close.

8. Restart your application server to enable the changes.


procedure icon  To Define Users for the RFID Information Server Using BEA WebLogic Server 8.1 SP4

You can define a valid user for the RFID Information Server in two ways. You can either use the default user, tester, or define your own user names. Follow these steps and use the appropriate values as indicated by the examples in Step 6 in the previous procedure, To Define Users for the RFID Information Server Using Application Server 8.1.

1. If necessary, review the background information in the section, Defining Valid Users for RFID Information Server.

2. Log in to your BEA WebLogic Server 8.1 SP4 Admin Console.

For example, in your web browser type http://machinename:7001/console.

3. Choose mydomain right arrow Security right arrow Realms right arrow myrealm right arrow Users.

4. Click Configure a New User.

The Create User page appears.

5. Create the necessary users.

See the BEA WebLogic Server 8.1 SP4 documentation for more details.

6. Restart your application server to enable the changes.


Setting Up Database Tables for RFID Information Server (UNIX)

The database scripts can be used if you do not use the Deploy Database option of the installer and you want to set up the databases manually.

Two sets of scripts are provided: sql scripts to be used with the database SQL client and shell scripts that can be executed from the command line. It is outside the scope of this document to provide detailed database command-level procedures.

The database scripts are located in the directory /rfid-install-dir/lib/sql. For a default installation, the locations are the following:

The following table lists the Oracle scripts.


TABLE 5-2 Oracle-Related Scripts

Shell Script (UNIX systems)

Description

oracle_create_table

Executes the oracle_create_table.sql script to drop and create the tables

oracle_populate_table

Executes the oracle_populate.sql script to populate the database tables with sample data

oracle_create_user

Executes the example sql script, oracle_create_user.sql, to set up an Oracle user account and tablespace

oracle_rfidis_setup

Executes all .sql scripts


The scripts listed in TABLE 5-3 are provided for use with the supported PostgreSQL database.


TABLE 5-3 PostgreSQL-Related Scripts

Shell Script (UNIX systems)

Description

postgres_create_table

Executes the postgres_create_table.sql script to drop and create the tables

postgres_populate_table

Executes the postgres_populate.sql script to populate the database tables with sample data

postgres_create_user

Executes the postgres_create_user.sql example script for setting up a PostgreSQL user account and tablespace

postgres_rfidis_setup

Executes all .sql scripts



procedure icon  To Set Up the RFID Oracle Database Tables for the RFID Information Server

1. Copy the scripts to the directory on the machine where the database server is running.

2. Change to the directory where you copied the scripts.

3. Run the scripts that you need.

Refer to TABLE 5-2. You must run these scripts at the database admin user. If you want to create the tables and deploy sample data, use oracle_rfidis_setup.



Note - The SQL scripts use the database configuration information provided at installation time. The scripts populate the tables with sample data.




procedure icon  To Create the RFID PostgreSQL Database Tables

The PostgreSQL database must be installed to perform this procedure. The RFID software installer does not install the database software.

1. Copy the scripts to a directory on the machine where the database server is running.

2. Change to the directory where you copied the scripts.

3. Run the scripts that you need.

Refer to TABLE 5-3. You must run these scripts at the database admin user. If you want to create the tables and deploy sample data, use the postgres_rfidis_setup script.



Note - The SQL scripts use the database configuration information provided at installation time. The scripts populate the tables with sample data.



4. Confirm that your PostgreSQL server is configured to enable incoming TCP/IP connections. This is not the default setting.

This is necessary even when the database server is running on the same host as your application server. See the PostgreSQL server administration documentation for further information.


Verifying the RFID Information Server Installation

When the RFID Information Server installation has been successfully completed, you can validate the installation by viewing the EPCIS Index page in your browser window.


procedure icon  To Validate the RFID Information Server Installation

1. Navigate to the following URL: http://hostname:port/epcis. For example, http://myhost:8080/epcis.

The variable, hostname, specifies your application server's location. The variable, port, is the port number of the Application Server HTTP port that was configured during Application Server installation. The RFID Information Server Index page appears in your browser window as shown in the following screen capture.


Screen capture of the RFID Information Server Index page. [ D ]

2. When prompted, enter your RFID Information Server user name and password.

See To Define Users for the RFID Information Server Using Application Server 8.1 or To Define Users for the RFID Information Server Using BEA WebLogic Server 8.1 SP4 for more information on setting up RFID Information Server users.



Tip - To view the EPCIS Reporting Framework on headless systems. If your RFID Information Server is installed on a server that is headless and not running a local X-display, you need to set the jvm option, -Djava.awt.headless=true. Use one of the following procedures as applicable to your application server.




procedure icon  To Set the JVM Options for Sun Java System Application Server 8.1 Enterprise Edition

1. From your Application Server Enterprise Edition Admin Console, choose Configurations right arrow server-config right arrow JVM settings.

The JVM Settings page appears.

2. Choose JVM Options right arrow Add JVM Option.

3. Type -Djava.awt.headless=true and save the new option.

4. Restart your Application Server Enterprise Edition instance.


procedure icon  To Set the JVM Options for Sun Java System Application Server 8.1 Platform Edition

1. From your Application Server Enterprise Edition Admin Console, select Application Server in the left pane.

A page appears showing several tabs across the top.

2. Select the JVM Settings tab.

The JVM Settings page appears.

3. Click JVM Options.

The JVM Options page appears.

4. Click Add JVM Option.

5. In the Value field, type the option -Djava.awt.headless=true.

6. Click Save.

7. Restart your Application Server Platform Edition instance.


procedure icon  To View the EPCIS Reporting Framework Using BEA WebLogic Server 8.1 SP4

1. You need to modify startWLS.sh and include the following line for the JVM parameters:


"${JAVA_HOME}/bin/java" ${JAVA_VM} ${MEM_ARGS} ${JAVA_OPTIONS} -classpath "${CLASSPATH}" -Dweblogic.Name=${SERVER_NAME} -Dweblogic.management.username=${WLS_USER} -Dweblogic.management.password=${WLS_PW} -Dweblogic.management.server=${ADMIN_URL} -Dweblogic.ProductionModeEnabled=${PRODUCTION_MODE} -Djava.awt.headless=true -Djava.security.policy="BEA-install-dir/server/lib/weblogic.policy" weblogic.Server

2. Restart the application server to pick-up these changes.


1 (TableFootnote) In this table, an asterisk indicates parameters that are required only when you are deploying the database schema during installation.