This chapter explains how to install Portal Server 7.1 on Sun Java System Web Server and Sun Java System Application Server on different scenarios, such as SSL installation and non-root installation. This chapter also explains how to install Portal Server on IBM WebSphere and BEA WebLogic. This chapter includes the following sections:
This section contains the following Portal Server 7.1 installation procedures on Web Server 7.0:
Default installation
SSL installation and post installation
Configuring Portal Server 7.1 on 64–bit Web Server 7.0 instance
Installing Portal Server 7.1 as a non-root user
Portal Server can be installed on Sun Java System Web Server using the Java ES installer. Sun Java System Web Server can be selected as component to install. Later you can select Sun Java System Web Server as the web container to install Portal Server using the Java ES installer.
For more information on the default installation procedure, see Chapter 1, Installing Sun Java System Portal Server 7.1.
The secure socket layer (SSL) mode enables a user to access Portal Server using the https protocol. The https protocol ensures secured communication between the user and Portal Server. In this scenario, you need to create a secured Web Server instance. After creating a secured Web Server instance, you direct the Portal Server web container to the secured Web Server instance.
This section describes following procedures:
Create a new configuration instance
Create a request certificate
Generate a server certificate
Add the Server Certificate to the Certificate Database
Add root ca to the Certificate Database
Enable SSL on the Listener
Install Web Server 7.0 on Node 1.
Log in to the Web Server 7.0 administrator console.
https://node1.domain-name:8989
Select New Configuration under the Configuration Tasks option.
Type the following values:
Configuration name: node1
Server name: node1.domain-name
Hosts: node1.domain-name
Server user: root
Port: 8200
Move the node from the Available list box to the Selected list box.
Click Finish.
Start the server configuration and access it.
http://node1.domain-name:8200
Run the following command.
WebServer_base/SUNWwbsvr7/bin/wadm create-cert-request --user=admin --host=node1.domain-name --port=8989 --echo=true --rcfile=rcfile --config=node1 --token=internal --server-name=node1.domain-name --org=org --locality=locality --state=state --country=country |
Type the token values.
Pin: password
Administrator user password: password
The request certificate is created.
Send the request certificate to the Certificate Authority for approval.
Add the Server Certificate, servercert, to the certificate database.
WebServer_base/SUNWwbsvr7/bin/wadm install-cert --user=admin --password-file=password --host=node1.domain-name --port=8989 --ssl=true --rcfile=rcfile1 --echo=true --token=internal --config=node1 --cert-type=server --file-on-server=true --nickname=servercert WebServer_base/SUNWwbsvr7/bin/servercert |
Type the token values.
Pin: password
Administrator user password: password
Add the root ca certificate to the database.
WebServer_base/SUNWwbsvr7/bin/wadm install-cert --user=admin --password-file=ps --host=node1.domain-name --port=8989 --ssl=true --rcfile=rcfile1 --echo=true --token=internal --config=node1 --cert-type=ca --file-on-server=true --nickname=rootca root-CA-file-path |
Type the token values.
Pin: password
Administrator user password: password
Restart the server configuration.
Access the Web Server 7.0 administrator console.
https://node1.domain-name:8989
Select New Configuration on the Tasks page.
Select Edit Configuration.
Select Virtual Servers.
Select http-listener1.
Click the Security tab.
Select Security option.
Click Apply and Close.
Click the Deploy button.
Restart the servers.
WebServer_base/SUNWwbsvr7/bin/stopserv WebServer_base/SUNWwbsvr7/bin/startserv |
Verify the SSL instance by accessing the following URL.
https://node1.domain-name:8200
Portal Server 7.1 supports 64–bit Web Server 7.0 on the following platforms:
Solaris 10 SPARC
Solaris 9 SPARC
Solaris 10 amd64 (Opteron based systems)
While you install Portal Server using the Java ES installer, it is installed in the 32–bit mode. If you need to install Portal Server in 64–bit mode, you need to install it in two sessions:
In the first session, you need to install the components, such as Web Server 7.0, Directory Server, and Access Manager.
In the second session, you need to install Portal Server and configure it to support 64–bit mode.
Install Web Server 7.0, Directory Server, and Access Manager using the Java ES installer.
Start the Directory Server instance.
Ensure that the Web Server 7.0 administrator server is running.
https://node1.domain-name:8989
Ensure that the Web Server instance is running.
http://node1.domain-name:80
Configure Web Server to support 64–bit mode.
WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile -config=host_name platform=64 WebServer_base/bin/wadm set-thread-pool-prop -user=admin --port=8989 --password-file=passfile -config=host_name stack-size=261144 WebServer_base/bin/wadm deploy-config -user=admin --password-file=passfile -port=8989 --restart=true host_name |
Ensure that the web container instance and administrator server are running.
https://node1.domain-name:8989
http://node1.domain-name:80
Install Portal Server 7.1 in the Configure Now mode using the Java ES installer.
If you have installed Portal Server in 64–bit mode, you can use the following procedure to convert Portal Server to support 32–bit mode. After configuring Portal Server to support 32–bit mode, you need to manually configure the search server.
Start the Directory Server instance.
Ensure that the Web Server administrator server is running.
Ensure that Web Server instance is running.
Configure Web Server to support 32–bit mode.
WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile --config=host_name platform=32 WebServer_base/bin/wadm set-jvm-prop --user=admin --port=8989 --password-file=passfile --config=host_name ative-library-path-prefix="/PortalServer_base/SUNWportal/lib |
Remove all compiled JSPs for the Portal desktop.
rm -rf /var/opt/SUNWportal/portals/PORTAL_ID/desktop/compiled/_jsps/*
WebServer_base/bin/wadm deploy-config --user=admin --password-file= passfile --port=8989 --restart=true host_name |
Stop and start the Web Server instance.
Go to the Search Server directory.
cd /var/opt/SUNWportal/searchservers/searchserver_name/db
Remove the unwanted files.
rm -rf _*
Edit the search.conf file.
vi /var/opt/SUNWportal/searchservers/search1/config/search.conf
Set the search-platform property to 32.
Stop and start the Web Server instance.
If you have installed Portal Server in 32–bit mode, then you can use the following procedure to convert Portal Server to support 64–bit mode. After configuring Portal Server to support 64–bit mode, you need to manually configure the search server.
Start the Directory Server instance.
Ensure that the Web Server 7.0 administrator server is running.
Ensure that Web Server instance is running.
WebServer_base/SUNWwbsvr7/bin/wadm set-config-prop --user=admin --port=8989 --password-file=passfile --config=host_name platform=64 WebServer_base/SUNWwbsvr7/bin/wadm set-thread-pool-prop --user=admin --port=8989 --password-file=passfile --config=host_name stack-size=261144 WebServer_base/SUNWwbsvr7/bin/wadm set-jvm-prop --user=admin --port=8989 --password-file=passfile --config= host_name native-library-path-prefix= "/PortalServer_base/SUNWportal/lib/sparcv9" (amd64 for x86) WebServer_base/SUNWwbsvr7/bin/wadm delete-jvm-options --user=admin --port=8989 --password-file=passfile --config= host_name "-Xms512M -Xmx768M -Xss128k" WebServer_base/SUNWwbsvr7/bin/wadm create-jvm-options --user=admin --port=8989 --password-file=passfile --config= host_name "-Xms512M -Xmx768M -Xss512k" |
Remove all compiled JSPs for the Portal desktop.
rm -rf /var/PortalServer_base/SUNWportal/portals/PORTAL_ID/desktop/compiled/_jsps/* |
WebServer_base/SUNWwbsvr7/bin/wadm deploy-config --user=admin --password-file= passfile --port=8989 --restart=true host_name |
Go to the Search Server directory and delete the unwanted files.
cd /var/SUNWportal/searchservers/searchserver_name/db rm -rf _* |
Edit the search.conf file.
vi /var/opt/SUNWportal/searchservers/search1/config/search.conf
Set the search-platform property to 64.
Stop and start the Web Server instance.
If you do not have administrator privileges for the machine where you install Portal Server, use the following procedure to install Portal Server.
Install the Directory Server using the Java ES installer.
During installation, provide the username and group information whenever prompted.
As the non-root user, start Directory Server and verify whether it is running.
ps -aef | grep slapd
Install web container as the non-root user using the Java ES installer.
Install Access Manager.
For more information on installation steps, see the Technical Note: Installing Access Manager to Run as a Non-Root User.
Install Portal Server in the Configure Later mode.
During installation, provide the non-root user information whenever prompted.
Change the ownership and access rights of SUNWportal to the User ID and Group of the non-root user.
chown -R Userid:Group /PortalServer_base/SUNWportal chown -R Userid:Group /etc/SUNWportal chown -R Userid:Group /var/SUNWportal chmod -R 755 /PortalServer_base/SUNWportal chmod -R 755 /etc/SUNWportal chmod -R 755 /var/SUNWportal |
Restart the web container.
Create a web container instance as a non-root user.
Telnet as a non-root user and run the psadmin create-instance command.
Telnet as the root user and run the chown -R psuser:portal /var/opt/SUNWportal/portals/myPortal/ command.
Telnet as a non-root user and restart the web container instance.
Create a Web Server instance using the Web Server 7.0 administration console as a non—root user.
Create a search server.
Log in as a root user into the machine and change the search server instance.
chown -R nonrootuser.nonroot /var/opt/SUNWportal/searchservers/search-server-id
For the Linux platform, use the following command: chown -R nonrootuser.nonroot /var/opt/sun/portal/searchservers/search-server-id.
Change permissions of the search instance.
chmod -R og+rX /var/opt/SUNWportal/searchservers/search-server-id
For the Linux platform, use the following command: chmod -R og+rX /var/opt/sun/portal/searchservers/search-server-id
Restart Web Server as the non-root user.
This section explains how to install Portal Server as Application Server 8.2 as the web container.
You can install Portal Server with Application Server as the web container. You need to select Application Server as a component to install in the Java ES installer, and later select Application Server as the web container for Portal Server. For more information on default installation, see the “To Install the Portal Server Software” in Chapter 1, Installing Sun Java System Portal Server 7.1.
You can install Portal Server in SSL mode which ensures a secure communication. You need to create a SSL-enabled instance of Application Server. You can install Portal Server using the Java ES installer, and point to the instance of the Application Server as the web container.
Install Application Server and Directory Server using the Java ES installer.
Add valid certificates to the Application Server.
The certificate database is available in the /var/SUNWappserver/domains/domain1/config directory. The database files are key3.db and cert8.db.
Change to the config directory.
cd /var/SUNWappserver/domains/domain1/config
Create a password file, password, and specify the password.
Create a certificate signing request.
certutil -R -s "CN=node1.domain-name,OU=People,O=Portal, L=location,ST=state,C=country" -o certreq.pem -g 512 -d /var/SUNWappserver/domains/domain1/config -f password -a |
This command creates a certificate request in the certreq.pem file. The certutil utility is located in the /usr/sfw/bin directory.
Send this certificate request to a Certificate Management Server (CMS) for approval.
After the certificate is approved, paste the contents of the approved certificate in a flat file on the Application Server machine. For example, the servercert.pem file.
Add this certificate to the database.
Change to the config directory of the Application Server.
cd /var/ApplicationServer_base/SUNWappserver/domains/domain1/config
The servercert.pem file is also in the config directory.
Run the command:
certutil -A -n servercert -t "u,u,u" -d ApplicationServer_base/SUNWappserver/domains/domain1/config -a -i servercert.pem -f password
Add root ca to the database.
certutil -A -n rootca -t "TCu,TCu,TCuw" -d ApplicationServer_base/SUNWappserver/domains/domain1/config -a -i path_to_root_ca -f password
Log in to administrator console of the Application Server.
https://host.domain-name:4849
Select Configuration -> server-config -> HTTP Service -> HTTP Listeners -> http-listener-2.
Perform the following tasks:
Verify whether the security is enabled.
Verify whether the certificate nickname is servercert.
Enable SSL3.
Enable Transport Layer Security (TLS).
Select the All Cipher suites checkbox.
Restart the Application Server.
Because the Application Server is SSL enabled, you start the Java ES installer, Portal Server will not communicate with Application Server. You need to install root ca in the Java Development Kit (JDK) keystore of the hostname.
Install root ca in the JDK keystore of the hostname.
cd /usr/jdk/entsys-j2se/jre/lib/security /usr/jdk/entsys-j2se/jre/bin/keytool -keystore cacerts -keyalg RSA -import -trustcacerts -alias hostname -storepass store-password -file root-ca-CA |
Invoke the Java ES installer and select Access Manager and Portal Server.
Specify valid protocol and port values wherever prompted.
If you install Portal Server on Application Server using the Java ES installer, Portal Server is installed on a default instance of the Application Server on port 8080. This procedure describes to create a non-default Application Server instance and install Portal Server on it.
Run the Java ES installer to install Directory Server and Application Server.
Start Directory Server and Application Server.
Create a node agent, nodeagent.
ApplicationServer_base/SUNWappserver/bin/asadmin start-node-agent --user admin --password password --savemasterpassword=true nodeagent
Start the node agent.
ApplicationServer_base/SUNWappserver/bin/asadmin start-node-agent --user admin --password password nodeagent
Create the server instance server-instance on port 38080.
ApplicationServer_base/SUNWappserver/bin/asadmin create-instance --user admin --password password --node agent=nodeagent --port=38080 server-instance
Start the server instance.
ApplicationServer_base/SUNWappserver/bin/asadmin start-instance --user admin --password password server-instance
Start the Java ES installer and install Access Manager and Portal Server in the Configure Later mode.
Modify the amsamplesilent file and configure Access Manager.
On Solaris platform, the amsamplesilent file is located at the AccessManager_base/SUNWam/bin directory. In Linux, the file is located at the AccessManager_base/SUN/identity/bin directory.
Run the amconfig command.
See Appendix for more details on the amconfig file.
Restart the server instance.
Access the administrator console of the Access Manager.
http://host.domain-name:38080/amconsole
Modify the example14.xml file.
See Appendix for more details on the example14.xml file.
Configure the common agent container.
PortalServer_base/SUNWportal/bin/psconfig --config example14.xml
Restart Directory Server, Access Manager, Application Server, and Portal Server.
If you have already installed Directory Server, Access Manager, Web Server, and Portal Server on Application Server 8.2, use this procedure to convert Portal Server installation to the secure mode. In the Secure mode, the communication between the user and Portal Server is through the https protocol.
Install Directory Server, Access Manager, Web Server, Portal Server, and Application Server 8.2.
Create a password file password and specify the password that has been provided for Application Server.
Create a certificate signing request.
certutil -R -s "CN=HOSTNAME.domain-name,OU=People,O=Portal,L=Location,ST=State,C=Country" -o certreq.pem -g 512 -d /var/opt/SUNWappserver/domains/domain1/config -f password -a
This command creates a certificate request in the certreq.pem file. The certutil file is present in the /usr/sfw/bin directory.
Send the certificate signing request to the CMS.
Paste the contents of the approved certificate in an empty file on the Application Server machine.
For example, the file name is servercert.pem.
Add this certificate in the database.
Add the CMS root ca to the database.
certutil -A -n rootca -t "TCu,TCu,TCuw" -d /var/opt/SUNWappserver/domains/domain1/config -a -i path-to-cert -f password
Log in to the administrator console of Application Server.
https://hostname.domain-name:4849
Click Configurations -> server-config -> HTTP Service -> HTTP Listeners -> http-listener-2.
Perform the following tasks:
Verify whether the security is enabled.
Verify whether the certificate nickname is servercert.
Enable SSL3.
Enable TLS.
Select Cipher Suites option.
Restart the Application Server.
Log in to the Access Manager administrator console.
http://host.domain-name:8080/amconsole
Open the AMConfig.properties file.
The AMConfig.properties file is located in the AccessManager_base/SUNWam/lib directory.
Change com.iplanet.am.server.protocol to https. Add com.sun.identity.liberty.authnsvc.url= https://host.domain-name:8181/amserver/Liberty/authnsvc.
com.iplanet.am.server.protocol=https com.iplanet.am.server.host=host.domain-name com.iplanet.am.server.port=8181 com.iplanet.am.console.protocol=https com.iplanet.am.console.host=host.domain-name com.iplanet.am.console.port=8181 com.iplanet.am.profile.host=host.domain-name com.iplanet.am.profile.port=8181 com.iplanet.am.naming.url=https://host.domain-name:8181 /amserver/namingservice com.iplanet.am.notification.url=https://host.domain-name:8181 /amserver/notificationservice com.sun.identity.liberty.interaction.wspRedirectHandler= https://host.domain-name:8181/amserver/WSPRedirectHandler com.sun.identity.loginurl=https://host.domain-name:8181 /amserver/UI/Login com.sun.identity.liberty.authnsvc.url= https://host.domain-name:8181/amserver/Liberty/authnsvc |
Restart Directory Server, Access Manager, Application Server, and Portal Server.
If you want to install Portal Server on BEA WebLogic, you need to install the components in different session.
Install Directory Server and Application Server or Web Server using the Java ES Installer in the Configure Now mode.
Install Access Manager using the Java ES installer in the Configure Later mode.
Install Portal Server using the Java ES installer in the Configure Now or Configure Later mode
Portal Server administration console does not work with WebLogic.
Install BEA WebLogic 8.1.
Create the WebLogic domain and start the administrator server.
/usr/local/bea/user_projects/domains/domain1/startWebLogic.sh
Access the administrator server of BEA WebLogic.
http://host.domain-name:7001
Install Directory Server, Java DB 10. 2 and Web Server using the Java ES installer in the Configure Now mode.
Start Directory Server instance.
Install Access Manager in the Configure Later mode using the Java ES installer.
Customize the amsamplesilent file.
The amsamplesilent file is located in the following directories:
Solaris: /AccessManager_base/SUNWam/bin
Linux: /AccessManager_base/sun/identity/bin
Set the values in the amasamplesilent file as follows:
DEPLOY_LEVEL = 1
SERVER_NAME =AM_HOSTNAME without FQDN
SERVER_HOST = $SERVER_NAME.domain-name
SERVER_PORT = 7001
ADMIN_PORT = 7001
DS_HOST =DS_HOSTNAME with FQDN
DS_DIRMGRPASSWD = Directory Manager Password
ROOT_SUFFIX = root suffix of Access Manager
ADMINPASSWD = AM_PASSWORD
AMLDAPUSERPASSWD = LDAP_PASSWORD
COOKIE_DOMAIN =.domain-name
AM_ENC_PWD =any string of 12 characters
NEW_OWNER = root
NEW_GROUP = other (root for the Solaris 10 release and linux and other for the Solaris 9 release)
PAM_SERVICE_NAME = other
WEB_CONTAINER = WL8
BASEDIR =Access Manager install directory
AM_REALM = disabled
WL8_HOME =WebLogic Install Directory., for example, /usr/local/bea.
WL8_PROJECT_DIR = user_projects
WL8_DOMAIN = Domain name., for example, mydomain)
WL8_CONFIG_LOCATION = $WL8_HOME/$WL8_PROJECT_DIR/domains
WL8_SERVER =Instance name. For example, myserver
WL8_PROTOCOL = $SERVER_PROTOCOL
WL8_HOST = $SERVER_HOST
WL8_PORT = $SERVER_PORT
WL8_SSLPORT = $ADMIN_PORT
WL8_ADMIN =Administrator name of WebLogic. For example, weblogic.
WL8_PASSWORD =WebLogic administrator password.
WL8_JDK_HOME = $WL8_HOME/jdk142_05 for 8.1 sp4 or $WL8_HOME/jdk/142_08 for 8.1sp5
Run the AccessManager_base/bin/amconfig -s amsamplesilent script.
The amsamplesilent file is located in the following directories:
Solaris: /AccessManager_base/SUNWam/bin
Linux: /AccessManager_base/sun/identity/bin
Edit the startweblogic.sh and startManagedweblogic.sh scripts and add the following to the classpath: /opt/SUNWjavadb/lib/derbyclient.jar.
For Linux, the derbyclient.jar file is located at the /opt/sun/javadb/lib directory.
In the startweblogic.sh and startManagedweblogic.sh scripts, remove the following classpaths: AccessManager_base/SUNWam/lib/jaxrpc_1.0/jaxrpc-api.jar and AccessManager_base/SUNWam/lib/jaxrpc_1.0/jarpc-ri.jar.
In the startweblogic.sh and startManagedweblogic.sh scripts, add the following classpaths: AccessManager_base/SUNWam/lib/jaxrpc-api.jar, AccessManager_base/SUNWam/lib/jaxrpc-impl.jar, and AccessManager_base/SUNWam/lib/jaxrpc-spi.jar.
(Optional) For Linux, remove the following classpaths: AccessManager_base/identity/lib/jaxrpc_1.0/jaxrpc-api.jar and AccessManager_base/identity/lib/jaxrpc_1.0/jarpc-ri.jar from the startweblogic.sh and startManagedweblogic.sh scripts.
For Linux, add the following classpaths: AccessManager_base/identity/lib/jaxrpc-api.jar, AccessManager_base/identity/lib/jaxrpc-impl.jar, and AccessManager_base/identity/lib/jaxrpc-spi.jar
Restart WebLogic and access the following URL.
http://host.domain-name:7001/amconsole
Install Portal Server in the Configure Now mode using the Java ES installer.
Choose WebLogic as the web container for Portal Server.
In the Portal Server web container panel, ensure that the Managed Server option is not selected. Also, ensure that both the administrator and server ports are 7001.
Restart WebLogic server after the successful installation of Portal Server.
Access the WebLogic administrator console.
http://hostname.domain-name:7001/console
Deploy the portal web applications.
Deploy the portal.war, communityportlets.war, search.war, and the remaining web applications.
Restart the WebLogic server.
Install Portal Server in the Configure Later mode using the Java ES installer.
Complete the Portal Server installation.
Change the example files based on the requirements.
You can use the example15.xml file to configure Portal Server and search server on WebLogic. In the example15.xml file, make sure both the Port and web container administrator port are set to 7001 and web container managed server is set to false.
Configure the common agent container.
PortalServer_base/bin/psconfig --config example15.xml
The psconfig utility is located in the PortalServer_base/SUNWportal/bin directory on the Solaris platform. For Linux, it is in the /PortalServer_base/sunportal/bin directory.
The example files are located in the PortalServer_base/samples/psconfig directory for the Solaris platform and PortalServer_base/samples/psconfig directory for Linux.
Access the WebLogic administrator console.
http://hostname.domain-name:7001/console
Deploy the portal web applications.
Deploy portal.war, communityportlets.war, search.war, and the remaining web applications.
Restart the WebLogic server.
You can create a managed server in WebLogic and use the managed server as the web container of Portal Server. You can install Access Manager on a managed server or administrator server of WebLogic.
To install Portal Server on a managed server of WebLogic, you need to:
Create a managed server.
Install Portal Server on the managed server in the Configure Now or Configure Later mode.
Install Access Manager on the administrator server of WebLogic 8.1.
Start the WebLogic administrator server.
Add the IP address of the machine, which has the administrator server of the domain in the BEAWebLogic_base/weblogic81/common/nodemanager/nodemanager.hosts file.
By default, the nodemanager.hosts file is located at the WebLogic_base/usr/local/bea directory.
Start the WebLogic node manager with the IP address of the host as the first argument and the port number on which you want the node manager to run as the second argument.
For example, WebLogic_base/weblogic81/server/bin/startNodeManager.sh 192.192.10.12 7878
Log in to the WebLogic administrator console.
Select Machines.
Select Configure a New Machine.
Type a machine name and click Create.
Select the Node Manager tab.
Specify the IP address of the host in the listen address and specify the port on which the Node Manager is running.
Select Servers in the left pane to create a new managed server.
Select Configure a New Server.
Specify the server name and machine name and specify the listen port of the managed server.
Start the managed server from the WebLogic administration console.
Install Access Manager in the WebLogic administrator server.
Install Directory Server.
Install Portal Server in the Configure Now mode using the Java ES installer.
Select the WebLogic container in the WebLogic container panel.
Specify the administrator port as 7001 and the server port as the port of the managed server instance.
Select Managed Server option.
Restart WebLogic server after the successful installation of Portal Server.
Install Access Manager in the WebLogic administrator server.
Install Directory Server.
Install Portal Server in the Configure Later mode using the Java ES installer.
Complete the Portal Server installation.
Change the example files depending on your requirements.
For WebLogic, you can use the example15.xml file to configure Portal Server and Search Server. In the example15.xml file, ensure that the Port is set to port of the managed server, web container administrator port is set to 7001, and web container managed server is set to true.
Configure the common agent container.
PortalServer_base/bin/psconfig --config example15.xml
The psconfig utility is located in the PortalServer_base/bin directory. It is located in the PortalServer_base/SUNWportal directory. For Linux, this utility is located in the PortalServer_base/sun/portal directory. It is located in the PortalServer_base/samples/psconfig directory for Solaris. It is located in the PortalServer_base/samples/psconfig directory for Linux.
For more information on the appropriate sample, see the PortalServer_base/samples/psconfig/README.txt file.
Restart WebLogic server after the successful installation of Portal Server.
In this section, you install Access Manager on a managed server of BEA WebLogic.
Install BEA WebLogic 8.1 using the installer.
Create WebLogic domain and start administrator server.
/usr/local/bea/user_projects/domains/domain1/startWebLogic.sh
Access the administrator server of BEA WebLogic.
http://host.domain-name:7001
Create a managed server.
Start the Java ES installer. Install Directory Server, Java DB 10. 2 and Web Server in the Configure Now mode.
Start the Directory Server instance.
Install Access Manager in the Configure Later mode.
Customize the amsamplesilent file.
The amsamplesilent file is located in the following directories:
Solaris platform: /AccessManager_base/SUNWam
Linux platform: /AccessManager_base/sun/identity
Set the values in the amasamplesilent file as follows:
DEPLOY_LEVEL = 1
SERVER_NAME =AM_HOSTNAME without FQDN
SERVER_HOST = $SERVER_NAME.domain-name
SERVER_PORT =MANAGED_SERVER_INSTANCE_PORT
ADMIN_PORT = 7001
DS_HOST =DS_HOSTNAME with FQDN
DS_DIRMGRPASSWD =Directory Manager Password
ROOT_SUFFIX = root suffix of Access Manager
ADMINPASSWD =AM_PASSWORD
AMLDAPUSERPASSWD =LDAP_PASSWORD
COOKIE_DOMAIN = .domain-name
AM_ENC_PWD =any string of 12 characters
NEW_OWNER = root
NEW_GROUP = other (root for the Solaris 10 release and Linux and other for the Solaris 9 release)
PAM_SERVICE_NAME = other
WEB_CONTAINER = WL8
BASEDIR = Access Manager install directory., for example, /opt
AM_REALM = disabled
WL8_HOME =WebLogic install directory., for example, /usr/local/bea)
WL8_PROJECT_DIR = user_projects
WL8_DOMAIN = Domain name., for example, mydomain
WL8_CONFIG_LOCATION = $WL8_HOME/$WL8_PROJECT_DIR/domains
WL8_SERVER = Instance name., for example, myserver
WL8_PROTOCOL = $SERVER_PROTOCOL
WL8_HOST = $SERVER_HOST
WL8_PORT = $SERVER_PORT
WL8_SSLPORT = $ADMIN_PORT
WL8_ADMIN = Administrator name of WebLogic., for example, weblogic
WL8_PASSWORD = WebLogic administrator password
WL8_JDK_HOME = $WL8_HOME/jdk142_05 for WebLogic 8.1 service pack 4 or $WL8_HOME/jdk/142_08 for WebLogic 8.1 service pack 5
Run the following command.
AccessManager_base/bin/amconfig -s amsamplesilent
Log in to the WebLogic administrator console.
Deploy the Access Manager war files, such as amserver.war, ampassword.war, amconsole.war, and amcommon.war available in the AccessManager_base directory.
In the scripts, remove the following classpaths: AccessManager_base/SUNWam/lib/jaxrpc_1.0/jaxrpc-api.jar and AccessManager_base/SUNWam/lib/jaxrpc_1.0/jarpc-ri.jar.
In the scripts, add the following classpaths: AccessManager_base/SUNWam/lib/jaxrpc-api.jar, AccessManager_base/SUNWam/lib/jaxrpc-impl.jar, and AccessManager_base/SUNWam/lib/jaxrpc-spi.jar.
(Optional) For Linux, remove the following classpaths: AccessManager_base/identity/lib/jaxrpc_1.0/jaxrpc-api.jar and AccessManager_base/identity/lib/jaxrpc_1.0/jarpc-ri.jar from the startweblogic.sh and startManagedweblogic.sh scripts.
(Optional) Add the following classpaths: AccessManager_base/identity/lib/jaxrpc-api.jar, AccessManager_base/identity/lib/jaxrpc-impl.jar, and AccessManager_base/identity/lib/jaxrpc-spi.jar
Restart WebLogic server and access the administrator console.
http://host.domain-name:managed-server-port/amconsole
Create a managed server.
Install Access Manager on the managed server.
Set -Dcom.iplanet.am.serverMode=false in the startManagedWebLogic.sh script if the managed server instance Portal Server is different from the managed server instance of Access Manager. Otherwise, set -Dcom.iplanet.am.serverMode=true.
Run the /usr/local/bea/domains/mydomain/startManagedWeblogic.sh script.
Start the Java ES installer and install Portal Server in the Configure Now mode.
Choose WebLogic container in the WebLogic container panel.
Specify the administrator port as 7001 and the server port as the port of the managed server instance.
Select Managed Server option.
Restart WebLogic server after the installation of Portal Server.
Create a managed server.
Install Access Manager on the managed server.
Install Portal Server in the Configure Later mode using the Java ES installer.
Change the example files based on your requirements.
For WebLogic, you can use the example15.xml file to configure Portal Server and search server. In the example15.xml file, ensure that the Port is set to the port of the managed server, the web container administrator port is set to 7001, and the web container managed server is set to true.
Configure the common agent container.
PortalServer_base/bin/psconfig --config example15.xml
For more information on the required sample, see the PortalServer_base/samples/psconfig/README.txt file.
Restart WebLogic server after the successful installation of Portal Server.
The psconsole of Portal Server can be installed only on Web Server or Application server. If you install Portal Server on any of the compatible web containers, such as BEA WebLogic or IBM WebSphere, you need to install psconsole on Web Server or Application Server.
Start the Web Server 7.0 administrator server and instance.
WebServer_base/admin-server/bin/startserver WebServer_base/https-host.domain-name:80/bin/startserv |
Deploy the PortalServer_base/SUNWportal/admin/psconsole.war file on the Web Server 7.0 using the administrator console.
Access psconsole.
http://host.domain-name:80/psconsole
This section includes procedures to install Portal Server on WebSphere 5.1.1.6 in the following scenarios:
Installing Portal Server on IBM WebSphere 5.1.1.6 Using in the Configure Now Mode
Installing Portal Server on IBM WebSphere 5.1.1.6 Using the Configure Later Mode
Installing psconsole on Web Server 7.0
Portal Server administration console (psconsole) is supported only on Sun Java System Web Server 7.0 and Sun Java System Application Server 8.2.
Install IBM WebSphere 5.1.1.6.
Start the IBM WebSphere server.
Start the Java ES installer. Select Directory Server and Web Server 7.0, and install the components in the Configure Now mode.
Start the Directory Server instance.
DirectoryServer_base/SUNWdsee/ds6/bin/dsadm start DirectoryServer_base/SUNWdsee/dsins1
Start the Java ES installer. Install Access Manager in the Configure Later mode.
Configure Access Manager on the IBM WebSphere container by modifying the following values in the amsamplesilent file.
The amsamplesilent file is located at in the following directories:
Solaris platform: /AccessManager_base/SUNWam
Linux platform: /AccessManager_base/sun/identity
Default: AccessManagerSample_Location/bin
Set values in the amasamplesilent file as follows:
DEPLOY_LEVEL=1
SERVER_NAME=AM_HOSTNAME without FQDN
SERVER_HOST=$SERVER_NAME.domain-name
SERVER_PORT=9080
ADMIN_PORT=9090
DS_HOST=DS_HOSTNAME with FQDN
DS_DIRMGRPASSWD=Directory Manager Password
ROOT_SUFFIX=root suffix of Access Manager
ADMINPASSWD=AM_PASSWORD
AMLDAPUSERPASSWD=LDAP_PASSWORD
COOKIE_DOMAIN=.doamin-name
AM_ENC_PWD=string
NEW_OWNER=root
NEW_GROUP=other (root for the Solaris 10 release and Linux and other for the Solaris 9 release)
PAM_SERVICE_NAME=other
WEB_CONTAINER=WAS5
BASEDIR= Directory where Access Manager is installed., for example, /AccessManager_base/SUNWam
AM_REALM=disabled
WAS51_HOME=/WebSphere_base/WebSphere/AppServer
WAS51_JDK_HOME=/AccessManager_base/WebSphere/AppServer/java
WAS51_CELL=Usually hostname without FQDN. Please check it in your install.
WAS51_NODE=Usually hostname without FQDN. Please check it in your install.
WAS51_INSTANCE=server1
WAS51_PROTOCOL=$SERVER_PROTOCOL
WAS51_HOST=$SERVER_NAME
WAS51_PORT=9080
WAS51_SSLPORT=9081
WAS51_ADMIN=admin
WAS51_ADMINPORT=9090
Run the amsamplesilent script.
The amsamplesilent file is located in the following directories
Solaris platform: /AccessManager_base/SUNWam
Linux platform: /AccessManager_base/sun/identity
Verify if Access Manager is functioning properly.
http://host.domain-name:9080/amconsole
Install Portal Server in the Configure Now mode using the Java ES installer.
Restart IBM WebSphere after the successful installation of the Portal Server.
Access the portal.
http://host.domain-name:9080/portal
Install IBM WebSphere 5.1.1.6 server.
Start IBM WebSphere.
Install Directory Server and Web Server 7.0 in the Configure Later mode using the Java ES installer.
Start the Directory Server instance.
/DirectoryServer_base/SUNWdsee/ds6/bin/dsadm start /var/DirectoryServer_base/SUNWdsee/dsins1
Install Access Manager in the Configure Later mode using the Java ES installer.
Configure Access Manager on IBM WebSphere container using the following values in the amsamplesilent file.
The amsamplesilent file is located at:
Solaris: /AccessManager_base/SUNWam
Linux: /AccessManager_base/sun/identity
Default: AccessManagerSample_Location/bin
The values in the amasamplesilent file is as follows:
DEPLOY_LEVEL=1
SERVER_NAME=AM_HOSTNAME without FQDN
SERVER_HOST=$SERVER_NAME.sun-name
SERVER_PORT=9080
ADMIN_PORT=9090
DS_HOST=DS_HOSTNAME with FQDN
DS_DIRMGRPASSWD=Directory Manager Password
ROOT_SUFFIX=root suffix of Access Manager
ADMINPASSWD=AM_PASSWORD
AMLDAPUSERPASSWD=LDAP_PASSWORD
COOKIE_DOMAIN=.domain-name
AM_ENC_PWD=any string
NEW_OWNER=root
NEW_GROUP=other (root for the Solaris 10 release and Linux and other for the Solaris 9 relesae)
PAM_SERVICE_NAME=other
WEB_CONTAINER=WAS5
BASEDIR=Directory where Access Manager is installed., for example: /AccessManager_base/SUNWam
AM_REALM=disabled
WAS51_HOME=/WebSphere_base/WebSphere/AppServer
WAS51_JDK_HOME=/WebSphere/AppServer/java
WAS51_CELL=Usually hostname without FQDN. Please check it in your install.
WAS51_NODE=Usually hostname without FQDN. Please check it in your install.
WAS51_INSTANCE=server1
WAS51_PROTOCOL=$SERVER_PROTOCOL
WAS51_HOST=$SERVER_NAME
WAS51_PORT=9080
WAS51_SSLPORT=9081
WAS51_ADMIN=admin
WAS51_ADMINPORT=9090
Run the AccessManager_base/SUNam/bin/amconfig -s AccessManager_base/SUNam/bin/amsamplesilent script.
For Solaris, the amsamplesilent file is available in the /AccessManager_base/SUNWam directory. For Linux, it is available in the AccessManager_base/sun/identify directory.
Verify if Access Manager is functioning properly.
http://host.domain-name:9080/amconsole
Install Portal Server in the Configure Later mode using the Java ES installer.
Modify the example files based on your requirements.
For IBM WebSphere, you can use the example16.xml file.
Configure the common agent container.
PortalServer_base/bin/psconfig --config example16.xml