Due to a known problem with this version of the Web Policy Agent, you must start an X-display session on the server host using a program such as Reflections X or VNC, even though you use the command-line installer. For more information about this known problem, see On UNIX-based machines, all web agents require that the X11 DISPLAY variable be set properly. in Sun Java System Access Manager Policy Agent 2.2 Release Notes.
As a root user, log into the ProtectedResource–2 host machine.
Ensure that your system is properly patched.
This should have been done in To Install Sun Java System Web Server as Web Container 2 on Protected Resource 2.
Create a directory into which you can download the Web Server agent bits and change into it.
# mkdir /export/WebPA2 # cd /export/WebPA2 |
Download the web policy agent for Web Server from http://www.sun.com/download/.
# ls -al total 294548 drwxr-xr-x 2 root root 512 Aug 7 13:23 . drwxr-xr-x 3 root sys 512 Aug 7 13:16 .. -rw-r--r-- 1 root root 150719523 Aug 7 13:24 sjsws_v70_SunOS_agent.zip |
Unzip the downloaded file.
# unzip sjsws_v70_SunOS_agent.zip |
Change the permissions for the resulting agentadmin binary.
# cd /export/WebPA2/web_agents/sjsws_agent/bin # chmod +x agentadmin |
Verify that crypt_util has execute permission before running the installer.
# cd /export/WebPA2/web_agents/sjsws_agent/bin # chmod +x crypt_util |
Create a temporary file for the password that will be required during agent installation.
# echo web4gent2 > /export/WebPA2/pwd.txt # cat /export/WebPA2/pwd.txt |
Run the agent installer.
# ./agentadmin --install |
When prompted, do the following.
|
Type yes and press Enter. |
|
| ||
|
Type /opt/SUNWwbsvr/https-ProtectedResource-2.example.com/config and press Enter. |
|
|
Type LoadBalancer-3.example.com and press Enter. |
|
|
Type 9443 and press Enter. |
|
|
Type https and press Enter. |
|
|
Press Enter to accept the default /amserver. |
|
|
Type ProtectedResource-2.example.com and press Enter. |
|
|
Type 1080 and press Enter. |
|
|
Press Enter to accept the default http. |
|
|
Type webagent-2 and press Enter. |
|
|
Type /export/WebPA2/pwd.txt and press Enter. |
|
|
Type 1 and press Enter. |
|
|
Modify the AMAgent.properties file.
Backup AMAgent.properties before you modify it.
Change to the config directory.
# cd /export/WebPA2/web_agents/sjsws_agent/Agent_001/config |
Set the values of the following properties as shown.
com.sun.am.policy.am.login.url = https://LoadBalancer-3. example.com:9443/amserver/UI/Login?realm=users com.sun.am.load_balancer.enable = true
Save the file and close it.
Restart the Protected Resource 2 Web Server instance.
# cd /opt/SUNWwbsvr/https-ProtectedResource-2.example.com/bin # ./stopserv; ./startserv server has been shutdown Sun Java System Web Server 7.0 B12/04/2006 10:15 info: CORE3016: daemon is running as super-user info: CORE5076: Using [Java HotSpot(TM) Server VM, Version 1.5.0_09] from [Sun Microsystems Inc.] info: HTTP3072: http-listener-1: http://ProtectedResource-2.example.com:1080 ready to accept requests |
Log out of the ProtectedResource–2 host machine.