To Install Gateway in DMZ Using psconfig

Before You Begin

Before you install Gateway in DMZ, configure Access Manager SDK. To do this:

• Change to the directory /opt/SUNWam/bin/ that contains the amconfig input file template, amsamplesilent.

• Copy the input template to a new file. For example, cp amsamplesilent new_inputfile.

• Edit the new_inputfile to set the Access Manager SDK and set the following configuration parameters:

  • SERVER_NAME

  • SERVER_HOST

  • SERVER_PORT

  • DEPLOY_LEVEL=3 (If you want to configure only in Access Manager SDK)

  • DS_HOST

  • DS_DIRMGRPASSWD

  • ROOT_SUFFIX

  • ADMINPASSWD

  • AMLDAPUSERPASSWD

  • COOKIE_DOMAIN

• Run the amconfig command using the newly created input file.

  cd opt/SUNWam/bin ./amconfig -s new_inputfile

• The amconfig script requires the JDK to be installed and linked to /usr/jdk/entsys-j2se.

1. Install Gateway in Configure Later mode.

2. Modify the attributes in example10.xml appropriately. Ensure that the RestrictiveMode attribute is set to true.

3. Run the ./psconfig --config example10.xml command to configure Gateway.

4. Run the ./psadmin start-sra-instance --user username --passwordfile passwordfile -N gatewayprofile -t gateway --restrictive to start the Gateway instance.

5. If you need to stop the Gateway instance, run the ./psadmin stop-sra-instance --user username --passwordfile passwordfile -N gatewayprofile -t gateway command.

   ---

   Note –

   The --restrictive option in the above commands is necessary to start the Gateway.

   ---