Use the following as your checklist for installing and configuring Federation Manager 1:
The Java ES installer must be mounted on the host computer system where you will install Web Server. See the section 2.2 Downloading and Mounting the Java Enterprise System 2005Q4 Installer in this manual.
As a root user, log into the Web Server host.
Start the Java Enterprise System installer with the -nodisplay option.
# cd /mnt/Solaris_sparc # ./installer -nodisplay |
When prompted, provide the following information:
(Optional) During installation, you can monitor the log to watch for installation errors. Example:
# cd /var/sadm/install/logs
# tail —f Java_Enterprise_System_install.B xxxxxx
Upon successful installation, enter ! to exit.
Verify that the Web Server is installed properly.
Start the Web Server administration server to verify it starts with no errors.
# cd /opt/SUNWwbsvr/https-admserv
# ./stop; ./start
Run the netstat command to verify that the Web Server ports are open and listening.
# netstat -an | grep 8888 *.8888 *.* 0 0 49152 0 LISTEN |
Start a browser, and go to the Web Server administration URL.
http://FederationManager-1.siroe.com:8888
Log in to the Web Server console.
admin
admin123
You should be able to see the Web Server console. You can log out of the console now.
Start the Web Server instance.
# cd /opt/SUNWwbsvr/https-FederationManager-1.siroe.com # ./stop; ./start |
Go to the Web Server instance URL.
http://FederationManager-1.siroe.com:8080
You should see the default Web Server index page.
If you have installed Solaris 10 using a distribution package other than the Solaris Enterprise distribution package, then you must remove the SUNWjas and SUNWjato packages that were automatically installed for you. These packages are different versions than the SUNWjas and SUNWjato packages used by Federation Manager. The appropriate packages will be installed when you run the Federation Manager installer.
Download the Sun Java System Federation Manager program from the following page on the Sun Microsystems website: http://www.sun.com/download/products.xml?id=44a5bbb5
Unpack the Federation Manager installer.
# tar -xvf fm-7.0-domestic-us.sparc-sun-solaris2.8.tar # ls LICENSE.TXT README.TXT SUNWamfm common fm-7.0-domestic-us.sparc-sun-solaris2.8.tar fmsetup fmsilent-template |
Edit the download_directory/fmsilent-template file.
Make a backup of the fmsilent-template file, and then set the following properties in the file:
FM_PROCESS_USER=root FM_PROCESS_GROUP=root INST_ORGANIZATION=o=siroe.com SERVER_HOST=FederationManager-1.siroe.com SERVER_PORT=8080 ADMINPASSWD=11111111 |
Save the file as /export/fmsilent.
(Optional) For online help regarding the Federation Manager installer options, enter the following with no options:
# ./fmsetup |
To start the Federation Manager installer, run the following command:
# ./fmsetup install -s /export/fmsilent |
The Federation Manager installer creates the following web archive (WAR) file:
/var/opt/SUNWam/fm/war_staging/federation.war
You usually customize the Federation Manager WAR file for the environment before the WAR file can be deployed. In a deployment where SAMLv2 is not used, you could customize and deploy the Federation Manager WAR file now. However in this deployment example, you will install the SAMLv2 plug-in and the SAMLv2 patch before you customize the Federation Manager WAR file. So proceed directly to the next task, To Deploy the Federation Manager 1 WAR File.
Go to the Web Server directory that contains the wdeploy command:
# cd /opt/SUNWwbsvr/bin/https/bin |
Run the wdeploy command:
# ./wdeploy deploy -u /federation -i FederationManager-1.siroe.com -v https-FederationManager-1.siroe.com /var/opt/SUNWam/fm/war_staging/federation.war |
Verify that the WAR file was successfully deployed.
Verify that a directory has been created with the same name you specified during Federation Manager installation as the URI. In this deployment example, the directory is named federation.
# cd /opt/SUNWwbsvr/https-FederationManager-1.siroe.com/ webapps/https-FederationManager-1.siroe.com/federation # ls META-INF config docs html js WEB-INF console fed_css images saml2 com_sun_web_ui css fed_images index.html samples |
Restart the Federation Manager server, and verify that you can successfully access it.
# cd /opt/SUNWwbsvr/https-FederationManager-1.siroe.com # ./stop; ./start |
In a browser, go to the following URL:
http://FederationManager-1.siroe.com:8080/federation/UI/Login |
Log in to the Federation Manager console:
amadmin
11111111
If you can successfully log in, then the Federation Manager WAR file has been successfully deployed.
You must download the SAMLv2 Plug-In and the SAMLv2 Patch 2 onto the Federation Manager 1 host.
To download the SAMLv2 Plug-In, go to the following URL and follow instructions for downloading the plug-in:
http://www.sun.com/download/products.xml?id=43e00414
As a root user, log in to the Federation Manager 1 host.
Change to the directory where you unpacked the SAMLv2 installation files. Example:
# cd /tmp/saml2 # ls ./ SUNWsaml2/ ../ saml2setup* ENTITLEMENT.TXT saml2silent LICENSE.TXT samlv2-1.0-solaris-sparc.tar README.TXT version |
In a different directory, make a copy of the saml2silent file.
For this deployment example, no changes are made to the saml2silent file. All default values contained in the saml2silent file are used during installation. If you changed anything in the fmsilent other than the changes described in the section To Install Federation Manager Server 1, you should reflect the same changes in the saml2silent file.
Run the SAMLv2 installer.
# cd /tmp/saml2 # ./saml2setup install -s saml2silent |
When installation is complete, you will see the following message:
To complete the installation of SAML2 you must deploy the war file. Refer to the web container documentation or the release notes for directions on deploying a war file. |
Do not deploy the Federation Manager WAR file as instructed in the onscreen message. Instead, complete the following step and then proceed directly to the next task, To Install SAMLv2 Patch 2 on Federation Manager 1.
Restart the Federation Manager server, and verify that you can successfully access it.
# /opt/SUNWwbsvr/https-FederationManager-1.siroe.com # ./stop; ./start |
To download the SAMLv2 Patch 2, go to one of the following URLs and follow instructions for downloading the patch for your operating system:
Solaris (sparc) 122983-02
http://sunsolve.sun.com/search/document.do?assetkey=1-21-122983-02-1
Solaris (x86) 122984-02
http://sunsolve.sun.com/search/document.do?assetkey=1-21-122984-02-1
Linux 122985-02
http://sunsolve.sun.com/search/document.do?assetkey=1-21-122985-02-01
Go to the directory where you downloaded and upacked the SAMLv2 patch installation file.
#cd /temp/saml2patch/122983-02 #ls LEGAL_LICENSE.TXT LICENSE.TXT patchinfo postbackout postpatch prebackout prepatch README.122983-02 rel_notes.html SUNWsaml2 |
Run the SAMLv2 patch installer.
The —G option in the following example is for Solaris 10 zones. The option is not necessary if you are not using the Solaris 10 platform.
# cd /temp/saml2patch # patchadd -G 122983-02 |
When installation is complete, you will see the following message:
Patch packages installed: SUNWsaml2 |
Go to the directory where the saml2silent file is located.
# cd /opt/SUNWam/saml2/bin |
Run the update command.
# ./saml2setup update -s /opt/SUNWam/saml2/bin/saml2silent |
Any updates required because of the newly-installed patch are made in SAMLv2.
Redeploy the Federation Manager 1 WAR file.
At this point, the Federation Manager WAR file has been updated with SAMLv2 and SAMLv2 patch configurations. Once the WAR file is updated, you must deploy the WAR file.
See To Regenerate and Redeploy the Federation Manager 1 WAR File.