test

Deployment Example 2: Federation Using SAML v2

ProcedureTo Install Web Policy Agent 4

Before You Begin
Caution – Caution –

If the Web Policy Agent installer is hosted on the same system where you are installing the Web Policy Agent, you can disregard this warning.

If the installer is hosted on a system other than the local system where you are installing the Web Policy Agent, you must start an X-display session on the system that hosts the installer. You must use an X-display program such as Reflections X or VNC even though you use the command-line installer. This is a known problem with this version of the Web Policy Agent. For more information about this known problem, see http://docs.sun.com/app/docs/doc/819-2796/6n52flfoq?a=view#adtcd.

  1. As a root user, log into the Protected Resource 4 host.

  2. Download the Java System Web Policy Agents 2.2 package from the following website:

    http://www.sun.com/download/products.xml?id=434ed995

  3. Unpack the downloaded package.

    In this example, the package was downloaded into the directory /temp.


    # cd /temp
# gunzip sun-one-policy-agent-2.2-es6-solaris_sparc.tar.gz
# tar —xvof sun-one-policy-agent-2.2-es6-solaris_sparc.tar

  4. Start the Web Policy Agents installer.

    # ./setup -nodisplay

  5. When prompted, provide the following information:


    When you are ready, press Enter to continue. 
<Press ENTER to Continue>

    Press Enter. 

    		 

    Press ENTER to display the Sun Software 
License Agreement

    Press Enter. 

    		 

    Have you read, and do you accept, all of 
the terms of the preceding Software License 
Agreement [no] y

    Enter y.

    		 

    Install the Sun Java(tm) System Access Manager 
Policy Agent in this directory [/opt] :

    Accept the default value. 

    		 

    Enter information about the server instance this 
agent will protect. 
Host Name [ProtectedResource-4.siroe.com]:

    Accept the default value. 

    		 

    Web Server Instance Directory []:

    Enter  


    /opt/SUNWwbsvr/
https-ProtectedResource-4.siroe.com


    Web Server Port [80]:    :

    Enter 2080.

    		 

     Web Server Protocol [http]

    Accept the default value. 

    		 

    Agent Deployment URI [/amagent]:

    Accept the default value. 

    		 

    Enter the Sun Java(tm) System Access Manager
Information for this Agent.
Primary Server Host [ProtectedResource-9.siroe.com] :

    For this example, enter the load balancer host name. Example: LoadBalancer-9.siroe.com 


    Primary Server Port [1080]

    Enter the load balancer HTTP port number. For this example, enter 3443.

    		 

    Primary Server Protocol [http]:

    Enter https.

    		 

    Primary Server Deployment URI [/amserver]:

    Enter /federation.

    		 

    Primary Console Deployment URI [/amconsole] :

    Enter /federation.

    		 

    Failover Server Host [] :

    Accept the default value. 

    		 

    Agent-Access Manager Shared Secret:

    Enter the amldapuser password that was entered when Access Manager was installed. For this example, enter 11111111 .

    		 

    Re-enter Shared Secret:

    Enter the 11111111 password again to confirm it.

    		 

    CDSSO Enabled [false]:

    Accept the default value. 

    		 

    Press "Enter" when you are ready to continue.

    First, see the next (Optional) numbered step. When you are ready to start installation, press Enter. 

  6. (Optional) During installation, you can monitor the log to watch for installation errors. Example:


    # cd /var/sadm/install/logs
# tail —f var/sadm/install/logs/
Sun_Java_tm__System_Access_Manager_Policy_Agent_install.Bxxxxxxxx

  7. Restart the Web Server. 


    # cd /opt/SUNWwbsvr/https-ProtectedResource-4.siroe.com
# cd ./stop; ./start

    Examine the Web Server log for startup errors.


    # /opt/SUNWwbsvr/https-ProtectedResource-4.siroe.com/logs
# vi errors