This scenario applies to a full OpenSSO Enterprise server deployment and an OpenSSO Enterprise server only (no console) deployment.
Undeploy opensso.war in the web container using the web container administration console or command-line utility.
Stop the OpenSSO Enterprise web container.
Remove the following directories and all of their contents:
ConfigurationDirectory is the directory created when the OpenSSO Enterprise instance is initially configured using the Configurator.
The default directory is opensso in the home directory of the user running the Configurator. If the Configurator is run by root, ConfigurationDirectory is created in the root home directory (/).
user-home-directory.openssocfg where user-home-directory is the home directory of the user who deployed the opensso.war file. If this user is root, the directory is /.openssocfg.
Optionally, remove the opensso_enterprise_80.zip and extracted files.
OpenSSO data store port. If the OpenSSO Enterprise server instance was using the OpenSSO data store, the data store port was in use by the LISTEN socket. Stopping the web container server instance or domain should release this port. To check the data store port, use the netstat command. For example, if the OpenSSO data store used default port 50389:
netstat -a | grep 50389
Port 50389 should not be in use for the LISTEN socket. If necessary, release this port.
Remove the directory and its contents where ssoAdminTools.zip was extracted.
Optionally, remove the ssoAdminTools.zip file.
Undeploy the Distributed Authentication UI server WAR file in the web container using the web container administration console or command-line utility.
Stop the Distributed Authentication UI server web container.
Remove the /FAMDistAuth directory including the AMDistAuthConfig.properties configuration file.
The /FAMDistAuth directory is located in the home directory of the user running the web container on which the Distributed Authentication UI WAR file is deployed.
Remove the debug directory and its contents.
The location of the debug directory was specified when the Distributed Authentication UI server was configured using the Configurator.
Undeploy the IDP Discovery WAR in the web container.
Stop the web container.
Remove the libIDPDiscoveryConfig.properties file under the home directory of the user running the web container.
Remove the debug directory and its contents.
The location of the debug directory was specified when the IDP Discovery deployment was configured using the Configurator..
Undeploy the client sample WAR in the web container.
Stop the web container.
Remove the AMConfig.properties file under the home directory of the user running the web container.
Remove the debug directory and its contents.
The location of the debug directory was specified when the client sample was configured.
Remove these files:
ClientSampleWSC.properties
Discovery resource offering files, which begin with RO_ and are located under the home directory of the user running the web container.
Undeploy the fedlet.war in the web container.
Stop the web container.
Remove the fedlet configuration directory.
By default, the fedlet directory is located under the user's home directory.
Undeploy opensso.war in the web container using the web container administration console or command-line utility.
Stop the web container.
Remove the AMConfig.properties file under home directory of the user running the web container.
Remove the debug directory.
The location of the debug directory was specified when the console only deployment was configured using the Configurator.
Remove the directory where the opensso-client.zip file was extracted.
Remove the client SDK debug directory.
The client SDK debug directory was specified when one of the following setup scripts was run:
Solaris and Linux systems: scripts/setup.sh
Windows systems: scripts/setup.bat
Optionally, remove the opensso-client.zip file.
If you used Sun Java System Directory Server as either the configuration data store or user data store, you must manually remove the OpenSSO Enterprise entries.
To remove these entries, use the Directory Server Console, Directory Service Command Center (DSCC), or a command-line utility such as ldapmodify.
Remove the OpenSSO Enterprise schema and attribute index entries, which are loaded during the OpenSSO Enterprise installation from the following files:
am_sm_ds_schema.ldif
ds_remote_s1ds_schema.ldif
index.ldif
fam_sds_schema.ldif
fam_sds_index.ldif
If Directory Server is the configuration data store, remove the entire ou=services sub-branch, which is under the root suffix.
Depending on the features you used, remove OpenSSO Enterprise user entries from the user data store.
For example, federation attributes (sun-fm-saml2-nameid-infokey and sun-fm-saml2-nameid-info) might be added to the user entries if you used SAMLv2 single sign-on (SSO). To determine which entries you need to remove, search the user entries for the schema attributes found in these LDIF files.
ds_remote_s1ds_schema.ldif
fam_sds_schema.ldif