Sun ONE logo      Previous      Contents      Index      Next     

Sun ONE Identity Server 6.0 Installation and Configuration Guide

Chapter 9
Silent Installation

In addition to the GUI installation and the CLI, you can do a silent installation of Identity Server. This chapter provides steps for doing that. Topics in the chapter include:

About Silent Installation

Silent installation provides a means for scripting the installation of Identity Server. When you perform a silent installation, you use a StateFile, to provide all the answers that you would normally supply to the setup program interactively. This saves time and is useful when you want to install multiple instances of Identity Server using the same parameters in each instance.

Silent installation is a simple two-step process. First, you generate a Statefile that records the installation process and all the inputs you provide. Then you run the installation program with the StateFile as the input source.

Note

Be sure you have write permissions for the directory in which you want to generate the StateFile. Otherwise, the file will not be written.

Generating a StateFile on Solaris

To generate a StateFile on Solaris:

  1. Change to the directory where the installation program is located.
  2. Enter the following command:

    3. # ./setup -saveState StateFile

    You can give a name of your choice to the Statefile.

  3. Proceed through the installation program. Your answers to the prompts are recorded in the StateFile.

    4. When installation is complete, StateFile is created in the same directory as setup.

Installing Using the Statefile

To run the silent installation:

Enter the following command to run the silent installation:

# ./setup -nodisplay -noconsole -state StateFile

The installation takes place hidden from your view. On completion, the program exits automatically and displays the prompt. Change to the installation directory specified in the Statefile to check if all the files are copied.

Generating a StateFile on Windows

To generate a StateFile on Windows 2000:

  1. Run the installation program from the directory where the setup program is located. Open a DOS command window and enter the following command:

    2. setup -saveState StateFile

  2. Proceed through the installation program. Your answers to the prompts are recorded in the StateFile.

When installation is complete, the StateFile is created in the same directory as setup.exe.

Installing Using the Statefile

  1. Type the following command:

    2. setup -nodisplay -noconsole -state StateFile

The installation takes place hidden from your view. On completion, the program exits automatically and displays the prompt. Change to the installation directory specified in the Statefile to check if all the files are copied.

Variables in the Statefile

The following table presents the variables in the statefile with a brief description and the values they can have.

Table 9-1  Description of Statefile Variables

Variable

Description

Value

defaultInstallDirectory

Displays the default directory prompted by the installation program for installing Identity Server.

The absolute path to the directory. For example /opt on Solaris and c:\SunONE\SunONEIS on Windows

currentInstallDirectory

Displays the directory you have selected to install Identity Server.

 

The absolute path to the directory. For example /identity60

com.iplanet.install.panels.common.ComponentPanel.selectedcomponents

Displays the name of the Identity Server component you have selected for installation.

Name of the component. For example, Sun ONE IdentityServerManagementandPolicyServices

SunONEIdentityServerCrossDomainSingleSignon

CUSTOM_JDK

Indicates whether you have specified an existing JDK or have selected to install the JDK available with Identity Server 6.0.

True/False

true, if you specified a Custom JDK

false, if you selected to install the JDK bundled with Identity Server.

JDK_PATH

Displays the relative path to the JDK on Solaris platform.

java

JDK_BASE_DIR

Displays the directory where Java SDK is installed.

The absolute path to the JDK directory. For example /identity60/SUNWam/java

IWS_INSTALL

Indicates whether you have installed the CDSSO component and the Common Domain Services with a new web server distributed with Identity Server 6.0.

True/False

True if you have installed these components with a new web server.

IWS_ADMIN_ID

Displays the user name for the administrator who will manage the Sun ONE Web Server.

The default value is admin. You can change it.

IWS_ADMIN_PORT

Displays the port number used by Sun ONE Web Server.

The default is 58888. You can change it.

IWS_ADMIN_PASSWD

Displays the Web Server Administrator’s password.

The password must be at least eight characters long.

SYS_USR

Displays the UNIX user account the Web Server will run as.

The default user is nobody. You can change it. This variable will not be available in a statefile created on Windows.

SYS_GRP

Displays the UNIX group to which the above user belongs.

The default group is nobody. You can change it. This variable will not be available in a statefile created on Windows.

CDSSO_BASE_WSDIR

Displays the path to the directory where the Sun ONE Web Server is installed.

 

CDSSO_HOST

Displays the FQDN of the computer on which you have installed the CDSSO component.

Typically, the value will be in the form host.madisonparc.com.

CDSSO_WSDIR

Displays the path to the directory storing Web Server Instance.

The absolute path including the instance name. For example /Identity_Server_root/SUNWam/servers/https-host.madisonparc.com

CDSSO_PORT

Displays the port number of the Web Server used by the CDSSO component.

The default value is 80.

CDSSO_PROTOCOL

Displays the protocol used by the CDSSO component.

http or https. The default value is http.

CDSSO_DEPLOY_URI

Displays the URI for accessing CDSSO.

The default is amcdsso. You can change it.

WS_INSTANCE

Displays the name of the web server instance.

The default value is https-host.madisonparc.com

DSAME_SERVER

Displays the FQDN of the host machine that runs Sun ONE Identity Server.

Typically, the value is in the format host.madisonparc.com

DSAME_PORT

Displays the port used by the web server that runs Identity Server services.

Typically, the default is 58080.

DSAME_PROTOCOL

Displays the protocol used by Identity Server.

http or https. The default is http.

SERVER_DEPLOY_URI

Displays the URI for accessing Identity Server services.

The default is amserver. You can change it.

CDS_HOST

Displays the FQDN of the machine on which you have installed Common Domain Services.

host.madisonparc.com

CDS_WSDIR

Displays the path to the web server instance used by Common Domain Services.

The absolute path including the web server instance name. For example, /Is-root/SUNWam/servers/https-madisonparc60.madisonparc.com

CDS_PORT

Displays the port number used by the Common Domain Services.

Typically, the default is 58080.

CDS_PROTOCOL

Displays the protocol used by the Common Domain Services.

http or https. The default is http.

CDS_DEPLOY_URI

Displays the URI for accessing the Common Domain Services on the Web Server.

The default is common. You can change it.

CDS_BASE_WSDIR

Displays the path to the web server directory used by Common Domain Services.

Identity_Server_root/SUNWam/servers

DSAME_HOST

Displays the host name where you have installed Directory Server. Host name is typically the first label in the FQDN.

host

DSAME_DEF_DOMAIN

Displays the domain on which you have installed Directory Server.

Domain name, for example, madisonparc.com

DSAME_FULL_DOMAIN

Displays the domain name (sans the host name) where you have installed Identity Server.

madisonparc.com

DSAME_SUB_DOMAIN

Displays the sub-domain label in the FQDN. In an FQDN, the sub-domain as the second label. For example, in nila.country.madisonparc.com, country is the sub-domain.

Needed only if you have sub-domain.

DEFAULT_ORG1

Displays the same value as DSAME_DEF_DOMAIN.

Domain name, for example, madisonparc.com

EXIST_DIT_SCHEMA

Indicates whether you have selected to use an existing DIT and schema.

True/False

ADMIN_COMPONENT_SELECTED

Indicates whether you have selected to deploy the Identity Server Console.

True/False

CONSOLE_DEPLOY_URI

Displays the URI for accessing Identity Server Console.

The default is amconsole. You can change it.

DSAME_CONSOLE

Displays the URI for accessing Identity Server Console.

nila.madisonparc.com

DSAME_CONSOLE_HOST

Displays the name of the machine that hosts Identity Server Console.

Name of the host machine.

CONSOLE_PROTO

Indicates the protocol used by the Identity Server Console

http

DSAME_CONSOLE_PORT

Indicates the port number used by the Identity Server Console

58080

DSAME_CONSOLE_DEF_DOMAIN

Displays the domain on which you have installed Identity Server.

madisonparc.com

DSAME_CONSOLE_FULL_DOMAIN

Displays the domain on which you have installed the Identity Server Console. This is typically identified by the last two labels of the FQDN.

madisonparc.com

DSAME_CONSOLE_SUB_DOMAIN

Displays the second label in the FQDN.

Needed only if you have a sub-domain to specify.

USE_DSAME_SERVICES_WEB_CONTAINER

Indicates if you have installed Identity Server Console with new or existing Identity Server services.

Value is 1 if Identity Server Console is installed with Identity Server Services. Value is 0 (zero) if you have installed only the Identity Server Console.

DIT_COMPLIANCE

Indicates if you have an existing Identity Server-compliant DIT.

false

 

DS_ALREADY_EXISTS

Indicates whether you have specified to use an existing Directory Server.

true/false

LOAD_DIT

Indicates if you have selected to load an Identity Server-compliant DIT.

Y/N

AUTO_LOAD

Indicates whether you had selected to load the Identity Server 6.0-compliant DIT/Schema during installation.

True, if you had selected to load the DIT/Schema and False, otherwise.

CUSTOM_DIRECTORY

Indicates if you have specified a custom directory that stores the existing Directory Server.

True/False

DS_ROOT_SUFFIX

Displays the root suffix defined in your Directory tree.

dc=madisonparc dc=com, o=madisonparc.com

DC_TREE

Displays the root suffix defined for your DIT.

dc=madisonparc, dc=com, o=madisonparc.com

ORG_BASE

Displays the same value as DS_ROOT_SUFFIX.

DS_SERVER

Displays the FQDN of the computer where you have installed Directory Server.

host.madisonparc.com

DS_HOST

Displays the name of the computer on which you have installed Directory Server.

Name of the computer.

DS_PORT

Displays the port used by the Directory Server

The default is 389. You can change it to any number between 1 and 65535.

DS_INSTALL_DIR

Displays the path to the directory in which you have installed Directory Server.

The default is /usr/iplanet/servers

DS_ROOT_DN

Displays the DN defined in your DIT.

cn=Directory manager

DS_ROOT_PASSWD

Displays the password you have set for the Administrator user of the Directory Server.

A password of at least characters long.

LOCAL_IDS

Indicates whether the existing Directory Server is installed locally or on a remote host.

true if the Directory Server is installed on the local host, and false, if it is installed on a remote host.

ORG_OBJECT_CLASS

Displays the marker object class defined for organization in your existing DIT.

This variable need to be set only if you are installing Identity Server against an existing Directory Server.

The default is organization.

ORG_NAMING_ATTR

Displays the naming attribute used to define organization in your existing DIT.

This variable need to be set only if you are installing Identity Server against an existing Directory Server.

o, dc

USER_OBJECT_CLASS

Displays the object class defined for users in your existing DIT.

This variable need to be set only if you are installing Identity Server against an existing Directory Server.

The default is inetorgperson.

USER_NAMING_ATTR

Displays the naming attribute used for users in your existing DIT.

This variable need to be set only if you are installing Identity Server against an existing Directory Server.

uid

DS_ADMIN_ID

Displays the user name defined for the Administrator of the Administration Server that manages Directory Server.

the default is admin

DS_ADMIN_PORT

Displays the port number used by the Administration Server.

the default is 58900

DS_ADMIN_PASSWD

Displays the password defined for the Administrator of the Administration Server.

the default is admin123

LDAPUSER

Displays the user id of amldapuser.

This is pre-defined as amldapuser and cannot be modified.

LDAPUSERPASSWD

Displays the password you have set for amldapuser.

This password should be different from that of the amadmin user.

SUPERADMIN

Displays the user name assigned to the top-level Administrator. This is assigned by Identity Server and cannot be modified.

the default is amAdmin. You must not change this value.

SUPERADMINPASSWD

Displays the password you have assigned for the top-level administrator.

This password should be different from the one set for the amldap user.

START_SERVER

Indicates whether you have selected to start the Identity Server automatically after the installation process.

true/false

COOKIE_DOMAIN_LIST

 

.madisonparc.com

DOMAINURLS

 

FRESH_DS_WITH_SERVICES

Indicates if you have installed the Directory Server available with Identity Server.

Yes/No

STATE_BEGIN

Start tag of the statefile. This tag followed by the product name and wizard id is unique to a build of the product.

 

STATE_DONE

End tag of the statefile. This tag followed by the product name and wizard id is unique to a build of the product.

 



Previous      Contents      Index      Next     

Copyright 2003 Sun Microsystems, Inc. All rights reserved.