Sun Java logo     Previous      Contents      Next     

Sun logo
Sun Java System Identity Pack 2005Q4M3 Installation  

5

Installing Identity Install Pack for WebSphere 4.x

Use the following information and procedures to install Identity Install Pack for use with the IBM WebSphere Application Server, Version 4.x.

Before You Begin

During installation, you will need to know:

Installation Steps

Follow these installation and configuration steps, located in this chapter and following chapters:

These procedures assume that you have set up an application server and servlet engine in WebSphere. For detailed information about installing and using WebSphere, refer to the Web page or reference information provided by the application server software provider.

Step 1: Install and Configure the Identity Install Pack Software

To install and configure the software:

  1. Unjar the idm.war file into an lh_staging folder on a file system:

    2. jar -xvf idm.war

    Note  The idm.war file is located in the base directory of the Installation CD.

  2. Delete these files, if they exist:
    • WEB-INF/lib/log.jar
    • WEB-INF/lib/j2ee.jar
    • WEB-INF/lib/ldap.jar
    • WEB-INF/lib/cryptix-jce-provider.jar
    • WEB-INF/lib/cryptix-jce-api.jar

      • Note  The Cryptix jars are no longer included and no longer supported. You need to remove them if you haven't already. If you've customized your Waveset.properties file please make sure that security.jce.workaround property is set to false or removed. An exception will be thrown if this property is set to true because the intention of this property will not be fulfilled.

      Note  Removing the jars from WEB-INF/lib for WebSphere disables the BPE. Move those jars to a different location and create a CLASSPATH variable that points to those jars to re-enable the BPE.

  3. Install the Java Secure Socket Extension (JSEE) 1.0.3 .jar files, located at http://java.sun.com/products/jsse/index-103.html:
    • WEB-INF/lib/jnet.jar
    • WEB-INF/lib/jcert.jar
    • WEB-INF/lib/jsse.jar
  4. Download the latest jlog package from WebSphere at:

    5. http://www.alphaworks.ibm.com/tech/loggingtoolkit4j

  5. Replace the idm/WEB-INF/lib/log.jar file with the com\ibm\logging\log.jar file.
  6. Edit the idm\WEB-INF\bin\lh.bat file and add the following line at the top of the file (after the @echo off line):

    7. set CLASSPATH=%CLASSPATH%;WebSphere/AppServer/lib/j2ee.jar

    where WebSphere is the location where WebSphere is installed.

  7. If you plan to use an index database, you may need to copy one or more files to the idm\WEB-INF\lib directory. For example, you may need to place into idm/WEB-INF/lib a JAR file containing a JDBC driver (for a DriverManager connection) or a JAR file containing a JNDI InitialContextFactory (for a DataSource connection). To determine the steps you may need to perform before you go on, see Appendix A, Index Database Reference. When finished, launch setup to continue with installation.

    8. WARNING  If you continue with setup before copying your index database files, setup will not proceed correctly. If this happens, copy the files, and then use the lh setup command to restart the setup portion of the process.

  8. Set $WSHOME to the location of the staging directory where you unjarred the idm.war file.
  9. Set JAVA_HOME in the environment to the Java directory under the WebSphere installation; for example:

    10. set JAVA_HOME=c:\ProgramFiles\WebSphere\AppServer\java

  10. Change to $WSHOME, and then enter the command:

    11. lh setup

    The installer displays the Locate the Repository panel.

  11. Select an index database:
    • Oracle (JDBC Driver)
    • Oracle (Data Source)
    • MySQL (JDBC Driver)
    • MySQL (Data Source)
    • DB2 (JDBC Driver)
    • DB2 (Data Source)
    • SQL Server (JDBC Driver)
    • SQL Server (Data Source)
    • LocalFiles

      • Depending on your selection, setup prompts for additional setup information.

      Note  See Appendix A, Index Database Reference, for selections and setup instructions. If you are planning to use a WebSphere or WebLogic Data Source as your repository location, see the special instructions in Appendix C Configuring Data Sources for Identity Manager.

  12. Click Next.

    13. Identity Manager displays the License Key panel.

  13. Click Import from File to import your license key data from an XML file.
  14. Click Next.
  15. Identity Manager displays the Import XML Files panel.
  16. Accept the default XML file (idm\sample\init.xml), or enter or browse to the path to the XML file you will use to set initial database values. When finished, click Import File.
  17. When import completes, click Done in the setup panel.
  18. Create a .war file from the staging folder with these commands:

    19. cd lh_staging
    jar -cvf c:\temp\idm.war *

  19. Install the idm.war file by using the WebSphere Web Admin interface:
    1. Highlight Enterprise Applications, and then right-click and select Install Enterprise Application.
    2. For application display name, specify idm.
    3. For context root, specify /idm.

      4. Note  If you installed WebSphere without the IBM HTTP server and chose another vendor’s http server, skip Steps d through f.

    4. Edit the IBMHTTPServerLocation\conf\httpd.conf file to set up an alias in the IBM http server.
    5. Add the following lines at the bottom of the file:

      6. Alias /idm
      WebSphereIDManagerApplicationDirectory/idm.ear/
      idm.war

    6. Restart the HTTP server.
    7. Ensure that the application server is started to generate the plugin configuration during application startup. To do this:
        • From the Admin console, go to WebSphere Administrative Domain—>
          Nodes—>YourNodeName—>ApplicationServers—>
          YourApplicationServerName.
        • Go to the Custom tab, and set the value of Automatic Generation of Plugin to true.
    8. Restart the application server.

      9. Note  Alternatively, if you are using WebSphere Advanced Single Server Edition, you can use the SEAppInstall utility to install the idm.war file:

  20. $WAS_HOME/bin/SEAppInstall.bat -install c:\temp\idm.war -nodeName HostName

    21. You are prompted with the following questions; provide answers as follows:

    1. (Please Specify an application display name) idm
    2. (Please Specify a context root) /idm
    3. (Do you wish to precompile all JSPs in this application?) n
    4. (Do you wish to precompile individual Web Applications?) n
    5. (Please specify a Virtual Host for the following Web Applications
        1) Sun Identity Manager) [] default_host

Step 2. Install the Sun Identity Manager Gateway

If you plan to set up Windows Active Directory, Novell NetWare, Novell GroupWise, Exchange 5.5, Remedy, or RSA ACE/Server resources, you should install the Sun Identity Manager Gateway. Follow the procedures in Chapter 11, Install the Sun Identity Manager Gateway.

Step 3. Configure the Application Server for https

If you plan to use the application server for https, you must register the correct protocol handler.

For JDK 1.3.x:
  1. Install the following IBM JCE and JSSE files into JAVA_HOME/jre/lib/ext: ibmjcefw.jar:
    • gskikm.jar
    • ibmjceprovider.jar
    • ibmjsse.jar
    • ibmpkcs.jar
  2. Add java.protocol.handler.pkgs=com.ibm.net.ssl.internal.www.
    protocol     as a System Property on the JVM settings tab in the WebSphere Admin tool. On the Websphere Admin 4.x console, go to Nodes-> ServerName-> Application Servers-> Default Server-> JVM Settings-> System Properties and add java.protocol.handler.pkgs=com.ibm.net.ssl.internal.www.
    protocol     as a property.
  3. Ensure that the following lines are in the JAVA_HOME/jre/lib/security/java.security file:
    • security.provider.1=sun.security.provider.Sun
    • security.provider.2=com.sun.net.ssl.internal.ssl.Provider
    • security.provider.3=com.ibm.crypto.provider.IBMJCE
    • security.provider.4=com.ibm.jsse.JSSEProvider
For JDK 1.4:
  1. Add java.protocol.handler.pkgs=com.ibm.net.ssl.internal.www.
    protocol     as a System Property on the JVM settings tab in the WebSphere Admin tool. On the Websphere Admin 4.x console, go to Nodes-> ServerName -> Application Servers-> Default Server-> JVM Settings-> System Properties and add java.protocol.handler.pkgs=com.ibm.net.ssl.internal.www.protocol as a property.
  2. Ensure that the following lines are in the JAVA_HOME/jre/lib/security/java.security file:
    • security.provider.1=sun.security.provider.Sun
    • security.provider.2=com.sun.net.ssl.internal.ssl.Provider
    • security.provider.3=com.ibm.crypto.provider.IBMJCE
    • security.provider.4=com.ibm.jsse.JSSEProvider



Previous      Contents      Next     

Copyright 2006 Sun Microsystems, Inc. All rights reserved.