Previous Contents DocHome Index Next |
iPlanet Trustbase Transaction Manager 3.0.1 Beta Configuration and Installation |
Introduction
The following chapter discusses all related documents to this guide.
Overall Layout
The complete documentation set comprises of:
iTTM3.0.1-Install-Configuration-Guide.pdf (this Document) is designed for operators looking to produce applications that utilise the iPlanet Trustbase Transaction Manager framework. It is designed to provide information for operators looking to install the iPlanet Trustbase Transaction Manager platform. This guide identifies hardware and software required prior to installation, how to install iPlanet Trustbase Transaction Manager from CD-ROM
iTTM3.0.1-Developer-Guide.pdf that indicates how to build your own services. This manual Covers:
At the end of the manual there is an appendix on how to operate your own PKI using the command line tool TokenKeyTool
Solaris 8 and Java Development Kit
http://docs.sun.com
http://java.sun.com/products/jdk/1.1/docs/index.html
iPlanet Application Server 6.5
http://docs.sun.com/db/prod/s1.ipasee
http://docs.iplanet.com/docs/manuals/ias.html
iPlanet Web Server 6.0
http://docs.sun.com/db/prod/s1.websrv60
http://docs.iplanet.com/docs/manuals/enterprise.html
iPlanet Certificate Management System
http://docs.sun.com/db/prod/s1certsrv
http://docs.iplanet.com/docs/manuals/cms.html
Oracle 8.1.7 Installation and Configuration Guides
http://www.oracle.com
Hardware Security nCipher KeySafe 1.0 and CAFast
http://www.ncipher.com
Identrus Message Specifications
http://www.identrus.com
Transaction Coordinator requirements (IT-TCFUNC)
Core messaging specification (IT-TCMPD)
Certificate Status Check Messaging specification (IT-TCCSC)
Software Requirements
Solaris(TM) 8 for SPARC(TM)
iPlanet Application Server 6.5
iPlanet Trustbase(TM) Transaction Manager 3.0.1
Certificate Authority [e.g. iPlanet Certificate Management System 4.2]
Optional Hardware Security Module (HSM) on server [mandatory for Identrus participation - nCipher nShield 300 SCSI]
Memory
Recommended single machine setup 512 MB
Disk Space
Recommended single machine setup 1 GB
Recommended Installation Template
Before attempting an installation you should prepare a template outlining all your proposed settings. The following table provides the setting used throughout the documentation.
iWS 6.0 SP2
Install directory /opt/iws6
Would you like to continue with installation? [Yes]: Yes
Do you agree to the license terms? [Yes]: Yes
Choose an installation type [2]: 2
Install location [/opt/iws6]: /opt/iws6
Specify the components you wish to install [A] A
Specify the components to install [1, 2, 3, 4,]: 1,2,3,4
Computer name [myhost.mycompany.com]: myhost.mycompany.com
System Group [iplanet]: iplanet
Run iWS Administration Server as [root]: root
IWS Admin Server User Name [admin]: admin
IWS Admin Server Password (again):
IWS Admin Server Port [8888]: 8888
Web Server Content Root [/opt/iws6/docs:
Do you want to use your own JDK [No]: Yes
JDK Directory [/usr/Java]: /usr/java1.3
These last two questions can be answered by pressing return
iAS 6.5
[0] CDROM directory /cdrom/cdrom0/ias6
[0] Install directory /opt/ias6
Would you like to continue with installation? [Yes]: Yes
Do you agree to the license terms? [No]: Yes
Select the component you want to install [1]: 1
Choose an installation type [2]: 2
Install location [/opt/ias6]: /opt/ias6
iPlanet Server Products components: Specify the components to install [All]: All
iPlanet Server Family Core: Specify the components to install [1, 2, 3]: 1,2,3
iPlanet Directory Suite components: Specify the components to install [1, 2]: 1,2
Administration Services components: Specify the components to install [1, 2]: 1,2
iPlanet Application Server Suite components: Specify the components you wish to install [1, 2, 3, 4,5]: 1,2,3,4,5
Computer name [myhost.mycompany.com]: myhost.mycompany.com
System Group [iplanet]: iplanet
Netscape configuration directory server? [No]: No
Do you want to use another directory to store your data? [No]: No
Directory server network port [389]: 389
Directory server identifier [myhost]: myhost
administrator ID [admin]: admin
Suffix [o=mycompany.com]: o=mycompany.com
Directory Manager DN [cn=Directory Manager]: cn=Directory Manager
Admin Domain [mycompany.com]: mycompany.com
Administration port [8889]: 8889
Run Administration Server as [root]: root
Product Key: XXXXXXXXXXX-XXXXXXXXXXX
Enter the location of your webserver: /opt/iws6/https-myhost.mycompany.com
Do you want to enable the user to access the registry and plugin libraries? [y] y
Do you want to continue with the iAS installation? [y] y
Do you want to enable I18N support for iAS? [No]: No
Username does not match [No]: Yes
Note patches may be required to install iAS6.5 on Solaris 8
iTTM 3.0.1
Do you agree to the license terms? [No]: Yes
Install location [/opt/ittm]: /opt/ittm
The root location of iPlanet Application Server ? /opt/ias6
The root location of iPlanet Web Server documents directory? /opt/iws6/docs
The user to start iTTM is [ tbase ]
The group to which the Trustbase user belongs [ iplanet ]
What is the database user name that is used by iTTM? tbase
What is the database password that is used by iTTM? tbase
On what host is your database stored? mydatabase.mycompany.com
On what port is your database running? 1521
On what SID is your database? orcl
On what URL is your local OCSP responder? http://myresponder.mycompany.com:8080/NASApp/OCSPResponder/OCSPResponderServlet
What is the AIA of this iTTM? https://myhost.mycompany.com
Enter the password to use for the tokenkeystore? password
OCSPResponder
What is the Base DN of the LDAP Server that stores your certificate revocation list?
What is the Bind DN of the LDAP server that stores your certificate revocation list?
What is the Bind password?password
On what host is your LDAP? myhost.mycompany.com
On what port is your LDAP? 387
JMSProxy
What Port is your ittm listening on? 80
On what host is your iTTM iPlanet Web Server ? [ myhost.uk.sun.com ]
On what HTTP port is your iTTM iPlanet Webserver running ? [ 80 ]
The JMS queue name for messages received from system backend ? [ backend_to_itps ]
The JMS queue server host ? [ myqueue.uk.sun.com ] { myqueue.mycompany.com }
The JMS queue server port ? [ 7676 ]
iTTM Certificate Aliases
(1) Location of alias = "IRCA" certificate e.g.
"CN=Identrus Root,OU=Identrus Root,O=Identrus,C=US"
(2) Location of alias = "L1CA" certificate e.g.
"CN=L1 Bank CA,OU=L1 Bank,O=L1,C=GB"
(3) Request/response for alias= "L1EESC" certificate e.g.
"CN=L1 Bank End Entity Signing Certificate,OU=L1 Bank,O=L1"
(4) Request/response for alias= "L1EESSL" certificate e.g.
"CN=L1 Bank SSL CertificateCertificate,OU=L1 Bank,O=L1"
(5) Request/response for alias= "L1IPSC" certificate e.g.
"CN=L1 Bank Inter-Participant Signing Certificate,OU=L1 Bank,O=L1"
You should make a note of the defaults that you use as you may need them in later installs.
Previous Contents DocHome Index Next
Copyright © 2001 Sun Microsystems, Inc. Some preexisting portions Copyright © 2001 Netscape Communications Corp. All rights reserved.
Last Updated October 31, 2002