�A�Ω� UNIX �� Sun Java Enterprise System 5 �ɯū�n |
�� 14 ��
Access Manager�����y�z�p��N Access Manager �n��q��e�� Java ES �����ɯŨ� Java ES 5 (�o�檩�� 5)�GSun Java System Access Manager 7.1�C
�������ѵo�檩�� 5 �Ҥ䴩���P�ɯŸ�|�� Access Manager �ɯŰ��D�M�{�Ǫ��@��²���C�����[�\�b Solaris �M Linux �@�~�t�ΤW���ɯŧ@�~�G
Access Manager �ɯ�²�����`�y�z�U�C�|�v�T Access Manager �ɯŦ� Java ES 5 (�o�檩�� 5) ���@��h���G
��� Java ES �o�檩�� 5 Access Manager
Java ES �o�檩�� 5 Access Manager �N�?�n�o�檩���C���]�t��� Java ES �o�檩�� 4 Access Manager ���@�ǿ�~�ץ��P�\��W�j�A�o�檩�� 4 �O�@�ӭ��j�o�檩���C�b�o�檩�� 5 ���W�j�\�त�A���@�إH Java ES �ʵ�[�c����¦���s�W�ʵ�\��C�p�ݵo�檩�� 5 �W�j�\���h��T�A�аѾ\�uSun Java System Access Manager 7.1 ���������v(http://docs.sun.com/doc/820-0366)�C
�P�o�檩�� 4 ����A�o�檩�� 5 Access Manager �䴩�h�Ө����x�s�w�ΨϥΪ̸�Ʀs��ϡC�]�� Access Manager �o�檩�� 5 ���Ȥ䴩 LDAP �ؿ� (�p Directory Server)�A��䴩��L����x�s��w�M�榡�C
�b�e�ݡA�ϥ� Access Manager �D���x�Ӱt�m�s�� Access Manager �A�ȩM�����x�s�w�C
�����ѻP��L Java ES ���V�U�ۮe�ʡA�o�檩�� 5 �i�H�b�¦��Ҧ��U���A�ӼҦ��䴩�̿�o�檩�� 3 Access Manager �A�Ȫ� Java ES ���� (�p�ݧ�h��T�A�аѾ\�ۮe�ʰ��D)�C
Access Manager �ɯŸ�T��n
�� 14-2 ��ܤ䴩�� Access Manager �� Java ES �o�檩�� 5 ���ɯŸ�|�C�Ӫ�A�Ω� Solaris �M Linux �@�~�t�ΡC
�� 14-2 �� Java ES 5 (�o�檩�� 5) ���ɯŸ�|�GAccess Manager 7.1
Java ES �o�檩��
Access Manager ����
�@���k
�ݭn���s�t�m
�o�檩�� 4
Sun Java System Access Manager 7.0 2005Q4
�����ɯšG
���ɡA����ϥιw�ɯŵ{���ɨӲ����o�檩�� 4�A�M�᧹��w�˨í��s�t�m�o�檩�� 5�C�t�m���
�Ω� Access Manager �D���x�M�{�� UI ���ۭq JSP
�ؿ�Ҧ�
�o�檩�� 3
Sun Java System Access Manager 6.3 2005Q1
�����ɯšG
���ɡA����ϥιw�ɯŵ{���ɨӲ����o�檩�� 3�A�M�᧹��w�˨í��s�t�m�o�檩�� 5�C�t�m���
�Ω� Access Manager �D���x�M�{�� UI ���ۭq JSP
�ؿ�Ҧ�
�o�檩�� 2
Sun Java System Identity Server
6.2 2004Q2 �H�� 6.2 SP1�����ɯšG
���ɡA����ϥιw�ɯŵ{���ɨӲ����o�檩�� 2�A�M�᧹��w�˨í��s�t�m�o�檩�� 5�C�t�m���
�Ω� Access Manager �D���x�M�{�� UI ���ۭq JSP
�ؿ�Ҧ�
�o�檩�� 1
Sun ONE Identity Server 6.1
�L�����ɯšG
��i�H��ϥΡuJava Enterprise System 2005Q1 �ɯŻP�E����n�v(http://docs.sun.com/doc/819-2238) ������{�ǤɯŨ�o�檩�� 3�C�M��q�o�檩�� 3 �ɯŨ�o�檩�� 5�C
�t�m���
�Ω� Access Manager �D���x�M�{�� UI ���ۭq JSP
�ؿ�Ҧ�
Java ES �o�檩�����e���o�檩��
Sun ONE Identity Server 6.0 �� 6.0 SP 1 ��
iPlanet Directory Server Access Management Edition (DSAME) 5.1
�L�����ɯšC
Access Manager ���
Access Manager �P��L Java ES ��������A�|�Q�ΦU�ظ�ơA�����S�w�ɯšA�i�ೣ�ݭn�N�o�Ǹ�ƾE���ܤɯŪ������C�U����ܥi��� Access Manager �n��ɯżv�T����������C
Access Manager �ɯŵ���
Access Manager ���ɯŵ����@���M��b�� 1 ���u�ɯųW���v�����Ъ��\�h�Ҷq�]�!G�ɯŸ�|�BJava ES �������̩ۨʡB��ܩʤɯŻP����ɯŤ��t���B�h����ҳ��p���C
���`�N�|���X�i��v�T Access Manager �ɯųW�������D�A�ǥH�� Access Manager �i��@��ʪ����СC
�ۮe�ʰ��D
�o�檩�� 5 Access Manager �V�U�ۮe�o�檩�� 4 Access Manager�A��o�檩�� 4 Access Manager �O�@�ӭ��j�o�檩���A���F�t�m���b�¦��Ҧ��U���ɡA��L���p�U�����P�����ۮe�C�P�˦a�A���D�t�m���b�¦��Ҧ��U���A�_�h�o�檩�� 5 Access Manager �ä��V�U�ۮe�o�檩�� 3 Access Manager (�Φb�¦��Ҧ��U��檺�o�檩�� 4 Access Manager)�C
���~�A�o�檩�� 5 Access Manager ���V�U�ۮe���Ҧ��U���o�檩�� 2 Access Manager�F�o�檩�� 5 Access Manager �L�k�P�o�檩�� 2 Access Manager SDK ���q�A�Ϥ���M�C
�o�檩�� 5 Access Manager �t�m���b��s���d��Ҧ��U���ɡA�|�䴩�h�Ө����x�s�w�M����x�s��w�C�����N�ؿ��ƾE����s���c���~��䴩�d��Ҧ��@�~�C���~�A�d��Ҧ��ä��䴩��L Java ES ���� (�Ҧp Portal Server) �� Sun Java Communications Suite ���� (�Ҧp Communications Express�BMessaging Server �M��L����)�C
���o�檩�� 5 Access Manager �t�m���b�¦��Ҧ��U���ɡA�|�V�U�ۮe�o�檩�� 3 Access Manager �M��3���ؿ��ơA�u���ܤ֤@�Ǩҥ~���p (�аѾ\�uSun Java System Access Manager 7.1 ���������vhttp://docs.sun.com/doc/820-0366)�C
��L Java ES ������ª����� Access Manager �����N�z�{���L�k�b�d��Ҧ��U�P Access Manager ���q�A�䴩���̻ݭn�ϥ��¦��Ҧ��C�o�ؤ��ۮe�ʬO�@�ӭ��n���ɯŦҶq�A�÷N��ۦb�j���� Java ES ���p���A3�N Access Manager �ɯŨ�o�檩�� 5 �¦��Ҧ��C
��O�A�Y�ϰt�m���b�¦��Ҧ��U���A�o�檩�� 5 Access Manager �]���P�o�檩�� 3 �Χ� Sun Java Communications Suite ����ۮe�C�p�G Access Manager �ɯŨ�o�檩�� 5�A�h�o�檩�� 3 �Χ� Delegated Administrator �]�����ɯŨ�o�檩�� 5�A�~��w�� Messaging Server �M Calendar Server �G�بϥΪ̡C���L�A�ëD�@�w�n�N Messaging Server �M Calendar Server �����]�ɯŨ�o�檩�� 5�C
�P�o�檩�� 4 �D���x�@�ˡA�o�檩�� 5 Access Manager �D���x�]�䴩�d��M�¦��o��ؼҦ��C��O�A�p�G�z�w�N Access Manager �t�m���b�¦��Ҧ��U���A�h���i�ϥΦb�o�檩�� 2 �M�o�檩�� 3 ���o�檺���¦��D���x�C
Access Manager �̩ۨ�
Access Manager ���L Java ES ���̩ۨʥi��|�v�T�ɯũM���s�t�m Access Manager �n�骺�{�ǡC�Ҧp�AAccess Manager �����Υ\��W���ܧ�i��ݭn Access Manager �̿ध���ɯŪ����C�ɯŦ������ݨD��M����骺�ɯŸ�|�C
Access Manager ��U�C Java ES ���̩ۨʡG
- �@�Τ���C Access Manager ��S�w Java ES �@�Τ��̩ۨ� (�аѾ\�� 1-9)�CAccess Manager �ɯťi��̿��o�Ǧ@�Τ��ɯŪ����C
- Web �e���C Access Manager �� Web �e���A�Ȩ㦳�j��ʪ��̩ۨʡA�o�ǪA�ȥi�� Java ES Web Server�BJava ES Application Server �Ψ�O�t�� Web �e�� (�Ӧ� Weblogic �M WebSphere) ���ѡC�ɯ� Access Manager �i��ݭn�N�Ω� Access Manager �D���x�λ{�� UI ���ۭq JSP �E����ɯū᪺ Access Manager ��ҡC
- Directory Server�C Access Manager �� Directory Server ���j��ʪ��̩ۨʡA��̥Ω��x�s�t�m��ƩM�ϥΪ̸�ơC�]���AAccess Manager �ɯťi��ݭn����ؿ�Ҧ��C
Web �e���ɯŤ��
Access Manager �i���p�� Web Server �� Application Server ���Ѫ� Web �e�����C�o�ˡA��Ҧb�� Web �e���i��]�ݭn�ɯŨ�o�檩�� 5�A�ϱo Access Manager ���ɯŧ�[����C�N�o�@�I�Ө��A���@�ǥi� Web �e���ɯŤ�סA�C�|��U�?�C
�ɯ� Access Manager (�Ҧp�ϥ� amconfig �{���ɮ�) �Ӭ��� 14-4 �����X�A�ɯŤ�״��ѾA��ȮɡA�S�O�O�n�i�� Web �e�������j�����ɯŮɡA�����ܤp�ߡC
��ɯ�
�b��ɯŤ��AAccess Manager �P�@�~�t�Χ��|�i��ɯ� (�p��ɯšJ Java ES �P�@�~�t�γn�����ҭz)�A�ӳo�ؤɯŤ�k��� Access Manager ����䴩�C
�]���A�p�G�z�J��ݭn�i����ɯŪ����p�A��������@�~�t�Φw�˩ΤɯšA�M��A���s�w�˨å��s�t�m Access Manager�C
�q Java ES �o�檩�� 4 �ɯ� Access Manager���`�]�A�N Access Manager �q Java ES 2005Q4 (�o�檩�� 4) �ɯŨ� Java ES 5 (�o�檩�� 5) �������T�C���`�[�\�H�U�D�D�G
²��
�N Java ES �o�檩�� 4 Access Manager �ɯŦܵo�檩�� 5 �ɡA�ЦҼ{�ɯŵ{�Ǫ��U�C�h���G
- �@��ɯŤ�k�C ���ɯŮɡA�����e���G�i���ɮת����A�M����s�w�˵o�檩�� 5�C���ѤF�@�� ampre71upgrade �{���ɨӲ����o�檩�� 4 �����A�M��ϥ� Java ES �w�˵{���Ӧw�˵o�檩�� 5�C���ۨϥ� amconfig �{���ɨӭ��s�t�m Access Manager�A�èϥ� amupgrade �{���ɨӾE���ؿ�Ҧ��C
- �ɯŬ̩ۨʡC Access Manager ��\�h Java ES �@�Τ���㦳�̩ۨ� (�аѾ\�� 1-9)�A��z�ɯ� Access Manager �ɡAJava ES �w�˵{���|�N�Ҧ��o�Ǧ@�Τ���۰ʤɯŨ�o�檩�� 5�C�o�]�A���s Java ES �ʵ�[�c���䴩�A�o�@�[�c�ݭn�o�檩�� 4 Access Manager �Ҥ��ݭn���@�Ǧ@�Τ���C
���~�A�o�檩�� 5 Access Manager �٨̿� Directory Server �M Web Server (�� Application Server �Ψ�O�t�� Web �e��)�A�pAccess Manager �̩ۨ����ҭz�C���L�A�o�ǨëD�w�ʪ��ɯŬ̩ۨʡF��N Access Manager �ɯŦܵo�檩�� 5 �Ө��A�ɯųo�Ǥ���O��ܩʪ��C
- �V�U�ۮe�ʡC �o�檩�� 5 Access Manager �P�o�檩�� 4 �ۮe�A��P�� Access Manager �o�檩�����ۮe (�аѾ\�ۮe�ʰ��D)�C
- �ɯŦ^�_�C �S�����ε{���i�H�ΨӦ^�_ Access Manager �ɯšC�ƹ�W�A�ѩ�N Access Manager �^�_�ܨ��l���A�һݪ����s�t�m���ƹL�h�A�����^�_�ä��i��C�̨Ϊ��^�_�覡�O�ϥγƥ�t�m�ɮإߥ���w�ˡA�é���ɯŤ��e�惡����w�˶i���աC�o�ˡA�z�N�i�H�b���n�����p�U�_�쬰�ӥ���w�ˡC
- ���x���D�C �ɯ� Access Manager ���@���k�b Solaris �� Linux �@�~�t�ΤW���ۦP�C�H�U�{�ǫ�X���x�S�w����O���ɮצ�m (�p�A��)�C
����ɯŵo�檩�� 4 Access Manager
���`�y�z�p����q Java ES �o�檩�� 4 �� Java ES �o�檩�� 5 �� Access Manager ����ɯšG
�ɯūe�@�~
�ɯ� Access Manager ���e�A3�Ӱ��U�C�@�~�G
���ҥثe������T
�z�i�ϥΤU�C��O���� Access Manager ���ثe�����G
�ɯ� Access Manager �̤ۨ���
�@�몺��ij�O�N�q���t�� (�ιB�����) �����Ҧ� Java ES ���ɯŨ� Java ES �o�檩�� 5�CAccess Manager ��@�Ǧ@�Τ��w�ʪ��ɯŬ̩ۨ� (�аѾ\�� 1-9)�C
�p�G�z��ܤɯ� Access Manager ���~����̤ۨ���A3�b�z�ɯ� Access Manager ���e��U�C���� (��L���i��w�g�ɯŪ�����) ���C�@�Τ��ɯųq�`�i�� Java ES �w�˵{���۰ʧ����C
- �@�Τ���C �b�ɯ� Java ES �@�Τ��������ѤF�N Java ES �@�Τ���P�o�檩�� 5 �P�B����ܡC��O�A��z�N Access Manager �ɯŨ�o�檩�� 5 �ɡAAccess Manager �һݭn���Ҧ��@�Τ���|�� Java ES �w�˵{���۰ʤɯšC
- Directory Server (�D�w�ʤɯŬ̩ۨ�)�C �b�� 5 ���uDirectory Server�v�����ѤF�N Directory Server �ɯŨ�o�檩�� 5 ����ܡC
- Web �e���n�� (�D�w�ʤɯŬ̩ۨ�)�C �b�� 7 ���uWeb Server�v�M�� 11 ���uApplication Server�v���'O���ѤF�ɯ� Web Server �� Application Server ����ܡC
�p�G���b�ɯ� Access Manager ���e�ɯ� Web �e���n��A�ɯŵ{�� (�ϥ� amconfig �{����) �|�N Access Manager �t�m�í��s���p��{���� Web �e���C
�ƥ� Directory Server ���
Access Manager �ɯŵ{�Ƿ|�ϥέק� Directory Server �Ҧ����{���ɡC�]���A�b�ɯ� Access Manager ���e�A�Х�ϥ� Directory Server Console �Ϋ�O�椽�ε{�� (�p db2bak) �ƥ� Directory Server ��ơC�i�H�ϥ� db2ldif �ӳƥ� Access Manager �Ҧ��M�ؿ��T�𪬵��c (DIT)�C
�p�����ƥ� Directory Server ����h��T�A�аѾ\�uSun Java System Directory Server Enterprise Edition 6.0 �z��n�v(http://docs.sun.com/doc/820-0294)�C
�ƥ� Access Manager �o�檩�� 4 �t�m��T
�]�����s�t�m�o�檩�� 5 Access Manager �n��ݭn���s�t�m�o�檩�� 4 �����A�ҥH�N�t�m�ɮ׳ƥ��w����m�ܭ��n�C3�ӳƥ�U�C�ɮסG
�ƥ� Web �e���ۭq�ɮ�
�p�G���� Access Manager �ҰѷӪ���� Web �e���ۭq�ɮסA�h3�ӳƥ�̡C�o�Ǧۭq���i��]�A�H�U���e�G
�ƥ�o�檩�� 4 Access Manager ���O��M�����ɮ�
���F�*R�t�Ϊ��A��T�A�ƥ�O��M�����ɮץH�K�O�@�ئn�����k�C�o���ɮצ��U�C��m�G
�ƥ�ۭq���g���ɮ�
�p�G�z�� Java ES �w�˵{���Ҧw�˪����g���ɮi��F���ۭq�A�ηs�W�F Java ES �w�˵{���ҥ��w�˪��s�y�����g�ơA�h3�ӳƥ�o�Ǧۭq���C�o�Ǧۭq���i��]�A�H�U���e�G
��o���n���t�m��T�M�K�X
�Y�n�ɯ� Access Manager�A�������ѯS�w���t�m��T�A�]�A�G
�ɯŵo�檩�� 4 Access Manager
�N Access Manager �n��ɯŨ� Java ES �o�檩�� 5 �]�A���s�t�m Access Manager �M�E�� Access Manager ��ƪ��{�ǡC
�ɯźK�n
�ɯ� Access Manager ���{�ǥ]�A�U�C�B�J�G
- ���� Java ES �o�檩�� 4 ������ Access Manager�C�ϥ� ampre71upgrade �{���ɡC
- �p�G�o�檩�� 5 ���ɯŻݭn���g�ơA�в����o�檩�� 4 ���g�ƮM�˳n��C���B�J������ʰ��C
- �w�� Java ES �o�檩�� 5 ������ Access Manager�C�ϥ� Java ES �w�˵{���ÿ�� [�H��t�m] �ﶵ�C
- ���p Access Manager�A���s�t�m�A�A���s���p�� Web �e�����C�ϥ� amconfig �{���ɡC
- ��s�ؿ�c�M�Ҧ��C�ϥ� amupgrade �{���ɡC
�U�C�{�Ǥ���o�ǨB�J�v�@�i�满��C
�ɯŵ{��
- �ɯ� Access Manager Mobile Access �n��C
�ݭn�ǥѬ��o�檩�� 4 �����w�˭ɵ{���Ӥɯ� Access Manager Mobile Access �n��C�U����ܤF�һݪ��ɵ{���G
�� 14-6 �Ω�ɯ� Access Manager Mobile Access �n�骺�ɵ{��1
����
�ɵ{�� ID�GSolaris 9 �M 10
�ɵ{�� ID�GLinux
Mobile Access �n��
119530-05 (SPARC)
119531-05 (x86)
119532-05
1�ɵ{�����q�����X�O�ɯŨ� Java ES �o�檩�� 5 ���̧C�ݨD�C�p�G����s���q���i�ΡA�ШϥΧ�s���q���A�Ӥ��n�ϥΪ?���q���C
- �ϥ��� 14-6 �����ɵ{�����X��o�һݪ��ɵ{���C
�i�q�U�C��m�N�ɵ{���U��� /tmp�Ghttp://sunsolve.sun.com/pub-cgi/show.pl?target=patches/patch-access
- ���ɵ{�� README �ɮפ��ҫ�ܪ����ɫe�{�ǡC
- ��o�ɵ{���N�|�ШD���U�C�Ѽƪ��ȡG
- �M���� 14-6 �����ɵ{���C
�b Solaris �W�G
patchadd /tmp/patch_ID�b Linux �W�G
./update���ɵ{�� README �ɮפ��ҫ�ܪ����ɫ�{�ǡC
- ���� Java ES �o�檩�� 4 ������ Access Manager�C
- �H�W�ŨϥΪ̨���n�J��N�o�檩�� 4 Access Manager ���q���A�Φ����W�ŨϥΪ̡C
su -
- �N�ؿ��ܧ� Java ES �o�檩�� 5 �o�檫���� os_arch/Product/identity_svr/Tools �ؿ�A�䤤 os_arch 3�P�z�Ҧb���x�۲šA�Ҧp Solaris_sparc�C
- ��o ampre71upgrade �{���ɱN�|�ШD���U�C�Ѽƪ��ȡG
�� 14-8 Access Manager �t�m�ѼơGampre71upgrade
�Ѽ�
��
Directory Server �D��
�]�w�����X�檺�W�١Ghostname.domain
Directory Server �s����
��w�D SSL �s����1
�w�]�ȡG389���h�z�� DN
�w�]�ȡGuid=amadmin,ou=People,default_org_DN
���h�z��K�X
�x�s�ƥ��ɮת��ؿ�
�w�]�ȡGAccessManager-base
1�p�G��w Directory Server SSL �s���� (�p�w�] SSL �� 636)�A�ɯūe�{�DZN�L�k���Q�����C
- �T�w Directory Server ���b���A�p�G�����A�бҰʥ��C
- ��� ampre71upgrade �{���ɡC
./ampre71upgrade
�ӵ{���ɷ|�ƥ� Access Manager �t�m�ɮסA�ò����o�檩�� 4 �M�˳n�� (���g�ƮM�˳n�饲���̷Ӧp�U���B�J 3 ��ʲ���)�C
- �p�G�o�檩�� 5 ���ɯŻݭn���g�ơA�в����o�檩�� 4 ���g�ƮM�˳n��C
�b�W���B�J 2 ����檺 ampre71upgrade �{���ɨä��|�������g�ƮM�˳n��A�]���z������p�U��k��ʲ������̡C
�b Solaris �W�G
- �ˬd���g�ƮM�˳n��C
pkginfo | grep SUNWaml
pkginfo | grep SUNWamclnt
pkginfo | grep SUNWamdistauth- �����b�W���B�J a ����쪺��g�ƮM�˳n��C
pkgrm SUNWamlLocale
pkgrm SUNWamclntLocale
pkgrm SUNWamdistauthLocale�b Linux �W�G
- �ˬd���g�� RPM�C
rpm -qa | grep sun-identity-sdk-*
rpm -qa | grep sun-identity-clientsdk-*
rpm -qa | grep sun-identity-distauth-*- �����b�W���B�J a ����쪺��g�� RPM�C
rpm -e sun-identity-sdk-Locale-*
rpm -e sun-identity-clientsdk-Locale-*
rpm -e sun-identity-distauth-Locale-*- �w�� Java ES �o�檩�� 5 ������ Access Manager�C
���U�C�B�J�G
- �b�N�o�檩�� 4 Access Manager ���q���W�Ұ� Java ES �w�˵{���C
cd Java ES Release 5 distribution/os_arch
./installer�䤤 os_arch �P�z�Ҧb���x�۲šA�Ҧp Solaris_sparc�C(�w���O�椶���ϥ� installer -nodisplay �ﶵ�C)
��ܥX [�w��] �M [���v�X��] ��������A�z�N�|�ݨ줸�����C(�?���i�� Java ES �w�˵{�������ɯŪ��w�ˤ���ɡA���̪����A�|��ܬ� [�i�ɯ�]�C)
- �q����������� Access Manager�C
- ��w�w�˵o�檩�� 4 �����Ӧw�˥ؿ�C
- ��� [�H��t�m] �ﶵ�C
- �p�����n�A�п��w�˥��g�ƮM�˳n�骺�ﶵ�C
- �w�˧����ɵ��� Java ES �w�˵{���C
- ���s�ۭq�Ω� Access Manager �� JSP�C
���s�M�Φb�ƥ� Web �e���ۭq�ɮ����x�s���B�Ω� Access Manager �D���x�M�{�ҨϥΪ̤��� (UI) ���o�檩�� 4 �ۭq JSP �]�w�C
�M��N�ۭq JSP �ɮƻs�쥿�T���ؿ�G
- �d��/�¦� Access Manager �D���x
AccessManager-base/web-src/services/console- ���¦� Access Manager �D���x
AccessManager-base/web-src/applications/console- �{�� UI�GAccessManager-base/web-src/services/config/auth/default �� AccessManager-base/web-src/services/config/auth/default_Locale (�䤤 Locale ��ܻy����ҡA�p ja)
�p�ݧ�h��T�A�аѾ\�uSun Java System Access Manager 7.1 Developer's Guide�v(http://docs.sun.com/doc/819-4675)�C
- ���p Access Manager�A���s�t�m�A�A���s���p�� Web �e�����C
�ǥѰ�� amconfig �{���ɰt�m Access Manager�A�H�P�S�w Web �e���t�X�ϥΡCamconfig �{���� (�M���� amsamplesilent �d����J�ɮ�) ���H�U�ؿ�G
AccessManager-base/bin
�p����� amconfig �{���ɩM amsamplesilent �d���ɮת���T�A�аѾ\�uSun Java System Access Manager 7.1 �z��n�v(http://docs.sun.com/doc/820-0840)�C
���U�C�B�J�A���s�t�m Access Manager �ñN�䭫�s���p�� Web �e���G
- �p�G��ܤɯ� Web �e���n�� (�p�ɯ� Access Manager �̤ۨ������ҭz)�A�нT�w�w�����ɯšC
- �T�w Web �e�����z��ҥ��b��椤�A�B�B�� amconfig �{���ɩҤ䴩���Ҧ��U�A�p�U��ҫ�ܡG
- �p�G Web �e���b SSL �Ҧ��U���A�нT�w�e���� SSL ���ҩ|���L�aA���M���ġC
- �p�G�N Access Manager ���p��o�檩�� 5 Web Server ���A�а��λP Access Manager ����ۦP��Ҥ��B�̿�� Access Manager ���Ҧ� Java ES ����C
�o�Ǥ���i��O�Ҧp Portal Server ������ΨҦp Communications Express�BInstant Messaging �� Delegated Administrator �� Sun Java Communications Suite ����C
�{�Ǧp�U�G
- �ˬd Directory Server �ά�3�� Web �e���O�_���b���C
- �إߤ@�Ӱ�� amsamplesilent �d����J�ɮת� amconfig ��J�ɮסG
cp amsamplesilent config-file
(�b����B�J���A���] config-file ���P amsamplesilent �ۦP���ؿ�C)
- �b config-file ���]�w�t�m�ѼơC
�ݭn���T�]�w�Ҧ��ѼơC�@�ǭȥi�H�� AMConfig.properties �ɮE���A�۸�U�A��L�ȫh�O�ɯŵ{�Ǫ��M�έȡA�p�U��ҥܡC
�� 14-10 Access Manager �t�m�ѼơGamconfig
�Ѽ�
��
�ɯŰѼ�
DEPLOY_LEVEL
�]�w�� 26 (��ܨ��p) ��
�]�w�� 1 (��ܭ��s�t�m�ó��p)DIRECTORY_MODE
�]�w�� 5
AM_REALM1
�p�G�ҥΤF�¦��Ҧ��A�h�]�w�� disabled
�p�G�ҥΤF�d��Ҧ��A�h�]�w�� enabled
�w�]�ȡGenabledJAVA_HOME
�]�w�� JDK �o�檩�� 5 �ؿ�G/usr/java/jdk1.5.0_04/
WEB_CONTAINER
�w�� Web Server 7.x �]�w�� WS
�w�� Web Server 6.x �]�w�� WS6
�w�� Application Server 8.x �]�w�� AS8
�w�� IBM WebSphere 5.x �]�w�� WAS5
�w�� BEA WebLogic 8.x �]�w�� WL8
�B�u��g��3�� config-file �Ϭq�CWS_INSTANCE
(�Y�ϥ� Web Server 7.x ���� Web �e��)�]�w���j�p�g�۲Ū���Ұt�m�ؿ�W�١Ghttps-configName/
���ؿ���H�U��|���GWebServer7Config-base/https-configName/
WS61_INSTANCE
(�Y�ϥ� Web Server 6.x ���� Web �e��)�]�w���j�p�g�۲Ū���Ұt�m�ؿ�W�١Ghttps-instanceName
���ؿ���H�U��|���GWebServer6-base/https-instanceName/
AS81_INSTANCE
(�ϥ� Application Server 8.x ���� Web �e��)�]�w�� Application Server 8.x instanceName
�w�]�ȡGserver
AS81_INSTANCE_DIR
(�ϥ� Application Server 8.x ���� Web �e��)�]�w����Ҫ� Application Server 8.x ���ؿ�A�w�]�Ȭ�
AppServer8Config-base/domains/domain1
AS81_DOCS_DIR
(�ϥ� Application Server 8.x ���� Web �e��)�]�w����Ҫ� Application Server 8.x ���ڥؿ�A�w�]�Ȭ�
AppServer8Config-base/domains/domain1/docroot
�E���� AMConfig.properties
SERVER_PROTOCOL
com.iplanet.am.server.protocol
SERVER_PORT
com.iplanet.am.server.port
SERVER_HOST
com.iplanet.am.server.host
DS_HOST
com.iplanet.am.directory.host
DS_PORT
com.iplanet.am.directory.port
ROOT_SUFFIX2
com.iplanet.am.defaultOrg
CONSOLE_DEPLOY_URI
com.iplanet.am.console.deploymentDescriptor
SERVER_DEPLOY_URI
com.iplanet.am.services.deploymentDescriptor
PASSWORD_DEPLOY_URI
com.sun.identity.password.deploymentDescriptor
AM_ENC_PWD2
am.encryption.pwd3
1�p�ݦ���d��M�¦��Ҧ�����h��T�A�аѾ\�ۮe�ʰ��D�C
2���Ѽƪ���3�P���e������ Access Manager �ۦP�C
3�p�G�P�ɳ��p�F Access Manager �M Access Manager SDK�A�h��� Access Manager ��ҤΨ���� Access Manager SDK ��ҡA���S�ʪ��ȥ����ۦP�C
�Y����L�ѼơA���D�n�ܧ� Web �e���αK�X�A�_�h�д��ѭn�ɯŪ��o�檩�� 4 �t�m���ϥΪ����ǭȡC�Ҧp�A�p�G�z�w�g�N Web Server �ɯŨ�o�檩�� 5�A�д��ѤU�C�ȡG
- ��� amconfig �H���p Access Manager
�N config-file ���� DEPLOY_LEVEL �ȳ]�w�� 26�C
cd /AccessManager-base/bin
./amconfig -s AccessManager-base/bin/config-file- �ˬd�H�T�w Common Agent Container ���b��椤�C
netstat -an | grep 11163
�p�G�ä��b��椤�A�бҰʥ��C
/usr/sbin/cacaoadm start
- ��� amconfig �H���s�t�m Access Manager �ñN�����p�� Web �e�����C
�N config-file ���� DEPLOY_LEVEL �ȳ]�w�� 1�C
cd /AccessManager-base/bin
./amconfig -s AccessManager-base/bin/config-file- ��s�ؿ�c�M�Ҧ��C
�o�檩�� 5 Access Manager �P�o�檩�� 4 ���ؿ�c�æs�A��ק�䵲�c�~��䴩�o�檩�� 5 ���\��C�ǥѰ�� amupgrade �{���ɡA�N Access Manager �ؿ�c�M�Ҧ���s��o�檩�� 5�A�ӵ{���ɦw�˦b�U�C�ؿ�G
- �b Solaris �W�G
AccessManager-base/upgrade/scripts- �b Linux �W�G
AccessManager_base/identity/upgrade/scripts- ��o amupgrade �{���ɱN�|�ШD���U�C�Ѽƪ��ȡG
�� 14-12 Access Manager �t�m�ѼơGamupgrade
�Ѽ�
��
Directory Server �����X�檺�D��W��
�]�w�����X�檺�W�١Ghostname.domian
Directory Server �s����
��w�D SSL �s����1
�w�]�ȡG389�ؿ�z�� DN
�w�]�ȡGcn=Directory Manager
�ؿ�z��K�X
���h�z�� DN
�w�]�ȡGuid=amadmin,ou=People,default_org_DN
���h�z��K�X
�ҥνd��Ҧ�
(��q�o�檩�� 4 �d��Ҧ��ɯŮɤ��|�ШD���ѼƭȡC)Y/N�G�O��ܱҥνd��Ҧ��A�ñN�A�ȸ�ƾE���ܷs���d��𪬵��c2�C�_ (�w�]��) ��ܪA�ȸ�ƫO�d�b�¦��Ҧ����C
1������w�P�w�] SSL �� 636 ���P�� Directory Server SSL �s����C
2�аѾ\�E���ܽd��Ҧ��C
- ��� amupgrade �{���ɡC
cd AccessManager-base/upgrade/scripts
./amupgrade�p�G�ɯŦ��\�A�{���ɷ|��� [�ɯŤw����]�C
- �ˬd�U�C�ɯŰO���ɮסA�H�A�����ؿ�Ҧ������T�G
�b Solaris �W�G
/var/sadm/install/logs/
Sun_Java_System_Access_Manager_upgrade_dit_log.mmddhhmm�b Linux �W�G
/var/log/Sun_Java_System_Access_Manager_upgrade_dit_log.mmddhhmm- �ҥΦb�B�J d �����Ϊ����C
- ���s�Ұʳ��p�F Access Manager �� Web �e���C
- �Ұ� Access Manager�C
���s�Ұʳ��p�F Access Manager �� Web �e���C
���� Access Manager �ɯ�
�����ɯŵ{�Ǥ���A�Ы�p�U�覡���ҤɯŬO�_���\�G
AccessManager-base/bin/amadmin --version
�аѾ\�� 14-5 ������X�ȡC
- �ǥ��ˬd /var/sadm/install/logs �ؿ�U�C�w�˵{���O���ɨ��˵�ɯŪ����A�G
- �ǥѦb��� amupgrade �{���ɮ��ˬd�ݾ������~���˵� Access Manager �E�������A�C
�P�ɡA���ˬd /var/sadm/install/logs �ؿ�U�C�O���ɡG
Sun_Java_System_Access_Manager_upgrade_dit_log.timestamp
- �˵� Access Manager ����Ƹ��ɮפ��O�_����~�C
�ɮצ��b AMConfig.properties �ɮת� com.iplanet.services.debug.directory �S�ʤ���w����m�C�w�]�Ȭ��G
�b Solaris �W�G
/var/opt/SUNWam/debug�b Linux �W�G
/var/opt/sun/identity/debug�ɯū�@�~
�Ъ`�N�B�z�H�U���p�һݭn���ɯū�{�ǡG
�E���ܽd��Ҧ�
�p�G�b�N Access Manager �ɯŨ�o�檩�� 5 �ɤw�g�E����d��Ҧ��A(��Y�A��ϥ� amupgrade �ӧ�s�ؿ�c�M�Ҧ��ɡA�ҥνd��Ҧ��Ѽƪ��Ȭ� Yes)�A�h���H�U�B�J�G
�w���ťܼаO�y��
�p�G���b�ϥΦw���ťܼаO�y�� (SAML) �A�ȡA�h�����ϥ� Access Manager �D���x�ӼW�[�M�ҥ� SAML �{�ҼҲաC�p�ݦ���إ� SAML �{�ҼҲչ�Ҫ���T�A�аѾ\�uSun Java System Access Manager 7.1 �z��n�v(http://docs.sun.com/doc/820-0840)�C
�^�_�ɯ�
�����ѥΩ�N Access Manager �^�_���ɯūe���A���{���ɡC�ӵ{�ǥ����ϥΧ@���ɯūe�@�~���@�ӳƥ� Access Manager ��Ƥ�ʰ�� (�аѾ\�ƥ�o�檩�� 4 Access Manager ���O��M�����ɮ�)�C���ɯŬO�����{���C
�@�ئ^�_��k�O���s�w�˵o�檩�� 4 �ñN�Ҧ��ƥ�t�m�ɮE���쥦�̪����T��m�C�t�@�ؤ�k�O�b�ɯūe�ϥγƥ�t�m�ɮإߥ���t�ΡA�é�xդɯūe�惡����t�ζi���աC
�h����Ҥɯ�
�b�Y�dz��p�[�c���A�|�N Access Manager ���p�b�h�ӹq���t�ΤW�A�H���Ѱ��i�ΩʩM���i�ʡC
���`�Ǥɯ� Access Manager ��ҦӤ����_�A�ȩ����O�H�̩ҧƱ檺�C���`�Q�ױq�o�檩�� 4 Access Manager ��o�檩�� 5 ��榹�����i���ɯŪ��{�ǡC
�Ƶ�
�ثe�o�檩�����䴩�ɯŦb�ۦP�D��t�ΤW�w�˪� Access Manager ���h����ҡC�p�G�z�b�ۦP�D��W�㦳�h����ҡA�b�z�ɯťD�n��ҫ�A�z�������s�إߨ�L����ҡC
�N�ϥΤU�ϩҥܪ����p�[�c�ӻ���i���ɯŪ��{�ǡC
�� 14-1 �h�� Access Manager ��Ҫ����p�[�c�d��
�b���[�c���A�z�L�t��ž��s��h�� Access Manager ��ҡA�ӳo�ǹ�Ҷi�@�B�s��h�ӥD��A���ƻs (MMR) �]�w���ؿ�C��M��L Directory Server �ƻs��פ]�O���\���A�� MMR �O���i�ΩʤΩ��i�ʥؿ�A�Ȫ��N��C�b�� 14-1 ���AAccess Manager �M Directory Server ���h����Ҥw�զ��s�աA�H�K���ɯŵ{�Ƕi�满��C�Ҧp�AAccess Manager 2 �N�N�� Access Manager ���ĤG�Ө�� n �ӹ�ҡC
���q�o�檩�� 4 Access Manager ��o�檩�� 5 ���i���ɯŪ��{�ǥH�U�C���q�ʬ���¦�G�o�檩�� 5 Access Manager �M�o�檩�� 4 Access Manager ��ҥi�H�æs�A�åi�w��P�@�ؿ�P�ɰ��A��e���O�ؿ�Ҧ��|����s�ܵo�檩�� 5�C
�]���A�w���V��@ Directory Server ��Ҫ� Access Manager ��ҡA�z�i�H�N�ؿ�Ҧ�����s�����Ҧ� Access Manager ��ҬҤw�ɯŬ���A�H��溥�i���ɯšC
�z�i�H�ϥΥH�U�{�ǰ��q�o�檩�� 4 Access Manager ��o�檩�� 5 �����i���ɯšG
- �b�Ҧ� Access Manager ��ҤW�ƥ�o�檩�� 4 ���t�m��T�C
�аѾ\�� 14-3�C
- �ɯ� Access Manager 1�C
- �b�t��ž������� Access Manager 1�C
�ШD���|�A�Q��Ѧ� Access Manager 1�C
- ����ɯ� Access Manager 1�C
�p�ɯŵo�檩�� 4 Access Manager ���ҭz�ɯ� Access Manager�A���s�ؿ�c�P�Ҧ� (�B�J 7)�C
- �b�t��ž����ҥ� Access Manager 1�C
- �ɯ� Access Manager 2 �� Access Manager n�C
���F²��_���A�b����B�J���A�uAccess Manager 2�v�N��� Access Manager 2 �� Access Manager n�C
- �b�t��ž������� Access Manager 2�C
�ШD���|�A�Q��Ѧ� Access Manager 2�C
- ����ɯ� Access Manager 2�C
�p�ɯŵo�檩�� 4 Access Manager ���ҭz�ɯŨC�@�� Access Manager ��ҡA���s�ؿ�c�P�Ҧ� (�B�J 7)�C
- �b�t��ž����ҥ� Access Manager 2�C
�ШD�|���s��Ѧ� Access Manager 2�C
- ��s Directory Server 1 ���ؿ�c�M�Ҧ��C
�p�B�J 7 ���ҭz�ϥ� amupgrade �{���ɡCAccess Manager 1 �� n �b��s�� Directory Server 1 ���Ҧ���A�N�|�~��B�@�C
�Ȥɯŵo�檩�� 4 Access Manager SDK
�b�Y�dz��p�[�c���A�|�N Access Manager SDK ����w�˦b�@�өΧ�h�ӹq���t�ΤW�A�Ӥ��b�o�ǹq���W�w�˨�L Access Manager ����CAccess Manager SDK �R�� Access Manager �����ݤ����A�]�������w�� Access Manager ���@�~�Ҧ� (�¦��νd��) �N�䭫�s�t�m�C
Access Manager SDK �M�N���������ݤ����ϥΪ����� Access Manager ��3�ɯŨ�o�檩�� 5�C��O�A�o�檩�� 5 Access Manager �V�U�ۮe�o�檩�� 4 Access Manager SDK�A�]���q�`3����ɯ� Access Manager�A�M��A�b��L�q���W�ɯ� Access Manager SDK�C
���� Access Manager �����ݤ����A���ݭn�t�m SDK �N��s�� Directory Server�C�p�G���b�ϥ� Access Manager SDK �Ӥ䴩 Web ���� (�p Portal Server�A���̿� Web �e���A��)�A�h�����w���3�� Web �e���Ӱt�m Access Manager SDK�C���L�AAccess Manager SDK �]�i�H�䴩�D Web ����A�B���ݭn Web �e���C
���W�z�S�ʡA�ɯ� Access Manager SDK ���{�ǬO Access Manager ����ɯŵ{�Ǫ��l���C
���`�y�z�p����q Java ES �o�檩�� 4 �� Java ES �o�檩�� 5 ���� Access Manager SDK �ɯšG
�ɯūe�@�~
���F�P Directory Server �M Access Manager �z�u�� JSP �ۭq����@�~�~�AAccess Manager SDK ���ɯūe�@�~�P Access Manager ����ɯŪ��ɯūe�@�~�ۦP (�аѾ\�ɯūe�@�~)�CAccess Manager SDK �һݪ��ɯūe�@�~�p�U�G
�ɯŵo�檩�� 4 Access Manager SDK
���F�P���g�ơBAccess Manager �z�u�� JSP �ۭq�M�E���ؿ�Ҧ�����{�ǥ~�AAccess Manager SDK ���ɯŵ{�ǻP Access Manager ����ɯŪ��ɯŵ{�ǬۦP�C
- ���� Java ES �o�檩�� 4 ������ Access Manager SDK�C
���F�u���� Access Manager SDK ���~�A��L�ʧ@�п�`���� Java ES �o�檩�� 4 ������ Access Manager ������ܡC
- �w�� Java ES �o�檩�� 5 ������ Access Manager SDK�C
���F�u�w�� Access Manager SDK ���~�A��L�ʧ@�п�`�w�� Java ES �o�檩�� 5 ������ Access Manager ������ܡC
- ���s�t�m Access Manager SDK�C
���F��H�U�ҭz�]�w DEPLOY_LEVEL �ѼƥH�~�A��L�ʧ@�п�`���p Access Manager�A���s�t�m�A�A���s���p�� Web �e����������ܡG
���� Access Manager SDK �ɯ�
���T�ؤ�k�i�H���� Access Manager SDK �ɯŬO�_���\�G
�ɯŦ^�_
�����ѥΩ�N Access Manager �^�_���ɯūe���A���{���ɡC�ӵ{�ǥ����ϥΧ@���ɯūe�@�~���@�ӳƥ� Access Manager ��Ƥ�ʰ�� (�аѾ\�ƥ�o�檩�� 4 Access Manager ���O��M�����ɮ�)�C���ɯŬO�����{���C
�@�ئ^�_��k�O���s�w�� R4 �ñN�Ҧ��ƥ�t�m�ɮE���쥦�̪����T��m�C�t�@�ؤ�k�O�b�ɯūe�ϥγƥ�t�m�ɮإߥ���t�ΡA�é�xդɯūe�惡����t�ζi���աC
�q Java ES �o�檩�� 3 �ɯ� Access Manager���F���h����ҤɯŪ��覡�H�~�A�N Java ES 2003Q1 (�o�檩�� 3) Access Manager �� Access Manager SDK �ɯŨ�o�檩�� 5 ���{�ǻP�N�o�檩�� 4 Access Manager �� Access Manager SDK �ɯŨ�o�檩�� 5 ���{�Ǭۦ�C
�ɯŵo�檩�� 3 Access Manager
�Y�n�N�o�檩�� 3 Access Manager �� Access Manager SDK �ɯŨ�o�檩�� 5�A���F�N�ѷӵo�檩�� 4 ���a���N���o�檩�� 3 �~�A��L�п�`�q Java ES �o�檩�� 4 �ɯ� Access Manager ������ܡC
�h����Ҥɯ�
�b�Y�dz��p�[�c���A�|�N Access Manager ���p�b�h�ӹq���t�ΤW�A�H���Ѱ��i�ΩʩM���i�ʡC
���`�ǤɯŦh�� Access Manager ��ҦӤ����_�A�ȩ����O�H�̩ҧƱ檺�C���`�Q�ױq�o�檩�� 3 Access Manager ��o�檩�� 5 ��榹�����i���ɯŪ��{�ǡC
�Ƶ�
�ثe�o�檩�����䴩�ɯŦb�ۦP�D��t�ΤW�w�˪� Access Manager ���h����ҡC�p�G�z�b�ۦP�D��W�㦳�h����ҡA�b�z�ɯťD�n��ҫ�A�z�������s�إߨ�L����ҡC
�N�ϥΤU�ϩҥܪ����p�[�c�ӻ���i���ɯŪ��{�ǡC
�� 14-2 �h�� Access Manager ��Ҫ����p�[�c�d��
�b���[�c���A�z�L�t��ž��s��h�� Access Manager ��ҡA�ӳo�ǹ�Ҷi�@�B�s��h�ӥD��A���ƻs (MMR) �]�w���ؿ�C��M��L Directory Server �ƻs��פ]�O���\���A�� MMR �O���i�ΩʤΩ��i�ʥؿ�A�Ȫ��N��C�b�� 14-2 ���AAccess Manager �M Directory Server ���h����Ҥw�զ��s�աA�H�K���ɯŵ{�Ƕi�满��C�Ҧp�AAccess Manager 2 �N�N�� Access Manager ���ĤG�Ө�� n �ӹ�ҡC
���q�o�檩�� 3 Access Manager ��o�檩�� 5 ���i���ɯŪ��{�ǥH�U�C�����¦�G�o�檩�� 5 Access Manager���i�H�P�o�檩�� 3 ���ؿ�c�æs�C��O�A�p�G�ƻs�F Directory Server ��ҡA�p�� 14-2 �ҥܡA����z�i�H�ϥΥH�U�{�ǰ�溥�i���ɯšG
- �b�Ҧ� Access Manager ��ҤW�ƥ�o�檩�� 3 ���t�m��T�C
�аѾ\�� 14-3�C
- �ק� Access Manager 1 ���t�m�C
- �ɯ� Access Manager 2 �� Access Manager n�C
���F²��_���A�b����B�J���A�uAccess Manager 2�v�N��� Access Manager 2 �� Access Manager n�C
- �b�t��ž������� Access Manager 2�C
�ШD���|�A�Q��Ѧ� Access Manager 2�C
- ����ɯ� Access Manager 2�C
�p�ɯŵo�檩�� 4 Access Manager ���ҭz�ɯŨC�@�� Access Manager ��ҡA���s�ؿ�c�P�Ҧ� (�B�J 7)�C
- ���� Directory Server MMR�C
- ��s Directory Server 1 ���ؿ�c�M�Ҧ��C
�p�B�J 7 ���ҭz�ϥ� amupgrade �{���ɡCAccess Manager 1 �N�|�~�`�B�@�A�]�� Directory Server 2 ���Ҧ����|��s�C
- ���s�Ұ� Access Manager 2�C
- �b�t��ž����ҥ� Access Manager 2�C
�ШD�|���s��Ѧ� Access Manager 2�C
- �ɯ� Access Manager 1�C
- �b�t��ž������� Access Manager 1�C
�ШD���|�A�Q��Ѧ� Access Manager 1�C
- ����ɯ� Access Manager 1�C
�p�ɯŵo�檩�� 4 Access Manager ���ҭz�ɯ� Access Manager�A���s�ؿ�c�P�Ҧ� (�B�J 7)�C
- �ҥ� Directory Server MMR�C
�{�b�w�g��s�F Directory Server 2 ���Ҧ� (�M���)�C
- �N Access Manager 1 ���t�m�_�쬰��V Directory Server 1�C
- ���s�Ұ� Access Manager 1�C
- �b�t��ž����ҥ� Access Manager 1�C
�ШD�|���s�Q��Ѧ� Access Manager 1 �H�Ψ�L�Ҧ��ɯŪ� Access Manager ��ҡC
�q Java ES �o�檩�� 2 �ɯ� Access Manager�N Java ES 2004Q2 (�o�檩�� 2) Access Manager �ɯŨ�o�檩�� 5 ���{�ǻP�N�o�檩�� 4 Access Manager �ɯŨ�o�檩�� 5 ���{�Ǭۦ�A�u���X�B���P�A�p�H�U�X�`�ҭz�G
���~�A�N Java ES 2004Q2 (�o�檩�� 2) Access Manager SDK �ɯŨ�o�檩�� 5 ���{�Ǥ]�P�N�o�檩�� 4 Access Manager SDK �ɯŨ�o�檩�� 5 (�аѾ\�Ȥɯŵo�檩�� 4 Access Manager SDK) ���{�Ǭۦ�A�ҥ~���p�]�ۦ�C�p�G�Ȥɯ� Access Manager SDK�A�h���]�t�P���g�ơBAccess Manager �z�u�� JSP �ۭq�M�E���ؿ�Ҧ�����{�ǡC
�o�檩�� 2 Access Manager SDK �M�N���������ݤ����ϥΪ�����o�檩�� 2 Access Manager �������ɯŨ�o�檩�� 5�C���䴩�V�X�ϥεo�檩�� 2 �M�o�檩�� 5 ����C�]���A�Ҧ��q���W���Ҧ��o�檩�� 2 Access Manager �M�o�檩�� 2 Access Manager SDK ��ҳ������ɯŨ�o�檩�� 5�C
�Ƶ�
�p�G�z�n�b Linux ���x�W�q�o�檩�� 2 Access Manager �i��ɯšA�h���������ɯšA�]�N�O Access Manager �M�@�~�t�γ��n�i��ɯ� (�b RHEL 2.1 �W���䴩�o�檩�� 5 Access Manager)�C�p�ݧ�h��T�A�аѾ\��ɯ��C
�ɯūe�@�~
�ɯ� Access Manager ���e�A�а���ɯūe�@�~���y�z���{�ǡA�U���O�@�Ǩҥ~���p�M�ɥR�B�J�C
�ɯ� Access Manager �̤ۨ���
�۸��q�o�檩�� 4 �ɯšA�N�o�檩�� 2 �ɯŨ�o�檩�� 5 ���ɯūe�@�~�ݭn�N�Ҧ��@�Τ��� (�аѾ\�� 1-9) �M Access Manager �̿����Ҧ����~����ɯŨ�o�檩�� 5�C
�ɯ� Access Manager �̤ۨ���ɡA3�ӫ�ӤU�C���Ǥɯť��̡A�B�����b�ɯ� Access Manager ���e�i��C�i�H���L�i��w�ɯŹL�����̩ۨʡC
- �@�Τ���C �b�� 2 ���u�ɯ� Java ES �@�Τ���v�����ѤF�N Java ES �@�Τ���P�o�檩�� 5 �P�B����ܡC��O�A��z���o�檩�� 5 Access Manager �����s�w�ˮɡAJava ES �@�Τ���|�Ѧw�˵{���۰ʤɯšC
- Directory Server�C Directory Server �ܤֻP Access Manager ���P�@�q���W�A���q Java ES �o�檩�� 2 �ɯ� Directory Server �����ѤF�N Directory Server �ɯŨ�o�檩�� 5 ����ܡC
- Web �e���n��C �b�q Java ES �o�檩�� 3 �ɯ� Web Server �M�q Java ES �o�檩�� 2 �ɯ� Application Server ���'O���ѤF�ɯ� Web Server �M Application Server ����ܡC
�ɯťؿ�Ҧ�
�p�G�ϥ� Sun Java Communications Suite �� Directory Preparation Tool (comm_dssetup.pl) �N Directory Server �t�m���䴩 Communication Suite ���� (�Ҧp Messaging Server �M Calendar Server)�A�h�����b�ɯ� Access Manager ���e��ϥ� Directory Preparation Tool 6.4 �ɯťؿ�Ҧ� (�аѾ\�uSun Java Communications Suite 5 Upgrade Guide�v(http://docs.sun.com/doc/819-7561))�C�Цb�ɯ� Access Manager �̤ۨ����榹�ɯūe�@�~�C
���ؿ�s�s�s�d�
���F�קK�b�ɯťؿ�Ҧ����� Access Manager �ɯŮɪ������ (�аѾ\�W�����ɯťؿ�Ҧ�,)�A�z�ݭn�� Access Manager �ؿ�ڧ=X��ʭ��s�s�s�dޡA�p�U�ҥܡG
�o�檩�� 2 �ܵo�檩�� 4 Directory Server�G
�o�檩�� 5 Directory Server�G
��ؿ���ؼƥئөw�A�i��ݭn��j�q�ɶ��~�৹���dު����s�s�s�C
�ɯŵo�檩�� 2 Access Manager
�N Access Manager �q�o�檩�� 2 �ɯŨ�o�檩�� 5 ���{�Ǩ�M�p Access Manager �n�骺 Web �e���C
�ɯŵo�檩�� 2 Access Manager�GWeb Server Web �e��
�Y�n�N�o�檩�� 2 Access Manager �ɯŨ�o�檩�� 5�A�b���p�� Web Server Web �e�����ɡA���F�N�ѷӪ��Ҧ��o�檩�� 4 ��N���o�檩�� 2 �H�~�A��L�ʧ@�п�`�ɯŵo�檩�� 4 Access Manager ������ܡC
�ɯŵo�檩�� 2 Access Manager�GApplication Server Web �e��
�Y�n�N�o�檩�� 2 Access Manager �ɯŨ�o�檩�� 5�A���p�� Application Server Web �e�����ɷ|����ر��p�G
- �w���s�w�˵o�檩�� 5 Application Server�C�b�����p�U�A�Y�n�N�o�檩�� 2 Access Manager �ɯŨ�o�檩�� 5�A���F�N�ѷӪ��Ҧ��o�檩�� 4 ��N���o�檩�� 2 �H�~�A��L�п�`�ɯŵo�檩�� 4 Access Manager ������ܡC
- �w�N�o�檩�� 2 Application Server �ɯŨ�o�檩�� 5�C�b�����p�U�A�ɯŨ�o�檩�� 5 �ɡA��ӳ��p�F Access Manager ���o�檩�� 2 Application Server ��� (instanceName) �w�E����Ѥɯŵ{�ǫإߪ��`�I�N�z�{���U�C�b�o�Ӥw�ɯŪ� Application Server ��Ҥ��ɯ� Access Manager �ݭn���U�C�X�`���ҭz���B�J�C
�ɯźK�n
�ɯ� Access Manager ���{�ǥ]�A�U�C�B�J�G
- ���� Java ES �o�檩�� 2 ������ Access Manager�C�ϥ� ampre71upgrade �{���ɡC
- �p�G�o�檩�� 5 ���ɯŻݭn���g�ơA�в����o�檩�� 2 ���g�ƮM�˳n��C���B�J������ʰ��C
- �w�� Java ES �o�檩�� 5 ������ Access Manager�C�ϥ� Java ES �w�˵{���ÿ�� [�H��t�m] �ﶵ�C
- �ҰʤU�C Application Server ��ҡG���p Access Manager �� Domain Administration Server (DAS)�B�`�I�N�z�{���M��A����ҡC
- ���p Access Manager�A���s�t�m�A�M�᭫�s���p�� Application Server ��Ҥ��C�ϥ� amconfig �{���ɡC
- ��s�ؿ�c�M�Ҧ��C�ϥ� amupgrade �{���ɡC
�U�C�{�Ǥ��N��o�ǨB�J�i�满��C
�ɯŵ{��
- �ɯ� Access Manager Mobile Access �n��C
�ݭn�ǥѬ��o�檩�� 2 �����w�˭ɵ{���Ӥɯ� Access Manager Mobile Access �n��C�U����ܤF�һݪ��ɵ{���C
�� 14-13 �Ω�ɯ� Access Manager Mobile Access �n�骺�ɵ{��1
����
�ɵ{�� ID�GSolaris 9 �M 10
�ɵ{�� ID�GLinux
Mobile Access �n��
119530-05 (SPARC)
119531-05 (x86)
119532-05
1�ɵ{�����q�����X�O�ɯŨ� Java ES �o�檩�� 5 ���̧C�ݨD�C�p�G����s���q���i�ΡA�ШϥΧ�s���q���A�Ӥ��n�ϥΪ?���q���C
- �ϥ��� 14-6 �����ɵ{�����X��o�һݪ��ɵ{���C
�i�q�U�C��m�N�ɵ{���U��� /tmp�Ghttp://sunsolve.sun.com/pub-cgi/show.pl?target=patches/patch-access
- ���ɵ{�� README �ɮפ��ҫ�ܪ����ɫe�{�ǡC
- ��o�ɵ{���N�|�ШD���U�C�Ѽƪ��ȡG
- �M���� 14-6 �����ɵ{���C
�b Solaris �W�G
patchadd patch_ID�b Linux �W�G
./update���ɵ{�� README �ɮפ��ҫ�ܪ����ɫ�{�ǡC
- ���� Java ES �o�檩�� 2 ������ Access Manager�C
- �H�W�ŨϥΪ̨���n�J��N�o�檩�� 4 Access Manager ���q���A�Φ����W�ŨϥΪ̡C
su -
- �N�ؿ��ܧ� Java ES �o�檩�� 5 �o�檫���� os_arch/Product/identity_svr/Tools �ؿ�A�䤤 os_arch 3�P�z�Ҧb���x�۲šA�Ҧp Solaris_sparc�C
- ��o ampre71upgrade �{���ɱN�n�ШD���U�C�ѼƭȡG
�� 14-15 Access Manager �t�m�ѼơGampre71upgrade
�Ѽ�
��
Directory Server �D��
�]�w�����X�檺�W�١Ghostname.domain
Directory Server �s����
��w�D SSL �s����1
�w�]�ȡG389���h�z�� DN
�w�]�ȡGuid=amadmin,ou=People,default_org_DN
���h�z��K�X
�x�s�ƥ��ɮת��ؿ�
�w�]�ȡGAccessManager-base
1������w�P�w�] SSL �� 636 ���P�� Directory Server SSL �s����C
- �T�w Directory Server ���b���A�p�G�����A�бҰʥ��C
- ��� ampre71upgrade �{���ɡC
./ampre71upgrade
�ӵ{���ɷ|�ƥ� Access Manager �t�m�ɮסA�ò����o�檩�� 4 �M�˳n�� (���g�ƮM�˳n�饲���̷Ӧp�U���B�J 3 ��ʲ���)�C
- �p�G�o�檩�� 5 ���ɯŻݭn���g�ơA�в����o�檩�� 2 ���g�ƮM�˳n��C
�b�W���B�J 2 ����檺 ampre71upgrade �{���ɨä��|�������g�ƮM�˳n��A�]���z������p�U��k��ʲ������̡C
�b Solaris �W�G
- �ˬd���g�ƮM�˳n��C
pkginfo | grep SUNWaml
pkginfo | grep SUNWamclnt
pkginfo | grep SUNWamdistauth- �����b�W���B�J a ����쪺��g�ƮM�˳n��C
pkgrm SUNWamlLocale
pkgrm SUNWamclntLocale
pkgrm SUNWamdistauthLocale�b Linux �W�G
- �ˬd���g�� RPM�C
rpm -qa | grep sun-identity-sdk-*
rpm -qa | grep sun-identity-clientsdk-*
rpm -qa | grep sun-identity-distauth-*- �����b�W���B�J a ����쪺��g�� RPM�C
rpm -e sun-identity-sdk-Locale-*
rpm -e sun-identity-clientsdk-Locale-*
rpm -e sun-identity-distauth-Locale-*- �w�� Java ES �o�檩�� 5 ������ Access Manager�C
���U�C�B�J�G
- �b�N�o�檩�� 2 Access Manager ���q���W�Ұ� Java ES �w�˵{���C
cd Java ES Release 5 distribution/os_arch
./installer�䤤 os_arch �P�z�Ҧb���x�۲šA�Ҧp Solaris_sparc�C(�w���O�椶���ϥ� installer -nodisplay �ﶵ�C)
��ܥX [�w��] �M [���v�X��] ��������A�z�N�|�ݨ줸�����C(�?���i�� Java ES �w�˵{�������ɯŪ��w�ˤ���ɡA���̪����A�|��ܬ� [�i�ɯ�]�C)
- �q����������� Access Manager�C
- ��w�w�˵o�檩�� 2 �����Ӧw�˥ؿ�C
- ��� [�H��t�m] �ﶵ�C
- �p�����n�A�п��w�˥��g�ƮM�˳n�骺�ﶵ�C
- �w�˧����ɵ��� Java ES �w�˵{���C
- ���s�ۭq�Ω� Access Manager �� JSP�C
���s�M�Φb�ƥ� Web �e���ۭq�ɮ����x�s���B�Ω� Access Manager �D���x�M�{�ҨϥΪ̤��� (UI) ���o�檩�� 2 �ۭq JSP �]�w�C
�M��N�ۭq JSP �ɮƻs�쥿�T���ؿ�G
- ���¦� Access Manager �D���x
AccessManager-base/web-src/applications/console- �{�� UI�GAccessManager-base/web-src/services/config/auth/default �� AccessManager-base/web-src/services/config/auth/default_Locale (�䤤 Locale ��ܻy����ҡA�p ja)
�p�ݧ�h��T�A�аѾ\�uSun Java System Access Manager 7.1 Developer's Guide�v(http://docs.sun.com/doc/819-4675)�C
- �ˬd Directory Server �O�_���b���C
- �ҰʤU�C Application Server ��ҡG
�H�U��O�Ϋ���B�J���ϥΤF�U�C�D�ҡG
- �䤤 nodeagentName ���Φ��� hostName_domainName�A���w�]�Φ���²�檺 hostName
- �w�] domainName �O domain1
- �w�] instanceName �O server1
- �Ұ� Domain Administration Server (DAS)
AppServer8-base/bin/asadmin start-domain --user admin_ID
domainName- �ҰʩҤɯ� Application Server ��ҾE���쪺�`�I�N�z�{��
AppServer8-base/bin/asadmin start-node-agent --startinstances=false --user admin_ID nodeagentName
- �Y���p Access Manager ����A����� (instanceName) �|�����A�бҰʥ�
AppServer8-base/bin/asadmin start-instance --user admin_ID instanceName
- ���p Access Manager�A���s�t�m�A�M�᭫�s���p�� Application Server ��Ҥ��C
- �p�G Web �e���b SSL �Ҧ��U���A�нT�w�e���� SSL ���ҩ|���L�aA���M���ġC
- �إߤ@�Ӱ�� amsamplesilent �d����J�ɮת� amconfig ��J�ɮסG
cp amsamplesilent config-file
(�b����B�J���A���] config-file ���P amsamplesilent �ۦP���ؿ�C)
- �b config-file ���]�w�t�m�ѼơC
�ݭn���T�]�w�Ҧ��ѼơC�@�ǭȥi�H�� AMConfig.properties �ɮE���A�۸�U�A��L�ȫh�O�ɯŵ{�Ǫ��M�έȡA�p�U��ҥܡC
�� 14-16 Access Manager �t�m�ѼơGamconfig
�Ѽ�
��
�ɯŰѼ�
DEPLOY_LEVEL
�]�w�� 26 (��ܨ��p) ��
�]�w�� 1 (��ܭ��s�t�m�ó��p)DIRECTORY_MODE
�]�w�� 5
AM_REALM1
�p�G�ҥΤF�¦��Ҧ��A�h�]�w�� disabled
�p�G�ҥΤF�d��Ҧ��A�h�]�w�� enabled
�w�]�ȡGenabledJAVA_HOME
�]�w�� JDK �o�檩�� 5 �ؿ�G/usr/java/jdk1.5.0_04/
WEB_CONTAINER
�w�� Application Server 8.x �]�w�� AS8 �B�u��g��3�� config-file �Ϭq�C
AS81_INSTANCE
(�ϥαq Application Server 7.x �ɯŪ� Application Server 8.x ���� Web �e��)�]�w�� Application Server 7.x instanceName�A�w�]�Ȭ� server1
AS81_INSTANCE_DIR
(�ϥ� Application Server 8.x ���� Web �e��)�]�w����Ҫ� Application Server 8.x ���ؿ�A�w�]�Ȭ� AppServer8Config-base/domains/domain1
AS81_DOCS_DIR
(�ϥ� Application Server 8.x ���� Web �e��)�]�w����Ҫ� Application Server 8.x ���ڥؿ�A�w�]�Ȭ� AppServer8Config-base/domains/domain1/docroot
�E���� AMConfig.properties
SERVER_PROTOCOL
com.iplanet.am.server.protocol
SERVER_PORT
com.iplanet.am.server.port
SERVER_HOST
com.iplanet.am.server.host
DS_HOST
com.iplanet.am.directory.host
DS_PORT
com.iplanet.am.directory.port
ROOT_SUFFIX2
com.iplanet.am.defaultOrg
CONSOLE_DEPLOY_URI
com.iplanet.am.console.deploymentDescriptor
SERVER_DEPLOY_URI
com.iplanet.am.services.deploymentDescriptor
PASSWORD_DEPLOY_URI
com.sun.identity.password.deploymentDescriptor
AM_ENC_PWD2
am.encryption.pwd3
1�p�ݦ���d��M�¦��Ҧ�����h��T�A�аѾ\�ۮe�ʰ��D�C
2���Ѽƪ���3�P���e������ Access Manager �ۦP�C
3�p�G�P�ɳ��p�F Access Manager �M Access Manager SDK�A�h��� Access Manager ��ҤΨ���� Access Manager SDK ��ҡA���S�ʪ��ȥ����ۦP�C
�Y����L�ѼơA���D�n�ܧ� Web �e���αK�X�A�_�h�д��ѭn�ɯŪ��o�檩�� 2 �t�m���ϥΪ����ǭȡC
- ��� amconfig �H���p Access Manager�C
�N config-file ���� DEPLOY_LEVEL �ȳ]�w�� 26�C
cd /AccessManager-base/bin
./amconfig -s AccessManager-base/bin/config-file- �ˬd�H�T�w Common Agent Container ���b��椤�C
netstat -an | grep 11163
�p�G�ä��b��椤�A�бҰʥ��C
/usr/sbin/cacaoadm start
- ��� amconfig �H���s�t�m Access Manager �ñN�����p�� Web �e�����C
�N config-file ���� DEPLOY_LEVEL �ȳ]�w�� 1�C
cd /AccessManager-base/bin
./amconfig -s AccessManager-base/bin/config-file- ���� Access Manager classpath-suffix �M server-classpath ��T�w�E���ܵo�檩�� 5 Application Server domain.xml �ɮפ��C
- �O�� Access Manager classpath-suffix �M server-classpath ��T�A���̦���ӳ��p Access Manager ���o�檩�� 2 Application Server ��Ҫ� server.xml �ɮפ��G
AppServer7Config-base/domains/domainName/instanceName/config/server.xml
- �ˬd classpath-suffix �M server-classpath ���جҤw���[�쳡�p Access Manager ���ɯ� Application Server ��Ҫ� domain.xml �ɮ᭱�G
AppServer8Config-base/nodeagents/nodeagentName/instanceName/
config/domain.xml3�N�����O��|��T�W�[��o�檩�� 5 Application Server domain.xml �ɮת� instanceName-config �Ϭq���C���Ϭq�H�U���o��}�l�G
<config dynamic-reconfiguration-enabled="true" name="instanceName-config">
- ��s�ؿ�c�M�Ҧ��C
�o�檩�� 5 Access Manager �P�o�檩�� 4 ���ؿ�c�æs�A��ק�䵲�c�~��䴩�o�檩�� 5 ���\��C�ǥѰ�� amupgrade �{���ɡA�N Access Manager �ؿ�c�M�Ҧ���s��o�檩�� 5�A�ӵ{���ɦw�˦b�U�C�ؿ�G
- �b Solaris �W�G
AccessManager-base/upgrade/scripts- �b Linux �W�G
AccessManager_base/identity/upgrade/scripts- ��o amupgrade �{���ɱN�|�ШD���U�C�Ѽƪ��ȡG
�� 14-17 Access Manager �t�m�ѼơGamupgrade
�Ѽ�
��
Directory Server �D��
�]�w�����X�檺�W�١Ghostname.domian
Directory Server �s����
��w�D SSL �s����1
�w�]�ȡG389�ؿ�z�� DN
�w�]�ȡGcn=Directory Manager
�ؿ�z��K�X
���h�z�� DN
�w�]�ȡGuid=amadmin,ou=People,default_org_DN
���h�z��K�X
�ҥνd��Ҧ�
(��q�o�檩�� 4 �d��Ҧ��ɯŮɤ��|�ШD���ѼƭȡC)Y/N�G�O��ܱҥνd��Ҧ��A�ñN�A�ȸ�ƾE���ܷs���d��𪬵��c�C�_ (�w�]��) ��ܪA�ȸ�ƫO�d�b�¦��Ҧ����C
1�p�G��w Directory Server SSL �s���� (�p�w�] SSL �� 636)�A�ɯŵ{�DZN�L�k���Q�����C
- ��� amupgrade �{���ɡC
cd AccessManager-base/upgrade/scripts
./amupgrade�p�G�ɯŦ��\�A�{���ɷ|��� [�ɯŤw����]�C
- �ˬd�U�C�ɯŰO���ɮסA�H�A�����ؿ�Ҧ������T�G
�b Solaris �W�G
/var/sadm/install/logs/
Sun_Java_System_Access_Manager_upgrade_dit_log.mmddhhmm�b Linux �W�G
/var/log/Sun_Java_System_Access_Manager_upgrade_dit_log.mmddhhmm- ���� Domain Administration Server (DAS)�B�`�I�N�z�{���M��A����ҡC
�o�dz��O�b�B�J 7 ���Ұʪ���ҡC
AppServer8-base/bin/asadmin stop-domain --user admin_ID
domainNameAppServer8-base/bin/asadmin stop-node-agent --user admin_ID
nodeagentName- ���s�Ұ� Domain Administration Server (DAS)�B�`�I�N�z�{���M��A����ҡC
AppServer8-base/bin/asadmin start-domain --user admin_ID
domainNameAppServer8-base/bin/asadmin start-node-agent --port DASportNumber --startinstances=false --user admin_ID --password password nodeagentName
AppServer8-base/bin/asadmin start-instance --port DASportNumber --user admin_ID --password password instanceName
DASportNumber ���w�]�Ȭ� 4848�C
���� Access Manager �ɯ�
�����ɯŵ{�Ǥ���A�Ы����� Access Manager �ɯ��ҭz���ҤɯŬO�_���\�C
�ɯū�@�~
�p�G���b�ϥΦw���ťܼаO�y�� (SAML) �A�ȡA�h�����ϥ� Access Manager �D���x�ӼW�[�M�ҥ� SAML �{�ҼҲաC�p�ݦ���إ� SAML �{�ҼҲչ�Ҫ���T�A�аѾ\�uSun Java System Access Manager 7.1 �z��n�v(http://docs.sun.com/doc/820-0840)�C
�^�_�ɯ�
�����ѥΩ�N Access Manager �^�_���ɯūe���A���{���ɡC�ӵ{�ǥ����ϥΧ@���ɯūe�@�~���@�ӳƥ� Access Manager ��Ƥ�ʰ�� (�аѾ\�ƥ�o�檩�� 4 Access Manager ���O��M�����ɮ�)�C�^�_�ӹL�x��A�]���ä��i��C
�h����Ҥɯ�
�b�Y�dz��p�[�c���A�|�N Access Manager ���p�b�h�ӹq���t�ΤW�A�H���Ѱ��i�ΩʩM���i�ʡC
���`�Ǥɯ� Access Manager ��ҦӤ����_�A�ȩ����O�H�̩ҧƱ檺�C���q�o�檩�� 2 Access Manager ��o�檩�� 5 ���i���ɯŪ��{�ǥH�U�C�����¦�G�o�檩�� 5 Access Manager ���i�H�P�o�檩�� 2 ���ؿ�c�æs�C��O�A�p�G�ƻs�F Directory Server ��ҡA�p�� 14-2 �ҥܡA����z�i�H���h����Ҥɯ�������ܰ�溥�i���ɯšC