JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle Identity Synchronization for Windows 6.0 Installation and Configuration Guide
Oracle Technology Network
Library
PDF
Print View
Feedback
search filter icon
search icon

Document Information

Preface

Part I Installing Identity Synchronization for Windows

1.  Understanding the Product

2.  Preparing for Installation

3.  Installing Core

4.  Configuring Core Resources

5.  Installing Connectors

6.  Synchronizing Existing Users and User Groups

7.  Removing the Software

8.  Configuring Security

9.  Understanding Audit and Error Files

Part II Identity Synchronization for Windows Appendixes

A.  Using the Identity Synchronization for Windows Command Line Utilities

B.  Identity Synchronization for Windows LinkUsers XML Document Sample

C.  Running Identity Synchronization for Windows Services as Non-Root on Solaris

Running Services as a Non-root User

To Run services as a Non-root User

D.  Defining and Configuring Synchronization User Lists for Identity Synchronization for Windows

E.  Identity Synchronization for Windows Installation Notes for Replicated Environments

Index

To Run services as a Non-root User

Although you must be root to install and to run Identity Synchronization for Windows services, you can configure the software to run the program services as a non-root user.

  1. (Optional) Use the UNIX useradd command to create a user account for Identity Synchronization for Windows.

    You also can use a nobody user to run services. The remaining examples in this procedure assume you created a user called iswuser.

  2. To install a Sun Java System Directory Server Connector, you must choose a non-privileged port for the Connector during installation.

    For example, ports larger than 1024 are acceptable. Port 1389 is recommended for LDAP when the server is running as a non-root user. Port 1636 is recommended for LDAP over SSL.

    Note - You must execute all commands in the remaining steps as root.

  3. After installing all components, execute the following command to stop Identity Synchronization for Windows:
    /etc/init.d/isw stop
  4. You must update the ownership of the instance directory. For example, if you installed the product in/var/opt/SUNWisw.
    chown -R iswuser /var/opt/SUNWisw
    chown -R iswuser /opt/SUNWisw
  5. In a text editor, open the/etc/init.d/isw file and replace the following line:
    "$EXEC_START_WATCHDOG" "$JAVA_PATH" "$INSTALL_DIR" "$CONFIG_DIR"

    with the following:

    su iswuser -c "$EXEC_START_WATCHDOG '$JAVA_PATH' '$INSTALL_DIR' '$CONFIG_DIR'"
  6. Execute the following command to restart the service:
    /etc/init.d/isw start
  7. Execute the following command to verify that the components are running using the assigned user’s userid:
    ps -ef | grep iswuser
Copyright © 2009, 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices
Previous Next