7 OCECAS Post-Installation Tasks

This chapter provides instructions for Oracle Communications Evolved Communications Application Server (OCECAS) post-installation tasks.

Before continuing, complete the tasks in the following chapters:

Overview of OCECAS Post-Installation Tasks

After installing OCECAS and creating your domains, perform the following tasks:

  1. Set up your OCECAS system for subscriber data. See "Setting up OCECAS for Subscriber Data".

  2. Start your WebLogic Server administration and managed servers. See "Starting WebLogic Server Administration and Managed Servers".

  3. Perform post-configuration tasks for your OCECAS domains. See "Post-Configuration Tasks for Your Domains".

  4. Create users for the Session Design Center (SDC) GUI. See "Creating Users for the SDC GUI".

  5. Configure authentication. See "Configuring Authentication".

  6. Configure SSL host name verification. See "Configuring SSL Hostname Verification".

  7. Configure the Coherence security framework. See "Configuring the Coherence Security Framework".

Setting up OCECAS for Subscriber Data

OCECAS can retrieve subscriber data from an OCECAS subscriber server (ESS), which is a local NoSQL database often used in combination with a home subscriber server (HSS). Both ESS and HSS can serve as subscriber data stores, and you may also use both and federate the data between them.

The instructions in this section apply whether you are using the UDR domain, or just adding the NoSQL database to a runtime domain.

These tasks are required to obtain data from the ESS NoSQL database:

For more information about:

Creating an ESS NoSQL Database

To store subscriber data in an ESS, create a NoSQL database on each machine that hosts an OCECAS runtime domain.

To see the list of supported NoSQL database software versions, see "Database Software".

To create a NoSQL database:

  1. Log in to the target machine as the ocecas user. See "Creating a UNIX User for Installing OCECAS".

  2. Download the Oracle NoSQL Database, Community Edition software from the Oracle Technology Network web site:

    http://www.oracle.com/technetwork/database/database-technologies/nosqldb/downloads/nosql-downloads-1876643.html

  3. Go to the directory where you downloaded the software, and unpack the archive file by entering the following command:

    tar xfz kv-ce-3.0.14.gz

    The kv-3.0.14 subdirectory is created.

  4. Verify the installation by going to the kv-3.0.14 directory and entering the following command:

    java -Xmx256m -Xms256m -jar lib/kvclient.jar

    If installation was successful, you see something similar to the following:

    12cR1.3.0.14 2013-11-11 12:09:35 UTC Build id: 912c25300b5e

  5. For each runtime domain on your machine, copy the kvclient.jar file from the kv-3.0.14/lib directory to the Domain_home/lib directory:

    cp kv-3.0.14/lib/kvclient.jar Domain_home/lib

  6. Create your NoSQL database by running kvstore.jar. For example, to create and run a NoSQL database for testing purposes, enter the following command:

    nohup java -jar kv-3.0.14/lib/kvstore.jar kvlite -host Hostname -store spr.data > nosql.log 2>&1 &

    where Hostname is the name of the machine that is hosting your NoSQL database.

    For more information, see "Installing Oracle NoSQL Database" in Oracle NoSQL Database Administrator's Guide.

Installing the ESS NoSQL Client Driver

To access subscriber data from your ESS, you must install the NoSQL Client driver on the management domain and each machine that hosts an OCECAS runtime domain. You must also modify the UDR view to query data directly from your ESS.

For details about the default view that OCECAS uses to configure subscriber data, see "Understanding How OCECAS Stores Subscriber Data" in Enhanced Communications Application Server Operator's Guide.

To see the list of supported NoSQL software versions, see "Database Software".

To install a NoSQL client driver:

  1. Log in to the target machine as the ocecas user. See "Creating a UNIX User for Installing OCECAS".

  2. Download the Oracle NoSQL Client Driver software from the Oracle Help Center website:

    http://www.oracle.com/technetwork/database/database-technologies/nosqldb/downloads/nosql-downloads-1876643.html

  3. Go to the directory where you downloaded the software, and unpack the archive file by entering the following command:

    tar xfz kv-client-3.0.14.gz

    The kv-3.0.14 subdirectory is created.

  4. Verify the installation by going to the kv-3.0.14 directory and entering the following command:

    java -Xmx256m -Xms256m -jar lib/kvclient.jar

    If installation was successful, you see something similar to the following:

    12cR1.3.0.14 2013-11-11 12:09:35 UTC Build id: 912c25300b5e

  5. For each domain on your machine, copy the kvclient.jar file from the kv-3.0.14/lib directory to the Domain_home/lib directory:

    cp kv-3.0.14/lib/kvclient.jar Domain_home/lib

  6. Modify the view to query data directly from your ESS NoSQL database. For more information, see "Working with Subscriber Data" in Evolved Communications Application Server Operator's Guide.

Starting WebLogic Server Administration and Managed Servers

After installing and configuring the domains, start the necessary servers on each domain:

Starting the Administration Server

To start the Administration Server:

  1. Log in to the target system.

  2. Go to the Domain_home/bin directory.

  3. Enter the following command:

    ./startWebLogic.sh

  4. If your domain uses a production startup mode, you are prompted for the login credentials of the Administrator user.

    You can create a boot identity file to bypass the need to provide a user name and password when starting the Administration Server in production mode. For more information, see "Creating a Boot Identity File for an Administration Server" in Oracle Fusion Middleware Administering Server Startup and Shutdown for Oracle WebLogic Server.

For more information about starting the Administration Server, see "Starting and Stopping Administration Server" in Oracle Fusion Middleware Administering Oracle Fusion Middleware.

Starting Node Manager

To start Node Manager:

  1. Log in to the target system.

  2. Go to the Domain_home/bin directory.

  3. Enter the following command:

    nohup ./startNodeManager.sh > nm.out&

Oracle recommends that you install Node Manager to run as a startup service, which allows Node Manager to start up automatically each time the system restarts. For more information about installing a per domain Node Manager service, see "Running Node Manager as a Startup Service" in Oracle Fusion Middleware Administering Node Manager for Oracle WebLogic Server.

Starting Your Managed Servers

Before starting a managed server for the first time, copy the Domain_home/security/SerializedSystemIni.dat file from the Administration Server to the same directory on each managed server.

To start a managed server:

  1. Log in to the target system.

  2. Go to the Domain_home/bin directory.

  3. Enter the following command:

    ./startManagedWebLogic.sh managed_server_name admin_server_url

    where:

    • managed_server_name is the name of the managed server that you want to start.

    • admin_server_url is the full URL of the Administration Server, as provided on the Configuration Success screen.

For more information about starting managed servers, see "Starting and Stopping Managed Servers" in Administering Oracle Fusion Middleware.

Post-Configuration Tasks for Your Domains

The following post-configuration tasks are required for the domains you have created:

  • Set your environment

  • Disable basic authentication

  • Create the EvolvedCommunicationUsers group. All user accounts that you create for the SDC GUI must belong to this group.

To configure your domain:

  1. Log in to the machine that hosts the administration server for the domain.

  2. Go to the Domain_home directory.

  3. Set up the WLST environment:

    . bin/setDomainEnv.sh

    For more information, see http://docs.oracle.com/cd/E24329_01/web.1211/e24491/using_wlst.htm#WLSTG254.

  4. Enter the following command:

    java weblogic.WLST bin/setup.py

The script requires various configuration parameters, which it tries to obtain from the following sources, in order:

  • A properties file in the same directory as the setup.py script.

  • An environment variable

  • Directly from the user

Table 7-1 describes the parameters that the script requires. You can set these in a file called script.properties , a default version of which is created as part of the domain. You can also create them in an environment variable whose name has the form ECAS_group_setting, for example ECAS_db_host. If a setting is not provided in the file or in the environment variable, the script prompts the user for it.

Table 7-1 setup.py Parameters

Parameter Description

admin.url

The URL of the administration server. For example: t3://localhost:7001.

admin.username

The username for logging into the administration server.

admin.password

The password for logging into the administration server.

mgmt.host

The hostname of the management server.

mgmt.username

The username for logging into the management server.

mgmt.password

The password for logging into the management server.

ldap.password

The password to set for the embedded LDAP server.

gui.username

The name of a user to create for logging into the GUI (Session Design Center) or the REST API.

gui.password

The password to use for the GUI (Session Design Center) or the REST API user.

db.host

The hostname of the OCECAS database server.

db.password

The password for the OCECAS database user.

realm

The diameter realm that OCECAS will be part of.

hss.hosts

A comma-separated list of HSS definitions. Each entry has the form: address:hostname:port. For example: hss1:abc.com:localhost:3866, hss2.abc.com:localhost:3868.

hss.realm

The diameter realm that HSS is in.

ocs.hosts

A comma-separated list of OCS definitions.

ocs.realm

The diameter realm that the OCS is in.

cdf.hosts

A comma-separated list of CDF definitions.

cdf.realm

The diameter realm that CDF is in.

Configuring Communication Between Your Runtime Domains and the UDR

You must perform this task only if you are using a NoSQL-based UDR, rather than a separate HSS.

These instructions explain how to configure communication between a runtime domain and the default NoSQL database as an ESS.

To configure communication between a runtime domain and the default NoSQL ESS:

  1. Log in to the target machine.

  2. Go to the Domain_home/lib directory.

  3. Create a link to the NoSQL kvclient jar file. For example:

    ln -s NoSQL_home/lib/kvclient.jar ./kvclient.jar

    where NoSQL_home is the directory in which you installed the NoSQL client driver or installed the NoSQL database software. See "Setting up OCECAS for Subscriber Data" for more information.

  4. Go to the Domain_home/config/custom directory.

  5. Open the csp.xml file in a text editor.

  6. Configure an <adapter> element to specify the ESS NoSQL database. The default database name is nosql1, and is of type NoSQLProvicerFactory. You can use these default values or change them for your implementation.

    • <name> is set to a name for the database.

    • <helper-host> is set to the host IP address and port number for your NoSQL database.

    • <store-name> is set to spr.data.

    <adapters>
    <no-sql-adapter>
      <name>nosql1</name>
      <helper-host>IP_address:port_no</helper-host>
      <store-name>spr.data</store-name>
    </no-sql-adapter>
  </adapters>

  7. Save and close the file.

  8. Restart this domain to make your changes take effect.

Note:

Your ESS requires more configuration to work. For details, see "Advanced Configuration of Your ESS Subscriber Data Store" in Enhanced Communications Application Server Operator's Guide.

Configuring Communication Between Your UDR Domain and the UDR

You must perform this task only if you are using a NoSQL-based UDR, rather than a separate HSS.

To configure communication:

  1. Log in to the target machine.

  2. Go to the Domain_home/lib directory.

  3. Create a link to the NoSQL kvclient jar file. For example:

    ln -s NoSQL_home/lib/kvclient.jar ./kvclient.jar

    where NoSQL_home is the directory in which you installed the NoSQL client driver or installed the NoSQL database software. See "Setting up OCECAS for Subscriber Data" for more information.

  4. Go to the Domain_home/config/custom directory.

  5. Open the csp.xml file in a text editor.

  6. Ensure that the following elements are set correctly:

    • name is set to the correct name.

    • helper-host is set to the correct host IP address and port number for your NoSQL database.

    • store-name is set to spr.data.

    <adapters>
    <no-sql-adapter>
      <name>nosql1</name>
      <helper-host>IP_address:port_no</helper-host>
      <store-name>spr.data</store-name>
    </no-sql-adapter>
  </adapters>

  7. Save and close the file.

Creating Users for the SDC GUI

The domain setup script, setup.py, creates one user for logging in to the SDC GUI, but you can create more users to meet system requirements.

For more information about the SDC GUI, see "About the Session Design Center" in Evolved Communication Application Server Concepts.

To create a user for the SDC GUI:

  1. Log in to the machine that hosts the management domain.

  2. Ensure that your Administration Server has been started.

  3. Navigate to the Administration Console and log in with your administrator user name and password:

    http://hostname:port/console

    where hostname is the IP address or name of the machine that hosts your management domain and port is the Administration Console access port number for your management domain.

  4. In the Domain Structure pane on the left side, click Security Realms.

    The Summary of Security Realms page appears.

  5. In the Realms table, click myRealm.

    The Settings for myrealm page appears.

  6. Click the Users and Groups tab, and then click the Users subtab.

  7. Click New.

    The Create a New User page appears.

  8. In the Name field, enter the user name for accessing the SDC GUI.

  9. In the Password and Confirm Password fields, enter the password for the SDC GUI user.

  10. Click OK.

  11. In the Users table, click the SDC GUI user name that you created in step 8.

    The Settings for UserName page appears.

  12. Click the Groups tab.

  13. In the Available pane, select EvolvedCommunicationUsers.

  14. Click the right arrow button to move EvolvedCommunicationUsers to the Chosen pane.

  15. Click Save.

  16. Restart the Administration Server to make your changes take effect.

Configuring Authentication

Configure OCECAS to provide authentication through an LDAP server or Oracle Identity Manager (OIM). For more information, see "Managing User Entities" in Evolved Communications Application Server System Administrator's Guide.

Configuring OCECAS and OCCAS-SC Integration

If you will be utilizing OCECAS service centralization or need to integrate with an MSC not enhanced for IMS Centralized Services (ICS), you have installed OCCAS-SC with the IM-PSX ETSI plugin.

You must complete the following configuration tasks to integrate OCCAS-SC with OCECAS:

Configuring OCCAS-SC and the IM-PSX ETSI Plugin

After installing OCCAS-SC and the IM-PSX ETSI plugin, you must configure them to interact with each other and also configure SS7 protocol operations for NoteSubscriberDataModified, AnyTimeModification, and SendRoutingInfo.

These configuration procedures are specifically for enabling integration of OCCAS-SC and the IM-PSX ETSI plugin with OCECAS for ICS support. To complete the general configuration steps for integrating OCCAS-SC and the IM-PSX ETSI plugin, see "Setting Up IM-PSX ETSI Plugin" in Oracle Communications Service Broker Modules Configuration Guide.

To Configure the IM-PSX ETSI Plugin:

  1. In the OCCAS-SC Administration Console, click the Platform tab.

  2. In the OCSB tree, expand the Processing Tier and Interworking Modules nodes.

  3. Click the impsxetsiplugin instance.

  4. In the configuration panel, click the Configuration tab and then the General tab.

  5. In the Local Alias text box, enter the SSN alias configured in SS7 SS7 Sigtran.

  6. Click the Session Handling tab.

  7. Enter the values shown for the fields listed in Table 7-2:

    Table 7-2 Entries for Session Handling Tab

    Field Value

    Content Type Upon No Indication

    application/tcap-compomext-portion+xml

    Default SS7 Entity Alias

    The remote SS7 SSN alias

    Plugin Protocol Name

    MAP3

    Plugin Class Name

    com.convergin.common.ase.plugin.oss.map.phase2plus.OssGsmMapPlugin?

To configure SS7 protocol for NoteSubscriberDataModified in IM-PSX ETSI Plugin:

  1. Go to axiaConsole in the OCCAS-SC Administration Console. For example:

    https://ipadress:9000/axiaConsole

    Where ipaddress is the IP address or hostname of the OCCAS-SC Administration Console.

  2. Click the Domain Configuration tab.

  3. Select Configuration MBeans, then com.convergin.wcs.osgi.im.psx.etsi.plugin.

  4. Select 6.1.0, then IMPSXETSIPLUGIN, then ModuleInstance[0], then AseEncoding.

  5. Click addOperation.

  6. Expand the operation[0] node and set the attributes to the values shown in Table 7-3.

    Table 7-3 Attribute Settings for NoteSubscriberDataModified

    Attribute Value

    class

    1

    code

    5

    invocationTimer

    15

    name

    NoteSubscriberDataModified

    type

    local

To Configure SS7 Protocol for AnyTimeModification in IM-PSX ETSI Plugin:

  1. Go to axiaConsole in the OCCAS-SC Administration Console. For example:

    https://ipadress:9000/axiaConsole

    Where ipaddress is the IP address or hostname of the OCCAS-SC Administration Console.

  2. Click the Domain Configuration tab.

  3. Select Configuration MBeans, then com.convergin.wcs.osgi.im.psx.etsi.plugin.

  4. Select 6.1.0, then IMPSXETSIPLUGIN, then ModuleInstance[0], then AseEncoding.

  5. Click addOperation.

  6. Expand the operation[1] node and set the attributes to the values shown in Table 7-4.

    Table 7-4 Attribute Settings for AnyTimeModification

    Attribute Value

    class

    1

    code

    65

    invocationTimer

    15

    name

    AnyTimeModification

    type

    local

To configure SS7 protocol for SendRoutingInfo in IM-PSX ETSI Plugin:

  1. Go to axiaConsole in the OCCAS-SC Administration Console. For example:

    https://ipadress:9000/axiaConsole

    Where ipaddress is the IP address or hostname of the OCCAS-SC Administration Console.

  2. Click the Domain Configuration tab.

  3. Select Configuration MBeans, then com.convergin.wcs.osgi.im.psx.etsi.plugin.

  4. Select 6.1.0, then IMPSXETSIPLUGIN, then ModuleInstance[0], then AseEncoding.

  5. Click addOperation.

  6. Expand the operation[2] node and set the attributes to the values shown in Table 7-5.

    Table 7-5 Attribute Settings for SendRoutingInfo

    Attribute Value

    class

    1

    code

    22

    invocationTimer

    15

    name

    SendRoutingInfo

    type

    local

Configuring SSL Hostname Verification

If your installation is configured to use Secure Socket Layer (SSL) support, set the host name verification to None by using the WebLogic Server Administration Console.

To configure SSL host name verification:

  1. Start your OCECAS Administration Server if it is not already running.

  2. Navigate to the WebLogic Server Administration Console, and log in with your administrator user name and password:

    http://hostname:port/console

    where hostname is the name of your OCECAS server and port is the Administration Console access port number.

  3. In the Domain Structure pane, expand Environment, and then click Servers.

  4. In the Summary of Servers pane, click the Configuration tab.

  5. For each of your servers in the Servers table, do the following:

    1. Click the server name in the table, for example, AdminServer.

    2. In the Settings for ServerName pane, click the SSL tab.

    3. Expand the Advanced settings at the bottom of the pane.

    4. From the Hostname Verification list, select None.

    5. Click Save.

No restart is required after making this change.

Configuring the Coherence Security Framework

If you created a clustered domain, enable the Coherence Security Framework. For instructions, see "Enabling the Oracle Coherence Security Framework" in Securing Oracle Coherence.

Next Steps

If you encountered any configuration issues, see "Troubleshooting an OCECAS Installation".