Installing Access Manager and Directory Server

Can I install the Access Manager 2005Q4 without installing the directory server?
The products selected for installation have dependency requirements or installation options as indicated below.
Sun Java(TM) System Directory Server 5 2005Q4
------------------------------------------------------------------------

Everytime I click the Access Manager in the JES 2005Q4installer the directory server would click itself. Unchecking this prompted me for a remote repository which worked.
I wasn't able to get the install to complete with the state file, it stopped before configuring access manager.

Similar Messages

Setting up Access Manager and Directory Server for Failover.

I'm setting up 2 Access Managers AM1,AM2 and 2 Directory Servers DS1 and DS2 for failover. I've connected AM1 and AM2 to DS1. Suffixes of DS1 is replicated to DS2. Any change made to AM1 is replicated to AM2 as expected. I just patched AM1 with Access Manager patch 1 and the version information for AM1 shows 7.1 126359-01. I followed the same procedure to patch AM2 but AM2 still shows ver 7.1.
How do I make sure both Access Managers are patched to the same version?
I'm able to authenticate to one IIS6 site and authentication is passed on to Outlook Web Access on AM1 but when I shut down AM1 to test failover to AM2 OWA prompts me again for password. How do I resolve this?
On AM1 http://host.domain/amserver/UI/Login?realm=sso successfully logs in but the same on AM2 gives Warning that "You have already logged in. Do you want to log out and then login to a different organization?"
Please help !!!

I'll answer what bits I can:
Q: AM showing the same version?
A: No idea on this one. I would have expected the operation you described to have produced the right answer. Check that neither your application server nor your web browser are caching old pages (ctrl-F5 in my browser)
Q: How do I resolve re-authentication on failover?
A: The AM documentation includes a deployment example that covers pretty closely what it is you are trying to achieve:
http://docs.sun.com/app/docs/doc/820-2278
Specifically, the problem you are describing is related to session failover. The sessions are stored in a local DB so when you failover the backup server does not store the same information and hence requires a reauthentication. The section of the above doc that deals with this is here:
http://docs.sun.com/app/docs/doc/820-2278/gdsre?l=en&a=view
Q: "You have already logged in" warning
A: No idea. Sorry.
R

Unable to use SSL between Access Manager and Directory Server

I am trying to set up Access Manager to use SSL when communicating with Directory Server. Access Manager 7 is running under Sun Web Server 6.1. I have configured Directory Server to use SSL using a Self-Signed CA and have imported the CA certificate into the certificate database for Web Server. When I change the Access Manager configuration as specified in the Admin Guide to use SSL and restart the Web Server, Access Manager fails with the message
(among many others)
netscape.ldap.LDAPException: SSL connection to
eauth1.arc.nasa.gov:636, SSL_ForceHandshake failed: (-8157) Certificate extension not found. (91); Cannot
connect to the LDAP server
I am able to connect to the Directory Server instanc with JXplorer using SSL (with a complaint about an unknown CA). Can someone explain the error message so that I can fix the problem or work around it?
Thanks

in the initial part of AMConfig.properties, you'll find an entry similar to trustSSLCerts . This, by default, is set to false. Trying setting it to true (AM web server instance will need a restart). This lets AM continue with SSL handshaking inspite of errors. Am not sure if this affects AM to DS connectivity as well. It sure affects AM to AM communication (in a multiple server configuration).
Naturally, it is not recommended that you use this feature when you are ready for production, but atleast it'll let you be sure that apart from the cert issue, everything else is okay.
Hope this helps.

Installing Access Manager under App Server platform

We have done an install of Access Manager 2005Q1 under App Server platform edition 2005Q1 (v8.1) on Linux Redhat Enterprise edition (v3).
When starting up Access Manager, we get a NoClassDefFound exception. Some postings mention some issues with the SUN mobile access, and suggest uninstalling / reinstalling, but these seem to apply to Solaris only. We have had no luck with this suggestion with Linux.
Does anyone have any other suggestions?
Thanx,
GB
[#|2005-09-14T10:50:34.118-0700|SEVERE|sun-appserver-pe8.1_01|javax.enterpri
se.system.container.web|_ThreadID=10;|WebModule[/a
mserver]Exception starting filter amlcontroller
java.lang.NoClassDefFoundError
at com.iplanet.services.ldap.LDAPUser.getPasswd(LDAPUser.java:117)
at
com.iplanet.services.ldap.ServerInstance.getPasswd(ServerInstance.java:128)
at
com.sun.identity.security.ServerInstanceAction.run(ServerInstanceAction.java
:92)
at java.security.AccessController.doPrivileged(Native Method)
at com.iplanet.ums.DataLayer.getInstance(DataLayer.java:210)
at
com.sun.identity.sm.ldap.SMSLdapObject.initialize(SMSLdapObject.java:143)
at
com.sun.identity.sm.ldap.SMSLdapObject.<init>(SMSLdapObject.java:118)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
Method)
at
sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAcces
sorImpl.java:39)
at
sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstruc
torAccessorImpl.java:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:274)
at java.lang.Class.newInstance0(Class.java:308)
at java.lang.Class.newInstance(Class.java:261)
at com.sun.identity.sm.SMSEntry.<clinit>(SMSEntry.java:116)
at
com.sun.identity.sm.ServiceSchemaManager.<clinit>(ServiceSchemaManager.java:
67)
at
com.iplanet.am.util.AMClientDetector.getServiceSchemaManager(AMClientDetecto
r.java:219)
at
com.iplanet.am.util.AMClientDetector.<clinit>(AMClientDetector.java:94)
at com.sun.mobile.filter.AMLController.init(AMLController.java:85)
at
org.apache.catalina.core.ApplicationFilterConfig.getFilter(ApplicationFilter
Config.java:229)
at
org.apache.catalina.core.ApplicationFilterConfig.setFilterDef(ApplicationFil
terConfig.java:312)
at
org.apache.catalina.core.ApplicationFilterConfig.<init>(ApplicationFilterCon
fig.java:83)
at
org.apache.catalina.core.StandardContext.filterStart(StandardContext.java:38
81)
at
org.apache.catalina.core.StandardContext.start(StandardContext.java:4528)
at com.sun.enterprise.web.WebModule.start(WebModule.java:241)
at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1086)
at
org.apache.catalina.core.StandardHost.start(StandardHost.java:833)
at
org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1086)
at
org.apache.catalina.core.StandardEngine.start(StandardEngine.java:483)
at org.apache.catalina.startup.Embedded.start(Embedded.java:894)
at com.sun.enterprise.web.WebContainer.start(WebContainer.java:707)
at
com.sun.enterprise.web.PEWebContainer.startInstance(PEWebContainer.java:507)
at
com.sun.enterprise.web.PEWebContainerLifecycle.onStartup(PEWebContainerLifec
ycle.java:54)
at
com.sun.enterprise.server.ApplicationServer.onStartup(ApplicationServer.java
:300)
at com.sun.enterprise.server.PEMain.run(PEMain.java:294)
at com.sun.enterprise.server.PEMain.main(PEMain.java:220)
|#]

Everytime I click the Access Manager in the JES 2005Q4installer the directory server would click itself. Unchecking this prompted me for a remote repository which worked.
I wasn't able to get the install to complete with the state file, it stopped before configuring access manager.

Installing Iplanet web server and directory server behind a firewall

When installing iplanet web server and directory server behind a firewall - should the interal ip address be used or the external ip address?

Hello,
When you are installing iplanet web server behind a firewall,you should use the internal ip address in the firewall.
1. The external ip address connection to the Internet. The type of IP address used?dynamic (commonly used for standard
modems) or static (commonly used for cable modems) is dictated by the ISP to which you connect and the type of service it provides.
2. The internal ip adress connection. This connection must be a static IP assignment, and it must be assigned by you.
obviously it depends on the type of firewall setup you have.
Thanks
Selva

What kind of permissions are needed in LDAP to install Access Manager?

Hi people,
I'm trying to install Access Manager in three different machines, and i'll try to configure them in a failover schema, but I'm not the owner of the LDAP where the Access Manager DIT is going to live, my question is what kind of permissions do I need to install it, rigth now I've tried to install it three times and I can't get a succesfull install process, this is a resume of the common errors that I've got in the Java_Enterprise_System_Config_Log.xxxx
adding new entry ou=portalmmm_1.0_n21i,ou=internalData,ou=1.0,ou=SunAMClientData,ou=ClientData,o=bbva
sleep 3
ERROR : Configuring/Loading of the default DIT in the Directory Server failed
CLASSPATH is --- /opt/SUNWam/locale:/etc/opt/SUNWam/config:/opt/SUNWam/lib:/opt/SUNWam/lib/am_services.jar:/opt/SUNWam/lib/ldapjdk.jar:/usr/share/lib/mps/secv1/jss4.jar:/opt/SUNWam/lib/am_sdk.jar
Loading service schema XML files ...
Info 109: Calling SCHEMA MANAGER
Info 110: XML file to import:/etc/opt/SUNWam/config/ums/ums.xml
Info 103: Loading Service Schema XML /etc/opt/SUNWam/config/ums/ums.xml
Loading Service Schema XML /etc/opt/SUNWam/config/ums/ums.xml
Error occured while loading: /etc/opt/SUNWam/config/ums/ums.xml
Error Log:
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'nsslapd-pluginEnabled' attribute of entry 'cn=referential integrity postoperation,cn=plugins,cn=config'.
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'nsslapd-pluginarg10' attribute of entry 'cn=referential integrity postoperation,cn=plugins,cn=config'.
ldap_add: Already exists
ldap_add: Insufficient access
ldap_add: Insufficient access
ldap_add: Insufficient access
ldap_add: Insufficient access
ldap_add: Insufficient access
ldap_add: Already exists
ldap_add: Already exists
ldap_add: Already exists
ldap_add: Already exists
ldap_add: Already exists
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'nsslapd-sizelimit' attribute of entry 'cn=config'.
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'nsslapd-timelimit' attribute of entry 'cn=config'.
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'nsslapd-lookthroughlimit' attribute of entry 'cn=config,cn=ldbm database,cn=plugins,cn=config'.
ldap_add: Already exists
ldap_add: Insufficient access
ldap_add: additional info: Insufficient 'add' privilege to add the entry 'ou=DSAME Users,o=isp'.
ldap_modify: Type or value exists
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'objectClass' attribute of entry 'o=isp'.
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'objectClass' attribute of entry 'o=isp'.
ldap_modify: Insufficient access
ldap_modify: additional info: Insufficient 'write' privilege to the 'objectClass' attribute of entry 'o=isp'.
ldap_add: No such object
ldap_add: matched: o=isp
ldap_add: No such object
ldap_add: matched: o=isp
/opt/SUNWam/bin/amadmin: -Dcom.sun.identity.sm.enableDataStoreNotification=true: not found
Error 29: ServiceManager Exception
Error 10: Cannot process requests:
sms-UNKNOWN_EXCEPTION_OCCURRED
Identity Server Configuration Failed ...
Configuration failed for : ISConfigurator
*** End configuring ISConfigurator***Please suggest...
Thanks in advance
Lalo

You can't install Access Manager without full control on the base organization.
You need the Directory Manager user (maybe with a temporary password) or a user with full permissions on the Access Manager root DN.
Hope It Helps
Saludos!!

Installing Access Manager

Hi All,
I have a question regarding the Access Manager installation.
Is it possbile to install Access Manager to a Directory Server which has Access Manager related data already in it or does Access Manager require a fresh Directory Server with no data in it.
Is the step, Is Directory Server provisioned with user data [No] > , is used to say whether the Directory Server already has data in it.
I know that we need to use the same Encryption Key while instaling the Access Manager to the Directory Server which has data in it. But does this work.
Thanks & Regards.

The question in the installer is worded very poorly.
When installing your first AM server, you will answer 'No'. On the subsequent AM Server installs you will answer 'yes'. And you are correct, you need to use the same Encryption Key.

Error when installing access manager

Hi im following this install steps:
http://wikis.sun.com/display/CommSuite/Sun+Java+Communications+Suite+6+on+a+Single+Host+(Linux)
i cannot install access manage from JES in my RH4
during installation i see the error in the instal log:
Java not found at ${JAVA_HOME}/bin/java|#]
[#|2008-09-09T18:56:26-05:00|SEVERE|JavaES|JavaESConfig|_versionID=1.0;_threadID=11;_SourceJavaFile=IdentityServLinuxConfigurator;_SourceMethodName=execConfigScipt();_JavaESMessageID=JavaES_ConfigIS24;_JavaESResourceBundle=EntSysLoggingResources;_JavaESArg1=2|Access Manager Configuration Failed ...2|#]
[#|2008-09-09T18:56:26-05:00|FINE|JavaES|JavaESConfig|_versionID=1.0;_threadID=11;_SourceJavaFile=IdentityServLinuxConfigurator;_SourceMethodName=execConfigScipt();_JavaESMessageID=JavaES_ConfigIS10;_JavaESResourceBundle=EntSysLoggingResources|Exiting Method|#]look at my java_home:
[root@xxx Linux_x86]# ${JAVA_HOME}/bin/java -version
java version "1.5.0_16"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_16-b02)
Java HotSpot(TM) Server VM (build 1.5.0_16-b02, mixed mode)
cd ${JAVA_HOME}/bin/
[root@xxx bin]# ls -la java
-rwxr-xr-x 1 root root 64280 May 28 04:48 javathanks for the help.

JavierGalindo wrote:
[root@xxx Linux_x86]# ${JAVA_HOME}/bin/java -version
java version "1.5.0_16"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_16-b02)
Java HotSpot(TM) Server VM (build 1.5.0_16-b02, mixed mode)
Your problem may indeed be due to JAVA_HOME pointing to a JRE install vs. the full JDK install which is provided by the JES installer. My own test installation which I based in the installation guide on doesn't have JAVA_HOME set e.g.
[root@server bin]# env | grep JAVA_HOME
[root@melkor bin]#Try un-setting the JAVA_HOME environment setting (e.g. unset JAVA_HOME) and reattempt the install.
Regards,
Shane.

Can't login System Access Manager and Delegated Administrator page

Hi.
Suddenly I can't log in System Access Manager & Delegated Administrator page. Yesterday,I could.
Do you help me?
thanks.

k-m-i wrote:
Suddenly I can't log in System Access Manager & Delegated Administrator page. Yesterday,I could.Given that you have provided nothing in the way of usable information to isolate the problem I can only suggest restarting your directory server (assuming it hasn't crashed) then restarting the web-container hosting Access Manager and see if that fixes the problem.
If not, you will have to look further into the web-server logs and the directory server logs to see why the problem is occurring.
Regards,
Shane.

Not able to install Access Manager 7.1 in Legacy Mode with amsamplesilent

HI All,
I am building test setup on Solaris Zones.Recently it was patched to following level *5.10 Generic_138888-03*
I am trying to install Access Manager in Legacy mode with amsamplesilent file.
SERVER_NAME=sesamesso1
SERVER_HOST=$SERVER_NAME.example.com
SERVER_PORT=80
ADMIN_PORT=8989
DS_HOST=ssoldap1.example.com
DS_DIRMGRPASSWD=l0cuz123
ROOT_SUFFIX="dc=example,dc=com"
SM_CONFIG_BASEDN=$ROOT_SUFFIX
ADMINPASSWD=l0cuz123
AMLDAPUSERPASSWD=l0cuz123am
DEBUG_LEVEL=error
DEBUG_DIR=/logs/sso/debug
COOKIE_DOMAIN=.example.com
AM_ENC_PWD=""
NEW_OWNER=wbsrv
NEW_GROUP=javaes
PAM_SERVICE_NAME=other
WEB_CONTAINER=WS
AM_REALM=disabledBut AM is getting installed in Realm Mode. I need to install portal server with this Access Manager.
please confirm,I am doing any mistake in my installation and please let me know whether portal server supports access manager realm mode or not.
Thanks in Advance
Madhu

Thanks for the reply.
I will give a try to install sun portal server 7.2 with accessmanager 7.1 in realm mode.Before patch updation my solaris sparc OS level was *5.10 Generic_118833-36* and I was able to install access manager 7.1 in legacy mode
Is there any thing to be done for new patch level(*5.10 Generic_138888-03*) to install access manager 7.1 in legacy mode.
Please let me know
Thanks
Madhu

Question on installing Access Manager 2005Q4

Hello everyone,
I have a question on installing access manager. It looks like access manager has to be installed into a web server running as root. The install program even warns you and gives you the option to fix it. After install does access manager still have to run as root, or can the web servers owner and group be changed back to webserved:webserved.
It would be nice not to have to run the web server as root just to have access manager working.
Also if it is possible to change the owner, could somebody point me to some directions to make sure I do it correctly.
Thanks for your help,
Gary

Is it possible to have the ldap servers running on port 389 and the web server running on port 80.One way you can do this (if you are on Solaris 10) is to use RBAC with a user in the net_privaddr role. See http://www.sun.com/bigadmin/features/articles/least_privilege.html for more information.
If a person already has an installed version as root, can it be changed to a non root user, or would it be just to much of a nightmare to do.That's what the doc describes how to do. Should not be a big problem but you might have to make a few adjustments depending on how far you've already gone with the install and config.
Does the ldap server and web server having to be running as the same user?No, you can use separate users.
HTH,
David

Solution Manager and Content Server / KW

Hey guys,
Im supposed to assess the advantages of using a content server instead of the database used by SolMan to store documents.
Found some articles about connecting the content server but got confussed about the whole knowledge warehouse thing that seems somehow to be integrated in SolMan.
Apparently that's a different Version of the KW, providing a change history but lacking some other features. Found e.g. this document here: [Solution Manager and SAP KW Documents |http://help.sap.com/saphelp_sm40/helpdata/EN/a4/4f691faacf423db80f286787c5a527/content.htm]
Can someone give me an overview about what's possible by using these two things togehter?
It's been kind of hard to find some good infos and I'm relatively new to that topic (especially the KW thing), so I really hope you guys can help me.
Cheers Joerg

>
LuongDK wrote:
> Hi Experts,
>
> I want to install Solution Manager and SAP ECC on single server. Oracle database with different schema (e.x SAPSR3, SAPSR4)
> But can I use same mount folders?
>
> Kindly highlight your experience and knowledge on this point?
>
> Thank you so much
> Regards,
> LuongDK
Hello LuongDK,
Please refer to the FAQ section on http://service.sap.com/solutionmanager, Check the installations section:
Which system should I use to install SAP Solution Manager?
The system has to be dedicated to the SAP Solution Manager. No other components can be installed on top of SAP Solution Manager.
SAP Solution Manager does not necessarily require separate hardware. It can be installed as a separate instance on an existing hardware.
This means that the hardware can be shared if it is sufficient to support 2 systems. However a MCOD option is not recommended at all.
Regards
Amit

Installing Sun Java System Directory Server on Linux Ent.

Hi,
I tried to install Sun Java System Directory Server on Linux on Redhat Enterprise Linux AS, but I faced some problems.
I just want to know if there is any pre-requisites for installing this product on Linux.
Thanks
Sadiq

Hello
Which problem did you have encountered installing the DS on Linux AS.
Currently I want to install SunOne DS V5.2 on Redhat Linux AS 2.1 and encounter several configuration issues
Thanks in advance,
Andrew

Installing Sun Java System Directory Server on RHEL 4

Hi All,
I have downloaded this ds[1].5.2.P4.linux.full.tar.gz for linux.
While installing Sun Java System Directory Server on RHEL 4.
I am getting this error
Installing Directory Server
|-1%--------------25%-----------------50%-java.io.FileNotFoundException: /opt/SunOneDirectoryServer/setup/admin/ns-common-sc hema.conf (Not a directory)
at java.io.FileOutputStream.open(Native Method)
at java.io.FileOutputStream.<init>(FileOutputStream.java:179)
at java.io.FileOutputStream.<init>(FileOutputStream.java:131)
at com.sun.install.products.ZipUnit.install(ZipUnit.java:354)
at com.sun.install.products.InstallComponent.performInstallation(InstallComponent.java:1223)
at com.sun.install.products.InstallNode.startInstall(InstallNode.java:878)
at com.sun.install.products.InstallComponent.performInstallation(InstallComponent.java:1220)
at com.sun.install.products.InstallNode.startInstall(InstallNode.java:878)
at com.sun.install.products.InstallComponent.performInstallation(InstallComponent.java:1220)
at com.sun.install.products.InstallNode.startInstall(InstallNode.java:878)
at com.sun.install.products.InstallComponent.performInstallation(InstallComponent.java:1220)
at com.sun.install.products.Product.performInstallation(Product.java:641)
at com.sun.install.tasks.ProductTask.perform(ProductTask.java:191)
at com.sun.wizards.core.Sequence.perform(Sequence.java:336)
at com.sun.wizards.core.SequenceManager.run(SequenceManager.java:226)
at java.lang.Thread.run(Thread.java:534)
----------------75%--------------100%|
Can anyone please help on this
Thanks in Advance

It looks like your archive is corrupted.
I would suggest that you download a new copy, and even better that you use the most recent version of Directory Server (6.2, although it is not yet on the download page -it should be by the end of the week-, 6.1 is available through the Enterprise Edition).
Regards,
Ludovic.

OLM oracle learing management and content server

I want know about OLM oracle learing management and content server.
how to install content server on a different server ( which set up i need to take and how to install it. ).
Also how to integrate this content server with Oracle EBS?
-Sagar

Hi;
Please check:
Note.297108.1 - Oracle iLearning 5.0 Installation Guide
Note.361958.1 - Oracle iLearning 5.0B Upgrade Considerations
Note.364670.1 - Oracle iLearning 5.0B Upgrade Guide
Regard
Helios

Installing Access Manager and Directory Server

Similar Messages

Maybe you are looking for