Installing policy agent 2.1.1 for app server 7

Similar Messages

• Can policy agent protect multiple instances of app server

  I created multiple instances of Sun ONE App server 7.0, and one web-app in each instance. But When I am installing Policy Agent 1.1 for the second instance of App server, it told me that I HAVE had it installed.
  How can I protect multiple instances of App server?

  I see another thread on this subject. Thanks.

• "Unable to load IAmWebPolicy" with Policy Agent 2.2 on Sun App Server 8.2

  I'm trying to install the Policy Agent for App Server 9.0/9.1 to App Server 8.2 (which claims to be supported). Identity Manager is the target resource. I get this when I try accessing the /idm root context:
  Exception caught in AmWebPolicyManager initializer: Unable to load IAmWebPolicy: com.sun.identity.agents.policy.AmWebPolicy
       at com.sun.identity.agents.policy.AmWebPolicyManager.<clinit>(AmWebPolicyManager.java:135)
  Thanks,
  Steve Maring

  You were absolutely correct
  I've resolved this issue - the problem was caused by two things:
  1. There is a new version of a library called libxml2.so that I had to get from Sun (they provided version 2.6.7)
  2. My web server with the agent on it is on a seperate box from the identity server. These two servers were out of sync in terms of their system time (ie, the solaris box with the agent / web server was about 8 minutes ahead of the solaris box with the identity server)
  Once both of these things were fixed (the time issue most importantly), the web server would not hang anymore.

• Error installing Policy Agent

  When installing policy agent I get an error: "No X11 DISPLAY variable was set".
  I've tried running it with the -nodisplay option and have tried setting -Djava.awt.headless=true in the setup script to no avail.
  Any help would be greatly appreciated.

  If you have display environment(X server), you can set DISPLAY to local host and try tthe -nodisplay option.
  If you don't have the X environment, you need to follow a different method. I don't know which agent you are installing. For example, for Sun web server 6.1 agent, you could do this:
  1. pkgadd -d . SUNWames6
  2. cd /opt/SUNWam/agents/es6/bin/
  3. invoke config script there: ./config . This configures you web server instance, setup AMAgent.properties and debug directories etc.
  4. Restart web server instance.
  thanks,
  shivaram

• Unable to create ear after installing Visual Cafe plug-in for app server 6 sp3.

  Installed WebGain plugin for app server 6 sp3. Now anytime I attempt to add a war to an ear in the deployment tool I get the following: xml file or ias xml file missing. Make sure that source archive "d:\......war" is saved before dragging. Obviously I have done this, but has this IDE plugin changed the xml parsers to a different version that could be causing this? Has anyone else ran across this error?

  Hi,
  Can you confirm to me, if you are using Visual Cafe Enterprise 4.5.1
  and iAS 6.0 SP3. Also let me know the the name & version of O/S please.
  Regards
  Raj
  Bob Pfingsten wrote:
  Installed WebGain plugin for app server 6 sp3. Now anytime I attempt
  to add a war to an ear in the deployment tool I get the following: xml
  file or ias xml file missing. Make sure that source archive
  "d:\......war" is saved before dragging. Obviously I have done this,
  but has this IDE plugin changed the xml parsers to a different version
  that could be causing this? Has anyone else ran across this error?
  Try our New Web Based Forum at http://softwareforum.sun.com
  Includes Access to our Product Knowledge Base!

• Seperate NT service for App server and Process Scheduler

  Is it possible to create a separate NT service for App server and Process Schedule for the same environment? Everytime i need to shutdown either App Domain or Prcs Domain (not both) using service, it brings down both.
  I could use psadmin but services run as a different user.
  Please advise.

  What PeopleTools release are you using?  Off the top of my head, one strategy would be to use different PS_CFG_HOMEs for the App and the Process scheduler.  The service points to the PS_CFG_HOME and reads the pswinsrv.cfg file to know what to start/stop.  I'm not sure there is a way to override psntsrv and tell it to use a different config file, so you may need a different HOME.  You could also create a script that wraps the service start/stop.  It could edit/update the config file prior to stop/start and remove Process Scheduler from the config and then reinsert it later.
  You could have a stop_app/start_app and stop_prcs/start_prcs script that would copy in specific versions of the pswinsrv.cfg file for what you want to do.

• Unable to install policy agent 2.2 for Webserver 6.1 on Windows 2003

  Hi everybody,
  I've installed Java Enterprise Server (last version) on Windows 2003 with these components:
  - Directory Server
  - Access Manager
  - Webserver
  - Administration Server
  Everything works good, I can access all those components.
  Now I want to use Policy Agent 2.2. So I've downloaded it and I've tried to install...
  But during the installation process, an error message appear when I select the Web Server instance directory to protect.
  It says: "invalid web server instance - on windows, Access Manager Policy Agent only supports Web Server 6.0 and 6.1.....".
  The problem is that I work with WebServer 6.1....
  I really don't know what to do now... This message prevent me to go further.
  What's the problem? How can I avoid this?
  Thanks for your help!
  Adrien

  Okay, here's what it says:
  "The upgrade patch cannot be installed by the Windows Installer service because the program to be upgraded may be missing, ot the updgrade pathc may update a different version of the program. Verify that the program to be upgraded exists on your computer and that you have the correct update patch".
  I don't even know what program I'm supposed to have.
  Ideas, anyone?

• Problem Installing Policy Agent 2.2 on Apache 2.2.3

  Hi all,
  I'm trying to configure policy agent 2.2 on apache 2.2.3 on linux platform CentOS (red hat 5.1).
  The configuration and the installation seem to work properly, in effect in the log file install.log you can find :
  [06/10/2008 16:38:49:865 CEST] Creating directory layout and configuring Agent file for Agent_001 instance ...SUCCESSFUL.
  [06/10/2008 16:38:49:936 CEST] Reading data from file /opt/web_agents/apache22_agent/passwordFile and encrypting it ...SUCCESSFUL.
  [06/10/2008 16:38:49:937 CEST] Generating audit log file name ...SUCCESSFUL.
  [06/10/2008 16:38:50:022 CEST] Creating tag swapped AMAgent.properties file for instance Agent_001 ...SUCCESSFUL.
  [06/10/2008 16:38:50:026 CEST] Creating a backup for file /etc/httpd/conf/httpd.conf ...SUCCESSFUL.
  [06/10/2008 16:38:50:031 CEST] Adding Agent parameters to /opt/web_agents/apache22_agent/Agent_001/config/dsame.conf file ...SUCCESSFUL.
  [06/10/2008 16:38:50:032 CEST] Adding Agent parameters to /etc/httpd/conf/httpd.conf file ...SUCCESSFUL.
  But, when I try to restart Apache it gives me an error and in the error.log file in Apache you can read:
  [Tue Jun 10 16:57:33 2008] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
  [Tue Jun 10 16:57:34 2008] [notice] Digest: generating secret for digest authentication ...
  [Tue Jun 10 16:57:34 2008] [notice] Digest: done
  [Tue Jun 10 16:57:34 2008] [alert] Policy web agent configuration failed: NSPR error
  Configuration Failed
  Well, I found in the Sun documentation a well known bug about the NSPR and NSS library :
  Error message issued during installation of Policy Agent 2.2 on Linux systems
  When the Linux operating system is installed, specific components can be selected. Occasionally the specific components of the operating system selected lack the libraries necessary for Policy Agent 2.2 to function. When the complete Linux operating system is installed, all the required libraries are available. The libraries that are required for the agent to function are as follows: NSPR, NSS, and libxml2.
  Workaround: If the Linux operating system you are using is not complete, install the latest versions of these libraries as described in the steps that follow:
  At the time this note was added, the latest version of the NSPR library packages was NSPR 4.6.x , while the latest version of the NSS library package was NSS 3.11.x.
  To Install Missing Libraries for Policy Agent 2.2 on Linux Systems
  *+
  Install the NSS, and libxml2 libraries. These libraries are usually available as part of Linux installation media. NSPR and NSS are available as part of Mozilla binaries/development packages. You can also check the following sites:
  o
  NSPR: http://www.mozilla.org/projects/nspr/
  o
  NSS: http://www.mozilla.org/projects/security/pki/nss/
  So, I checked my libraries but they are upgraded to the latest version.
  If I comment the line that includes the libamapc22.so in the apache configuration file
  LoadModule dsame_module /opt/web_agents/apache22_agent/lib/libamapc22.so
  Apache can restart but the agent is misconfigurated!
  Any Idea?

  thank you Subhodeep for your reply,
  I didn't try to change the library file and I didn't find in licterature any information about library file changing in the Policy agent installation. Please, could you suggest me something more about which library to use instead of libamapc22.so?
  ps. I am using red hat 5.1, and from the release note of the policy agent seems that the latest platform version supported is red hat enterprise linux 4.0 versions.....
  this one could definitely be the reason of the misconfiguration.

• Installing Policy Agent gives Invalid empty password

  Hello All
  I am gettting this error when installing AM 2.2. I want to configure the Policy Agent with IBM WAS 6
  Copy agent.jar,amclientsdk.jar to
  /opt/IBM/WebSphere/AppServer/lib/ext...DONE.
  Creating directory layout and configuring AMAgent.properties file for
  agent_001 instance ...DONE.
  Reading data from file /opt/sun/policyagent/file/passwordfile and
  encrypting it ...
  *** ERROR: Installation failed due to the following error - (Invalid empty
  password specified.).
  The file exists in that path, and writeable (mod 777)
  The content of the file is "password."
  Does anyone have an idea why I am getting this error ??
  Thanks in advance

  I also am experiencing this error message when installing the AM v2.2 agent for WAS on linux. It looks like the Agent can't find the SUN security provider class and therefore can't run the encryption routine.
  The agentadmin logs show:
  EncryptionKeyGenerator.generateRandomNumber() : threw exception :
  java.security.NoSuchProviderException: no such provider: SUNWould adding "security.provider.SUN" to /opt/WebSphere/AppServer/java/jre/lib/security/java.security do the trick? I assume not by itself since the reference actually wouldn't be there.
  Thoughts?
  /Jed

• Policy Agent 2.2 patch for appserver 8.2

  Sparc JES 5 update 1. Appserver 8.2.
  Release notes for Policy Agent 2.2 for Appserver 8.1 say it will work on 8.2 with " the proper patch".
  Obtaining Policy Agent 2.2 for 9.0 does not appear to be possible anymore, and there is no indication that it would not require a patch to work with 8.2... OpenSSO links only to 8.1.
  Searching sunsolve doesn't quite give us the patch number. Some candidates but nothing that is clearly the required patch in this installation.
  If someone could throw some light on this unlit corner of the otherwise excellent JES5u1 release (and I DO like it) I would really appreciate.
  Thanks
  BJ

  Okay, I think I have the answer.
  The patch that enables the Agent for AS 81 to work with 8.2 is currently only available
  through technical support.
  However, you can download the 2.2 agent for As 9.0/9.1 from
  sun download site. This agent supports AS 8.1/8.2/9.0/9.1 servers.
  This agent is available for download here:
  http://www.sun.com/download/products.xml?id=46d7aa66
  Now, I make the download thing sound easy (it should be), but for some reason, searching for that link that I provide above isn't currently easy. At the moment, the download for this agent doesn't show up on the Policy Agent download page, here:
  http://www.sun.com/download/index.jsp?cat=Identity%20Management&tab=3&subcat=Policy%20Agents
  That might be a very temporary condition. I'm trying to straighten this out on the Sun side. Next, I'll add the direct download for this agent on my Policy Agent page here:
  http://blogs.sun.com/JohnD/page/policyagent

• Policy Agent 2.1 causing Sun Web Server Crash?

  Running Sun web server 6.0 SP7 on Solaris. Policy Agent 2.1 installed on web server. Identity Server on different Solaris box. Seeing the following error in log file for Web Server:
  [10/Mar/2004:11:21:25] catastrophe (14462): Server crash detected (signal SIGSEGV)
  [10/Mar/2004:11:21:25] info (14462): Crash occurred in NSAPI SAF validate_session_policy
  [10/Mar/2004:11:21:25] info (14462): Crash occurred in function xmlFreeProp from module /opt/SUNWam/lib/libxml2.so.2
  [10/Mar/2004:11:21:25] failure (14461): Child process admin thread is shutting down
  [10/Mar/2004:11:21:26] info (15195): Installing a new configuration
  This happens sporadically. I've patched the web server to SP7 and made sure it's using a newer version of the JDK (1.4.2_03) - any ideas of what might be causing this? It's not always the same part of the code (ie, not the same function) where it blows up. Sometimes there is no error at all - it just takes the web server process to 50% CPU utilization until we kill it.
  Any thought would be most appreciated. I'm also posting this in the web server forum (posted here since it seems to be related to the policy agent)
  Thanks,
  Pat

  You were absolutely correct
  I've resolved this issue - the problem was caused by two things:
  1. There is a new version of a library called libxml2.so that I had to get from Sun (they provided version 2.6.7)
  2. My web server with the agent on it is on a seperate box from the identity server. These two servers were out of sync in terms of their system time (ie, the solaris box with the agent / web server was about 8 minutes ahead of the solaris box with the identity server)
  Once both of these things were fixed (the time issue most importantly), the web server would not hang anymore.

• How to enable alerts for app server?

  We have setup a central autoreaction for our ECC6 system. Central autoreaction is in solman.
  We have registered separate sapccm4x agents in the CI and apps instances & both are ONLINE in solman. But when we try to assign the central autoreaction to the system in RZ21, it only assigns to the CI, not to apps instance.
  How can we assign the autoreaction to the app instance?
  Note: We do not want to use solman BPM, so please do not suggest that.
  Thanks
  Prasad

  Hi prasad,
  You cannot assign any central auto-reaction methods to the MTE classes that belong to the application servers of CEN as described below.
  In this case, use the conventional assignment using a local auto-reaction method, means assign directly.
  look at the constraints as described below
  .[http://help.sap.com/saphelp_nw70/helpdata/en/ac/825f18c02e454dac8da51f4eb22265/content.htm|http://help.sap.com/saphelp_nw70/helpdata/en/ac/825f18c02e454dac8da51f4eb22265/content.htm]
  jansi

• How to get alert for app server that experienced high memory and CPU utiliz

  Hi
  How to get  alerts configured and turned u201Conu201D for the  app server that experienced high memory and CPU utilization?
  And let me know where we can check this?
  Regards,
  Neni

  hi,
  Have you configured a Central Monitoring System (CEN)? This includes registering the agent on the CEN, starting it and configuring the Central Auto Reactions on CEN using RZ21 transaction.
  [http://help.sap.com/saphelp_nw70ehp1/helpdata/en/48/05c80724d63836e10000000a42189b/frameset.htm|http://help.sap.com/saphelp_nw70ehp1/helpdata/en/48/05c80724d63836e10000000a42189b/frameset.htm]
  Jansi

• Installing and Configuring Microsoft IIS plugin for weblogic server

  Hi guys,
  I want to navigate from "a page in website hosted on IIS" to "a page in application hosted on weblogic". I found out that there is a plugin for Microsoft IIS that can proxy requests to weblogic server. The documentation of the plugin can be found on the following address:
  Webserver plugin
  I want to know about the configuration of machines. Can IIS and weblogic be on the same machine or different machines????  Where i have to install the plugin????
  I am not able to find this in the above documentation.
  My environment is:
  1) Weblogic Server 10.3.5 installed on windows server 2012.
  2) Forms and Reports 11gR2 are installed on this weblogic server
  3) Apex Listener is also installed on the weblogic which communicates with a different db server.
  4) I also want to install JDeveloper and ADF on the same weblogic server and call applications developed in ADF (like jsp page) from Microsoft IIS website.
  Please help me and give me suggestions.
  Regards,
  Waqas

  There is a free ebook here:
  http://www.microsoft.com/en-us/download/details.aspx?id=30384
  It's also the title of a section of technet but that's not available in printed format as far as i know.
  http://technet.microsoft.com/en-us/library/cc262957.aspx

• Windows to Linux Migration for Apps Server - 11.5.10

  Hello all,
  Am trying to migrate our app server from WIndows 2000 to RH Linux. Am using the metalink doc id 238276.1 for this. Am encountering an error
  "RC-00216: The Context File does not exist. Exiting."
  Am not able to proceed any further. Have verified file path and permissions. Have setup some parts of the environment on the target with path for AD_TOP, APPL_TOP, CONTEXT etc.
  Has anyone completed such a migration successsfully? Any pointers will be greatly appreciated.
  Regards,
  Vijay

  Hi Vijay,
  Yes I have.
  What is the java and perl version being used?
  1 - which java
  2 - java --version
  3 - which perl
  4 - per --version
  The contextfile has been copied from the windows system does it have the correct permissions? Open the file and check if you see ^M (they should not exist)
  You are executing the command as follows:
  perl /data/hrtc/hrtcappl/ad/11.5.0/bin/adclonectx.pl migrate java=/usr contextfile=/data/hrtc/hrtcappl/admin/hrtc1_hrdev.xml
  try:
  cd /data/hrtc/hrtcappl/ad/11.5.0/bin/
  perl adclonectx.pl migrate java=/usr contextfile=/data/hrtc/hrtcappl/admin/hrtc1_hrdev.xml
  Also the location of JDK_TOP (/usr) seems a bit strange to me.....as I would expect something like /usr/jdk1.3.x/
  Thanks!
  KAR