When performing a fresh install on UNIX platforms, you can run the installation program for the SiteMinder Agent for IBM WebSphere from the console.
The installation program and other required files can be downloaded from the Technical Support site.
To obtain the installation kit from the Support site
To install the SiteMinder Agent for WebSphere by running the installation script in a UNIX console
sh ca-asa-was-12.0-sp02.sh -i console
The -i console option interactively runs the installation from a console.
We recommend the following location:
/opt/smwasasa
The program installs the required files in the SiteMinder Agent install location.
/opt/WebSphere/AppServer
The program installs the required files in the WebSphere install location.
Create a Host Configuration Object in the Administrative UI before registering a trusted host.
Note: Specify this option only if you are the reinstalling the SiteMinder Agent for WebSphere and the SmHost.conf file that you want to use was therefore created by the smreghost tool supplied with this release. The SiteMinder Agent for WebSphere is implemented using a pure Java SiteMinder Agent API and cannot use an SmHost.conf file created for another SiteMinder Agent to establish its connection to the Policy Server.
Specifies non-FIPS mode, which lets the Policy Server and the Agents read and write information using the existing SiteMinder encryption algorithms. If your organization does not require the use of FIPS-compliant algorithms, the Policy Server and the Agents can operate in non-FIPS mode without further configuration. If you do not want to use FIPS encryption, accept this default.
Specifies FIPS-migration mode, which is used when you are upgrading an earlier version of SiteMinder to full-FIPS mode. The Policy Server and the Agents continue to use the existing SiteMinder encryption algorithms as you migrate your environment to use only FIPS 140-2 approved algorithms.
Specifies full-FIPS mode, which requires that the Policy Server and Web Agents read and write information using only FIPS 140-2 algorithms.
Important! A SiteMinder installation that is running in Full FIPS mode cannot interoperate with, or be backward compatible to, earlier versions of SiteMinder that do not support FIPS, including all agents, custom software using older versions of the Agent API, and custom software using PM APIs or any other API that the Policy Server exposes. Relink all custom software using Policy Management APIs or any other API that the Policy Server exposes with FIPS-supporting versions of the respective SDKs to achieve the required support for Full FIPS mode.
The installation program registers your unique trusted host name with the Policy Server. If your Policy Server is not running, a message appears and you can register the trusted host manually later.
If you have not patched the JVM Java Cryptography Extension (JCE) package for unlimited cryptography, host registration fails and the following error message appears:
Failed to enable any clusters. Registration has failed.
The default location of the file is:
ASA_HOME/conf/
Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |