Installation and Upgrade Guides › Policy Server Installation Guide › Unattended Installation › How to Run an Unattended Policy Server Install

How to Run an Unattended Policy Server Install

To run an unattended Policy Server install, complete the following procedures:

1. Review the unattended installation guidelines.
2. Copy the Policy Server properties file from the Policy Server host system.
3. Complete one of the following steps:
   • If you are reinstalling the Policy Server, copy the file to a temporary location.
   • If you are installing the Policy Server to a new system, copy the file to a temporary location on that system.

   Note: (UNIX) Be sure that the UNIX user has the appropriate permissions to install from this directory.

4. Copy the Policy Server installation media to the same location as the properties file.
5. Modify the Policy Server installer properties file.
6. Run the Policy Server installer.
7. Verify the Policy Server installation.

More information:

Unattended Installation Guidelines

Modify the Policy Server Installer Properties Files

You modify the Policy Server installer properties file to define installation variables. The default parameters, passwords, and paths in this file reflect the information you entered during the initial Policy Server installation.

Important! The properties template includes a variable that specifies the Policy Server's FIPS mode of operation: CA_SM_PS_FIPS140. If you are reinstalling the Policy Server, do not modify the value of the variable. If required, change the FIPS mode of operation after reinstalling the Policy Server. More information on changing the Policy Server's FIPS mode of operation exists in the Upgrade Guide.

General Policy Server Information

The General Information section allows you to set the following:

DEFAULT_INSTALL_DIR

Specifies the location of the Policy Server installation.

DEFAULT_SHORTCUTS_DIR

Specifies the location of the SiteMinder program icon.

Example: C:\\Documents and Settings\\All Users\\Start or /SiteMinder

Note: The icon feature only works on Windows.

DEFAULT_JRE_ROOT

Specifies the JRE installation location.

DEFAULT_BROWSER

(UNIX only) Specifies the installation location of the browser.

Example: /usr/dt/appconfig/netscape/netscape

DEFAULT_SMPROFILE_CHOICE

(UNIX only) Specifies if smprofile.ksh should be added to the .profile file. Specify true for yes; specify false for no.

DEFAULT_ENCRYPTKEY

Allows you to enter a cleartext encryption key, which secures data sent between the Policy Server and the policy store.

Note: If you comment out the ENCRYPTED_ENCRYPTKEY parameter and uncomment DEFAULT_ENCRYPTKEY, then the unattended installer uses the cleartext encrypt key value from DEFAULT_ENCRYPTKEY. The DEFAULT_ENCRYPTKEY parameter is commented out by default after the initial Policy Server installation.

ENCRYPTED_ENCRYPTKEY

Shows the encrypted encryption key, which secures data sent between the Policy Server and the policy store. You entered this key during the initial Policy Server installation and cannot change it.

Important! Do not modify this encrypted value since any change will break the communication between the Policy Server and policy store when you run an unattended installation.

If you comment out the DEFAULT_ENCRYPTKEY parameter and uncomment ENCRYPTED_ENCRYPTKEY, then the unattended installer uses the encrypted encryption key value from ENCRYPTED_ENCRYPTKEY.

CA_SM_PS_FIPS140

Specifies the Policy Server's FIPS mode of operation.

Values: COMPAT, MIGRATE, or ONLY

Important! Do not modify the value if you are reinstalling the Policy Server.