You can run the installation script using a UNIX console window.
- Close all programs.
Note: Be sure that you install the Policy Server as the same UNIX user you used for installing the documentation.
- Download the Policy Server installation kit from the Technical Support site and save one of the following installation executables to a temporary location:
- nete-ps-6.0-sp6-sol.bin
- nete-ps-6.0-sp6-rhel30.bin
- nete-ps-6.0-sp6-hp.bin
Note: Depending on your permissions, you may need to add executable permissions to the install file.
Example: chmod +x nete-ps-6.0-sp6-sol.bin
- In a UNIX shell, enter the following command:
sh ./nete-ps-6.0-sp6-os.bin -i console
- os
-
Specifies sol, rhel, or hp
Solaris example: sh ./nete-ps-6.0-sp6-sol.bin -i console
Setup verifies the following prerequisites:
- You have the appropriate UNIX system permissions to install the Policy Server for the location you specify during installation and can modify web server configuration files.
- You have the appropriate operating system and web server listed on the SiteMinder Platform Support Matrix for 6.0. To access this matrix, go to the Technical Support site and search for the SiteMinder Platform Support Matrix for 6.0.
- The computer has necessary free disk space and the required JDK or JRE version installed. For the required versions, search for the SiteMinder Platform Support Matrix for 6.0 on the Technical Support site.
- The system has the required/recommended patches installed.
After installation, you can find the installation log file in siteminder_home/install_config_info.
The file name is CA_SiteMinder_Policy_Server_v6.0_SP6_InstallLog.log.
- Read the introduction and press Enter.
The installation program runs smpatchcheck to verify that you have the required/recommended UNIX operating system patches are installed. If the patches are not installed, the installer aborts and tells you which patches are needed.
- Enter the JRE directory.
- The installer displays the License Agreement. Press Enter to read the complete agreement.
- If you agree with License Agreement terms, enter y to continue the installation.
- Read the Installation Notes for important information about installing SiteMinder and press Enter to continue.
- Enter your name and press Enter.
- Enter your company name and press Enter.
- Specify a directory path under which the SiteMinder installation directory must be created or press Enter to use the default location.
The installation script creates a siteminder directory in the specified location. For example, if you specify /opt, then this product is installed in /opt/siteminder. If the siteminder installation directory exists, be sure that the installation user account has proper file permissions to create a subdirectory.
- Enter Y to confirm Policy Server installation location.
- Enter the full path to the web browser on this system, including the executable. The installation program needs this information for the Policy Server User Interface online help system.
- Enter 1 if you want the smprofile.ksh added to the .profile file.
- Enter the Encryption Key:
- If you are installing the first Policy Server in a multiple Policy Server deployment, specify a random, case–sensitive string from 6 through 24 characters long.
- If you have already installed a Policy Server and this Policy Server is part of the same site, enter the Encryption Key you specified during that installation.
The encryption key is a key that secures data sent between the Policy Server and the policy store. All Policy Servers that share a SiteMinder policy store must be configured using the same encryption key. For stronger protection, define a long encryption key.
- In the Choose Features section, enter the numbers (separated by commas) of the Policy Server features you want. The OneView Monitor GUI, Web Server(s), and LDAP Policy Store are selected by default.
Note: To select none of the features, enter a "," (comma).
- OneView Monitor GUI
-
The install program configures the OneView Monitor GUI to work on the web server you specify later in this procedure.
Note: To use the OneView Monitor, you must have the required Java SDK and ServletExec AS for UNIX/Sun Java System installed. For the required versions, search for the SiteMinder Platform Matrix for 6.0 on the Technical Support site.
- Web Server(s)
-
The install program configures the Policy Server User Interface and, if specified, the OneView Monitor to work on this web server.
- SNMP
-
The install program configures SNMP to work with the Policy Server.
Note: The password of the root user and a native SunSolstice Master Agent are required to enable SNMP support.
- Policy Store
-
The install program configures an LDAP directory server as a policy store.
Additional Considerations:
- You are installing the Policy Server using the smuser UNIX account. Do not configure the Sun Java System or Apache on Linux web server for the Policy Server User Interface or the OneView Monitor GUI. The installer modifies the web server configuration files and smuser does not have the appropriate root privileges. After the Policy Server installation is complete, run the Policy Server Configuration Wizard, which is located in siteminder_home/install_config_info/nete-ps-config.bin, as root to configure the Policy Server User Interface or the OneView Monitor GUI.
- The installer can automatically configure an LDAP directory server as a policy store. You can automatically configure the policy store in an instance of Sun Java System Directory Server Enterprise Edition (formerly Sun ONE/iPlanet), ADAM, or AD LDS. For other supported LDAP or relational database vendors, you configure the policy store manually after installing the Policy Server.
Note: If there is a problem with configuring the policy store, you can run the Policy Server Configuration Wizard, which is located in siteminder_home/install_config_info/nete-ps-config.bin, to fix the issue.
- (Optional) If you chose to have the OneView Monitor GUI configured, enter the JDK directory.
- (Optional) If you chose to have the OneView Monitor GUI configured, enter the ServletExec installation directory for the OneView Monitor GUI.
Example: /usr/local/NewAtlanta/ServletExecAS
- Enter a free port number.
- If you have multiple ServletExec instances, select the se-hostname-server you want to configure for the Monitor GUI and press Enter.
- Enter the path to the root folder of a supported web server and press Enter.
- Specify the web server you want to configure with the Policy Server and press Enter.
Note: Consider the following:
- Be sure that the web server instance is stopped.
- If you have multiple web servers, only select one. We recommend configuring one web server at a time. Use the Policy Server Configuration Wizard to configure additional web servers after installing the Policy Server. See Configure Additional Web Server Instances for the Policy Server for more information.
- If you are installing the Policy Server before the documentation, you are prompted to run the Policy Server Configuration Wizard to create the netegrity_docs virtual directory on the web server. This virtual directory lets you view the documentation using the Policy Server User Interface.
- At the Policy Store - LDAP server prompt configure ADAM, AD LDS, or Sun Java System Directory Server Enterprise Edition (formerly Sun ONE/iPlanet) as a policy store.
