www.bonsaiframework.com
Page tree
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 16 Next »

Tomcat

Standard stuff.

Initial Wizard

Default User Password

User = amAdmin
Pass = Adam's password+

Server Settings

Server URL = openam.tin-pham.com:8080
Cookie Domain = .tin-pham.com
Platform Local = en_US
Configuration Director = /opt/openam-config

Serious bug here, you MUST use the fully quantified domain name, openam.tin-pham.com and not tin-pham.com in your browser url.

 

Configuration Data Store Settings

First Instance = selected

Data Store = OpenDS or Sun Java System Directory Server
SSL/TLS Enabled = no
Host Name = localhost
Port = 50389
Admin Port = 5444
JMX Port = 1689
Root Suffix = dc=openam,dc=tin-pham,dc=com
Login ID = cn=Directory Manager
Password = Adam's password+

Originally I wanted to use OpenDJ but there's some issues all over the place so instead I willl use their internal data store for the Configuration Data Store settings.

First Instance = selected

Data Store = OpenDS or Sun Java System Directory Server
SSL/TLS Enabled = no
Host Name = opendj.tin-pham.com
Port = 1389 (or whatever you chose for you directory server)
Root Suffix = dc=opensso,dc=tin-pham,dc=com
Login ID = cn=Directory Manager
Password = Adam's password+

Due to a bug, hostname with a single . will not work. For example, kyrypton.com will not work but www.krypton.com or opendj.krypton.com will work.

Regarding the Root Suffix, I wonder if we need to use a different one for the config data versus user data.

...

User Data Store Settings

The OpenAM data store is not supported in the production environment per the wizard.

Other User Data Store = selected

User Data Store Type = OpenDS

SSL/TLS Enabled = no
Host Name = opendj.tin-pham.com
Port = 1389
Root Suffix = dc=tin-pham,dc=com
Login ID = cn=Directory Manager

Site Configuration

Select No

Default Policy Agent User

Set password for policy agent must be different so using 2Keys.

Summary Details

Configuration Store Details

 

SSL/TLS Enabled
Host Name
Listening Port
Root Suffix
User Name
Directory Name		No
tin-pham.com
1389
dc=opendj.tin-pham,dc=com
cn=Directory Manager
/opt/openam-config

 

User Store Details

 

SSL/TLS Enabled
Host Name
Listening Port
Root Suffix
User Name
User Data Store Type		No
tin-pham.com
1389
dc=opendj.tin-pham,dc=com
cn=Directory Manager
OpenDS

 

Site Configuration Details

This instance is not setup behind a load balancer

Run

The LDAP operation failed., refer to install.log under /opt/openam-config for more information.

Another bug in a sense. Carefully reading the manual,

If you decide to use an existing installation of OpenDJ for configuration data, then you must first relax the restriction on objects with multiple structural object classes, by using the OpenDJ *dsconfig* command before completing OpenAM configuration.

Enter this into the command line

cd /opt/opends.0
./dsconfig -h opendj.tin-pham.com -p 4444 -D "cn=Directory Manager" -w ****** set-global-configuration-prop --set single-structural-objectclass-behavior:warn -X -n

 

...

 

 

First Instance = selected

Data Store = OpenDS or Sun Java System Directory Server
SSL/TLS Enabled = no
Host Name = opendj.tin-pham.com
Port = 1389 (or whatever you chose for you directory server)
Root Suffix = dc=opensso,dc=tin-pham,dc=com
Login ID = cn=Directory Manager
Password = Adam's password+

  • No labels