Differences

This shows you the differences between two versions of the page.

--- installation:03-aducid-software [2019/11/11 22:14]
mpospisek [Installation]
+++ installation:03-aducid-software [2020/03/25 21:16]
mpospisek
@@ Line 17: / Line 17: @@
 </codedoc>
 Files for aducid-aaa-modules.
-**Please check your server hostname in these files, as indicated.**
 Export system variables
@@ Line 130: / Line 129: @@
   * Copy the repository directory from the ADUCID Server Kit DVD to  /media/ADUCID
-Install and run the aducid-installer script
+Install the aducid-installer script
 <codedoc code:bash>
 # in this directory, rpm files are located
@@ Line 138: / Line 137: @@
 # dtto as above
 yum localinstall aducid-installer-4.x.y-1.z.el7.centos.noarch.rpm
-# now, the install script will be in the path (/usr/local/bin), invoke it
+</codedoc>
+Now, the install script will be in the path (/usr/local/bin). Start it
+<codedoc code:bash>
 aducid-installer
 </codedoc>
+{{ :installation:aim4_installer.png?600 |}}
 The aducid-installer script (see /usr/local/bin/aducid-installer.sh) asks about AIM server parameters:
-| hostname | Preferably whole DNS name |
+| AIM host | Preferably whole DNS name |
-| service provider ID | AIM machine inner identification. DNS hostname is a good candidate. |
+| SPID | (Service Provider ID) AIM machine inner identification. DNS hostname is a good candidate. |
-| icon file | 100x100 .png file that will be seen on client PEIGs. This can be changed anytime, files are located in /usr/share/pixmaps |
+| Display Name | AIM identification that will be displayed on user PEIGs |
-| replication password | In fact, DB access password for account created during install |
+| Internal Network | Network for R4 (Server App <-> AIM) communication |
+| AIM Sync Public/Private Key | Certificates used to secure direct synchronization between two AIM servers (e.g. during identity link data transfers) |
+| DB Password | Password for DB access |
+| Server icon | 100x100 .png file that will be displayed on user PEIGs. This can be changed anytime, files are located in /usr/share/pixmaps |
+| Proofing | If you need to install sample proofing applications (Yes/No) |
 ===== Post-install checks =====
@@ Line 160: / Line 168: @@
 </codedoc>
-Other certificates used by ADUCID server are listed in /opt/tomcat/conf/ADUCID.properties. After you set this parameters to your certificate files, restart of the tomcat9.service is needed.
+Other certificates used by ADUCID server are listed in /opt/tomcat/conf/ADUCID.properties, see AIM Sync Public/Private Keys above. After you set this parameters to your certificate files, restart of the tomcat9.service is needed.
 <sxh bash>
 PUBLIC_KEY=/opt/aaa/certs/wild.aducid.com.crt
@@ Line 173: / Line 181: @@
 postinstall checks
 <codedoc code:bash>
-orange-d3:~ root$ systemctl -l status httpd.service
+aim:~ root$ systemctl -l status httpd.service
 ● httpd.service - The Apache HTTP Server
    Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled)
@@ Line 188: / Line 196: @@
            └─5528 /usr/sbin/httpd -DFOREGROUND
-orange-d3:~ root$ systemctl -l status aducid-aaa.service
+aim:~ root$ systemctl -l status aducid-aaa.service
 ● aducid-aaa.service - The ADUCID AAA Module
    Loaded: loaded (/usr/lib/systemd/system/aducid-aaa.service; enabled; vendor preset: disabled)
@@ Line 201: / Line 209: @@
            └─908 aaa/4
-Jun 25 23:03:03 orange-d3.aducid.com aaa[906]: sess.created:1529960583
+Jun 25 23:03:03 aim.aducid.com aaa[906]: sess.created:1529960583
-Jun 25 23:03:03 orange-d3.aducid.com aaa[906]: sess.modified:1529960583
+Jun 25 23:03:03 aim.aducid.com aaa[906]: sess.modified:1529960583
-Jun 25 23:03:03 orange-d3.aducid.com aaa[906]: sess.expires:1529967783
+Jun 25 23:03:03 aim.aducid.com aaa[906]: sess.expires:1529967783
-Jun 25 23:03:03 orange-d3.aducid.com aaa[906]: 127.0.0.1:36274 sent 168 byte(s)
+Jun 25 23:03:03 aim.aducid.com aaa[906]: 127.0.0.1:36274 sent 168 byte(s)
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: 127.0.0.1:52677 recv 94 byte(s)
+Jun 25 23:03:03 aim.aducid.com aaa[905]: 127.0.0.1:52677 recv 94 byte(s)
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: sess.id:a6ae3724b541fb22127a207882e99ee2d1b0c762922ceff78dd4839872a712ab
+Jun 25 23:03:03 aim.aducid.com aaa[905]: sess.id:a6ae3724b541fb22127a207882e99ee2d1b0c762922ceff78dd4839872a712ab
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: sess.created:1529960583
+Jun 25 23:03:03 aim.aducid.com aaa[905]: sess.created:1529960583
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: sess.modified:1529960583
+Jun 25 23:03:03 aim.aducid.com aaa[905]: sess.modified:1529960583
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: sess.expires:1529967783
+Jun 25 23:03:03 aim.aducid.com aaa[905]: sess.expires:1529967783
-Jun 25 23:03:03 orange-d3.aducid.com aaa[905]: 127.0.0.1:52677 sent 168 byte(s)
+Jun 25 23:03:03 aim.aducid.com aaa[905]: 127.0.0.1:52677 sent 168 byte(s)
-orange-d3:~ root$ systemctl -l status tomcat9.service
+aim:~ root$ systemctl -l status tomcat9.service
 ● tomcat9.service - Apache Tomcat 9.0.6 Servlet Container
    Loaded: loaded (/usr/lib/systemd/system/tomcat9.service; enabled; vendor preset: disabled)
@@ Line 219: / Line 227: @@
  Main PID: 921 (java)
    CGroup: /system.slice/tomcat9.service
-           └─921 /usr/java/default/bin/java -Djava.util.logging.config.file=/opt/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djdk.tls.ephemeralDHKeySize=2048 -Djava.protocol.handler.pkgs=org.apache.catalina.webresources -server -Dcom.sun.management.jmxremote.port=8086 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false -Djava.security.egd=file:/dev/./urandom -Djava.awt.headless=true -Xms2g -Xmx2g -XX:+UseG1GC -XX:+UseStringDeduplication -XX:MaxGCPauseMillis=100 -Dignore.endorsed.dirs= -classpath /opt/tomcat/bin/bootstrap.jar:/opt/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/opt/tomcat -Dcatalina.home=/opt/tomcat -Djava.io.tmpdir=/opt/tomcat/temp org.apache.catalina.startup.Bootstrap start
+           └─921 /usr/java/default/bin/java -Djava.util.logging.config.file=/opt/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djdk.tls.ephemeralDHKeySize=2048 -Djava.protocol.handler.pkgs=org.apache.catalina.webresources -server -Djava.security.egd=file:/dev/./urandom -Djava.awt.headless=true -Xms2g -Xmx2g -XX:+UseG1GC -XX:+UseStringDeduplication -XX:MaxGCPauseMillis=100 -Dignore.endorsed.dirs= -classpath /opt/tomcat/bin/bootstrap.jar:/opt/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/opt/tomcat -Dcatalina.home=/opt/tomcat -Djava.io.tmpdir=/opt/tomcat/temp org.apache.catalina.startup.Bootstrap start
-Jun 25 22:54:50 orange-d3.aducid.com systemd[1]: Starting Apache Tomcat 9.0.6 Servlet Container...
+Jun 25 22:54:50 aim.aducid.com systemd[1]: Starting Apache Tomcat 9.0.6 Servlet Container...
-Jun 25 22:54:50 orange-d3.aducid.com tomcat-startup.sh[887]: + cd /opt/tomcat
+Jun 25 22:54:50 aim.aducid.com tomcat-startup.sh[887]: + cd /opt/tomcat
-Jun 25 22:54:50 orange-d3.aducid.com tomcat-startup.sh[887]: + ./bin/startup.sh
+Jun 25 22:54:50 aim.aducid.com tomcat-startup.sh[887]: + ./bin/startup.sh
-Jun 25 22:54:50 orange-d3.aducid.com systemd[1]: Started Apache Tomcat 9.0.6 Servlet Container.
+Jun 25 22:54:50 aim.aducid.com systemd[1]: Started Apache Tomcat 9.0.6 Servlet Container.
 </codedoc>
@@ Line 234: / Line 242: @@
 <codedoc code:bash>
-orange-d3:~ root$ tail -f /opt/tomcat/logs/catalina.out
+aim:~ root$ tail -f /opt/tomcat/logs/catalina.out
 Not found in 'org.owasp.esapi.resources' directory or file not readable: /opt/apache-tomcat-9.0.6/validation.properties
 Not found in SystemResource Directory/resourceDirectory: .esapi/validation.properties
@@ Line 262: / Line 270: @@
+[<>]

ADUCID 4.x

User Tools

Site Tools

Differences

Page Tools