Gavin's Blog

A few people have mentioned creating a cheat sheet for the Beehive 1.5.1 installation, so I thought I'd help out.
(I've created the following so you can just cut and paste each section if you want...)


Installing Database and Beehive on a Single Oracle Enterprise Linux 5.1 32bit machine.


After having installed the base operating system and setting up storage and networking...

#1 Ensure the following rpms have been installed:
cd /mnt/stage/OEL51x32staged/Server
rpm -Uvh gcc-4.1.1-52.el5.i386.rpm gcc-c++-4.1.1-52.el5.i386.rpm setarch-2.0-1.1.i386.rpm ksh-20060214-1.4.i386.rpm sysstat-7.0.0-3.el5.i386.rpm gdbm-1.8.0-26.2.1.i386.rpm libstdc++-4.1.1-52.el5.i386.rpm libstdc++-devel-4.1.1-52.el5.i386.rpm compat-libstdc++-296-2.96-138.i386.rpm compat-db-4.2.52-5.1.i386.rpm control-center-2.16.0-14.el5.i386.rpm glibc-common-2.5-12.i386.rpm binutils-2.17.50.0.6-2.el5.i386.rpm make-3.81-1.1.i386.rpm

#2 Create the Oracle user and Group:
groupadd -g 500 dba
groupadd -g 501 oinstall
useradd -g 500 -G 501 -u 500 oracle

#3 Add security limits for Oracle:
echo "
oracle soft nproc 2047
oracle hard nproc 16384
oracle soft nofile 1024
oracle hard nofile 65536
" >> /etc/security/limits.conf

#4 Add in the session limits library file to PAM's login file:
echo "
session required /lib/security/pam_limits.so
" >> /etc/pam.d/login

#5 Add kernel parameters:
echo "
kernel.sem = 250        32000   100      128
net.ipv4.ip_local_port_range = 1024    65000
net.core.rmem_default = 4194304
net.core.rmem_max = 4194304
net.core.wmem_default = 262144
net.core.wmem_max = 262144
" >> /etc/sysctl.conf

#6 Turn a few things off:
chkconfig sendmail off
chkconfig cups off

#7 Fix a few other things:
ln -s /usr/lib/libgdbm.so /usr/lib/libdb.so.2

#8 Install Oracle RDBMS 11g (11.1.0.6):
xhost +
su - oracle
/mnt/stage/Database1106staged/database/runInstaller
Inventory         : /opt/oracle/oraInventory
Oracle Home     : /opt/oracle/product/11.1.0/db_1

#9a Download some patches (11.1.0.7++):
# This first one is 11.1.0.7 which is 1.5GB!!!
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/6890831/p6890831_111070_Linux-x86.zip 
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/6782437/p6782437_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7273988/p7273988_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/6750049/p6750049_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/6083201/p6083201_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/6977167/p6977167_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7694979/p7694979_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7378322/p7378322_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/8221425/p8221425_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7643188/p7643188_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7258928/p7258928_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/7156912/p7156912_111070_Linux-x86.zip
wget --ftp-user ${metalinkusername} --ftp-password=${metalinkpassword} ftp://updates.oracle.com/8214576/p8214576_111070_Linux-x86.zip

#Note: Obviously the above command shows your username/password into Metalink, don't use this if you're on a shared machine or if you think people will look at your shell history, it'd be better to use the .wget hidden file. See here for how to do that.


#9b Apply database patches (11.1.0.7++):
Apply 11.1.0.7

Apply the rest of the patches, none of these patches require anything other than - $ cd ${patch_no} ; opatch apply -silent
But you should do the checking yourself.


#10 If you have SELinux running, allow text relocation:
 if [ "`sestatus |grep mode`" == "Current mode:                   enforcing" ]
then
chcon -t textrel_shlib_t /opt/oracle/product/11.1.0/db_1/lib/libclntsh.so.11.1
chcon -t textrel_shlib_t /opt/oracle/product/11.1.0/db_1/lib/libnnz11.so
chcon -t textrel_shlib_t /opt/oracle/product/11.1.0/db_1/lib/libsqlplus.so
chcon -t textrel_shlib_t /opt/oracle/product/11.1.0/db_1/lib/libnque11.so
fi

#10 Create and start default listener:

$ echo "
LISTENER =
  (DESCRIPTION_LIST =
    (DESCRIPTION =
      (ADDRESS = (PROTOCOL = TCP)(HOST = `hostname`)(PORT = 1521))
      (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1521))
    )
  )
" > $ORACLE_HOME/network/admin/listener.ora
$ echo "
PBH =
  (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = `hostname`)(PORT = 1521))
    (CONNECT_DATA =
      (SERVER = DEDICATED)
      (SERVICE_NAME = ${ORACLE_SID}`hostname |awk -F`hostname -a` ' { print $NF } '`)
    )
  )
" > $ORACLE_HOME/network/admin/tnsnames.ora

lsnrctl start

 
#11 Create the database
#
su - oracle
#ORACLE_SID=PBH.bh151dm.com  -  ( Production BeeHive - couldn't think of anything better...)

/opt/oracle/product/11.1.0/db_1/bin/dbca -silent -createDatabase -templateName General_Purpose.dbc -gdbName PBH.bh151dm.com -sysPassword syspass -systemPassword systpass -characterSet AL32UTF8 -storageType FS -automaticMemoryManagement -initParams java_pool_size=52428800,undo_retention=3600

#tip: If you go through DBCA GUI, ensure the NLS Lang is AL32UTF8 (Unicode) - the error that gets produced if you get this wrong does not help, something about {0}...


After that's finished and up and running...

#12 Change a few init.ora parameters
# if you didn't use the above silent dbca command, you might not have seen the init.ora parameters I've added... here they are.

sqlplus / as sysdba <<_EOF
alter system set java_pool_size=52428800 scope=both;
alter system set undo_retention=3600 scope=both;
exit;
_EOF

#13 Verify Database Vault is disabled...

If running sqlplus returns

Connected to:
Oracle Database 11g Enterprise Edition Release 11.1.0.7.0 - Production
With the Partitioning, Oracle Label Security, OLAP, Data Mining,
Oracle Database Vault and Real Application Testing options

Then turn it off via

cd $ORACLE_HOME/rdbms/lib ; make -f ins_rdbms.mk dv_off lbac_off ; relink oracle


#14 You're now ready to install Oracle Beehive 1.5.1

/mnt/stage/Beehive151staged/runInstaller



Let me know if I've missed something, or you want me to add some different platforms.



Gavin

Now that Beehive 1.5.1 has been released, us techie type people are busy downloading, finding a fresh database to install it against and a spare mid tier with 1922MB memory to install on, but what can everyone else do while they wait...

How about spending some time to look at what we get in the 1.5.1 release. Taken from the New Features Section in the Oracle Beehive 1.5.1 Documentation on OTN.

• Oracle Beehive Extensions for Explorer - Now you're able to directly access workspaces and workspace content through Microsoft® Windows® Explorer, and now with the conferencing component, you can fire up a conference call based on the document you're looking at... like this:
  

• Oracle Beehive Workspaces Client - This is the bit I want to play with more later, but just a quick blurb... actually, let's take it straight from the documentation:

• Oracle Beehive Extensions for Outlook Enhancements - Further improvements to the OBEO, document management, serverside rules, profile migration, etc.
  

• Oracle Beehive Zimbra Enhancements - Zimbra 5.0.9 Web client is released with Beehive 1.5.1, which supports the latest browsers for Firefox, Safari and IE. Tasks have also been added, and there is now support for shared folders and workspace folders.

• Enhancements for Mobile Device Support - Pocket Outlook on Microsoft Windows Mobile enhancements.

• Oracle Beehive Conferencing Enhancements - Recording conferences and document sharing.

• Other Features and Enhancements - A bunch of other features and enhancements to find...including the new logo.
  

OK, now's a good time to get back into the blogging.... Beehive 1.5.1 has been released on OTN.

Once again, here's the links:

Oracle Beehive Server Release 1 (1.5.1.0.0)

 Linux x86 (1,996,540,518 bytes) (cksum 3135990176)
Windows (32-bit) (1,914,833,669 bytes)
Solaris (SPARC 64-bit) (2,010,241,524 bytes) (cksum 1021980974)


Oracle Beekeeper Release 1 (1.5.1.0.0)

 Linux x86 (404,469,592 bytes) (cksum 2270341014)
 Windows (32-bit) (364,670,858 bytes)
 Solaris (SPARC 64-bit) (436,101,854 bytes) (cksum 1328235917)


I've just downloaded it, and firing up my OracleVM machine to get going.

If there's anything you'd like to see, let me know. I'm interested in the Workspaces aspect of the install personally. I've been involved with the beta versions so it'd be nice to see the final release of it.

Actually we could go through where the use of Workspaces could be used within a company. I know a few people have been wondering about Oracle's plethora of products in this space, and how ANOTHER portal/wiki product fits in.

By the way, you may notice that while you can download Beehive 1.5.1 from OTN, it's not on eDelivery yet... And the extra observant of you may have also noticed that OTN's references to documentation for Beehive still links to 1.4.3...

Be patient, I hear from a littler birdy that the documentation and release through eDelivery is imminent.. ie next 48 hours or so... (don't worry, I'll edit the numbers to line up later * )


Check back soon. I promise I'll post again in the next few days... once again, don't quote me :-)




Gavin


* read this as : I've been told this but don't quote me....

Edit: Beehive 1.5.1 is now available on eDelivery, and all documentation uploaded to OTN.

For those people out there that haven't heard, if you want to run Oracle software, but don't have the IT infrastructure or personnel to make it viable. OnDemand is there for you.

They've just added another product to their ever expanding range of Software-as-a-Service products.

You guessed it. Beehive.

Just looking at the March 09 Information InDepth Newsletter, I've found something a little interesting for those holding the cheque book.

"By offering Oracle Beehive as software as a service, organizations can pay one predictable price, just $15 per user per month for the software, support, hosting, and software management."

So, let's say you have 500 users...

$15 * 500 people * 12 months = $90,000* (we'll assume US Dollars)

Have I done the sums right? Surely not... For less than the salary of a good DBA, you get a fully secured, dedicated, supported, hosted enterprise wide collaborative environment...Nice.

Attend a live webinar Oracle Beehive, Unified Collaboration, Built for the Enterprise, March 19, 10:00 a.m. PDT/1:00 p.m. EDT.

* I don't know the T&C's to this and/or if there's anything like minimum user count etc etc. If you want further details, contact OnDemand, let me know if you need an introduction.

Wow. I'm lagging behind aren't I...

During the Christmas break, the sneaky people over at Oracle Beehive Product Development released the latest versions of Beehive Server and Beekeeper.

Oracle Beehive Server Release 1 (1.4.3.0.0)

 for Linux x86 (1,360,708,561 bytes) (cksum 3962428080)
for Windows (32-bit) (1,323,732,541 bytes)
for Solaris (SPARC 64-bit) (1,408,796,040 bytes) (cksum 588471323 )


Oracle Beekeeper Release 1 (1.4.3.0.0)

for Linux x86 (391,856,405 bytes) (cksum 1539779105)
for Windows (32-bit) (351,848,164 bytes)
for Solaris (SPARC 64-bit) (423,555,779 bytes) (cksum 1546135533)


Get downloading people. Upgrade class starts soon... :-)

Sorry I didn't post earlier, it's amazing how much things pile up when you spend a few weeks away from work. I made the mistake of checking my mail 1/2 way through my holidays, 300+ emails waiting for me, not to mention all the blogs to read...

Anyway, I'm back on track. Should be blogging soon about stuff. I've been working with Oracle VM lately, a fantastic product. I might post an entry about how I turned 4 ordinary PC's into a fun little highly available test system for eBusiness Suite and Single Sign-On.

Just a quick entry this time, not because I don't have anything to say, just because I reckon installing Beekeeper 1.4.1 will be so easy...

Here we go. Extract the installer, run it, plug in the Oracle Home, database location and credentials, hit GO.

I was going to get some screenshots for you, but by the time I jumped to my other screen to open "Grab" (my Mac screenshot program) to jump back and get a screen shot, it was too late...

All I got was this.

The installer had finished, and was now 1/2 way through the config.

So now as I write this and try to remember how to upload images, it's probably already finished config...let me check.

hmm. ok. One slight issue.. the config screen has fallen in a heap. OK. So not quite... the "Oracle Beekeeper Framework Deployment" failed, lets retry (I always retry straight away just incase it's a glitch), nup, failed.

I'm sure that's not what it's meant to do. Time for some investimigating...

Looking at the output in the configwizard shows you to the error log $OC4J_HOME/log/oc4j/diagnostics.log which I would interpret as $ORACLE_HOME/j2ee/home/log,etc,etc.

Oh, easy one.

oracle.ocs.management.config.OcsConfigException: java.io.FileNotFoundException: $ORACLE_HOME/beehive/conf/beehiveconfig.xml (Too many open files)

what's my files limit?

[orabee@radium ~]$ ulimit -n
1024

Yep, that'd do. Especially since this is the same user/server as my main Beehive install.

Quick jaunt into /etc/security/limits.conf as root and we're back on track. Obviously I can't continue the installer with the current limits. So time to cancel and start again.

Just a few tips before jumping back into it...

• If you're on a VNC connection, make sure you've got the correct limits before restarting the installer so you don't hit the error again,
• and don't forget, OPMN was started with the old limits, so that needs to go down and come up with the correct limits.

Processes in Instance: Beekeeper
---------------------------------+--------------------+---------+---------
ias-component | process-type | pid | status
---------------------------------+--------------------+---------+---------
BEEHIVECONTROL | BEEHIVECONTROL | 2556 | Alive

[orabee@radium bin]$ ./opmnctl stopall
opmnctl: stopping opmn and all managed processes...
[orabee@radium bin]$ ulimit -n
10000 --- muuuchh better. :-)
[orabee@radium bin]$ ./opmnctl startall
opmnctl: starting opmn and all managed processes...
[orabee@radium bin]$ ./opmnctl status

Processes in Instance: Beekeeper
---------------------------------+--------------------+---------+---------
ias-component | process-type | pid | status
---------------------------------+--------------------+---------+---------
BEEHIVECONTROL | BEEHIVECONTROL | 3269 | Alive

OK. So where to from here? Here's an assumption for ya.... When I installed Beekeeper, it didn't give me the option to just install and do the config later, (I mean why would it - you've obviously got Beehive running already to want to install BK).. but we've just canceled the configuration wizard, which means it's installed and only 1/2 configured.

So, let's see if $ORACLE_HOME/beehive/oobwiz/configWizard is there.. (that's the same spot the Beehive configuration wizard is.)

Isn't that handy, it's there, so i fired it up, it asked for the schema password and then continued from where it failed. Nice one.

And we're done.

Time to have a look around.

Interesting that I can't log into Beekeeper as my flast1 user, but I can with Beeadmin. I know, I haven't done Configuring Oracle Beekeeper for LDAP-Based Authentication yet. One of the post installation steps of Beekeeper. But it's interesting that the two admin tools use different authentication methods.

Login as Beeadmin (I remember the password :-) .

I'll leave it there for now, slightly longer than originally though.

Oracle Beehive 1.4.1 has been released for Windows (32-bit) and Solaris (SPARC 64-bit). Keeping up with it, is Beekeeper 1.4.1, which has also been released for the two platforms. Download from OTN or eDelivery.

Oracle Beehive Server Release 1 (1.4.1.0.0)

• Download for Linux x86 (1,347,603,286 bytes) (cksum 2044562054)
• Download for Windows (32-bit) (1,310,988,839 bytes)
• Download for Solaris (SPARC 64-bit) (1,395,744,737 bytes) (cksum 249453655 )

Oracle Beekeeper Release 1 (1.4.1.0.0)

• Download for Linux x86 (391,197,087 bytes) (cksum 2194524481)
• Download for Windows (32-bit) (351,663,926 bytes)
• Download for Solaris (SPARC 64-bit) (422,951,416 bytes) (cksum 2201227006)

It would be interesting to hear what other platforms people are hoping to see... post a comment below.

Happy installing. Let me know how you go.

Gavin

OK. So if you didn't see my entry on my little mishap with beeadmin, you might not know what I mean when I say:

We're back on track people!

OID is back as the Authentication Store type...

[orabee@radium ~]$ beectl modify_property --component _AuthenticationService --name AuthStoreType --value ldap

Which means beeadmin is no longer available. So (going in the opposite direction of what Richard and I talked about in the last entry...) I'll just give flast1 the same privileges as beeadmin and carry on...

Which was harder that I expected. Not having Beekeeper installed I couldn't just follow ML Note 738077.1, I thought, "no probs, I'll just do the same thing from the beectl command line and that'll be that."

I started my investigations at the "Managing and Provisioning Oracle Beehive Users" chapter of the Beehive 1.3 Administrator's Guide. Good a place as any.

I'm always on the look out for little gems of information, I found a good one:

[orabee@radium ~]$ beectl list_commands --category users

Gives you all the commands you could run to do with users. (in this case) ie

[orabee@radium ~]$ beectl list_commands --category users

----------------------------+---------------------------------------------------
Name | Description
----------------------------+---------------------------------------------------
add_external_contact | Creates an external contact in the given scope
add_group | Adds a group containing users
add_preference_property | Adds a new preference property to a preference set
add_preference_set | Adds a preference set to a preference profile.
add_user | Creates a user in the given scope
.
.
.
modify_group | Modifies group
modify_preference_set | Modifies the preference set by setting the extends
modify_user | Modifies a user present in an enterprise or organization

Pretty nifty I thought as I tested a few more categories.

Getting back on track, I skipped down to "Managing User Accounts"

Roles are an intrinsic part of Oracle Beehive access control.

Hmmm, sounds ominous..

It sent me across to Managing Oracle Beehive Access Control to continue investigating..

OK. I'm not going to go too far into it, coz it gets pretty hairy around the privileges and roles and role definitions and assigned roles and access control entities, did my head in... but to summarise...

I wanted to give my user flast1 the same privileges as beeadmin......right
I found out the role is called enterprise-system......right
I figured the way to see any details on this role is to look at the currently assigned roles coz it IS currently assigned to beeadmin.....

[orabee@radium seed]$ beectl list_assigned_roles

Lots of good information, look for the enterprise-system role, and whatever the ID which includes ....acar... in it

Which theoretically means I can assign that same role to flast1 by doing....

[orabee@radium seed]$ beectl modify_assigned_role --assigned_role 5C66:6F68:acar:AC85D09E2F5247D08F0E60DB12F57335000000000001 --add_accessor loginid=flast1

(You're obviously going to have a different role id...)

done.

DO YOU KNOW HOW LONG IT TOOK ME TO FIGURE THAT OUT!! And here I am giving it to you for free...

All because I want to hurry up and get the 1.4.1 installed, so I can install Beekeeper 1.4.1 and stop my brain hurting like that again...

Anyway. As my blog title says. Onward and Upgrade...

Upgrade Beehive 1.3.1 to Beehive 1.4.1

It was pretty straight forward really. Extract out the Beehive141 installer, run it.

It'll say "hey, I've found an old install, wanna upgrade it" (ok, not in those words exactly..)

You say "Yes, Yes I would thankyou".

It shows you the old ORACLE_HOME path, (just to show off,) you say "Yep, that's the one.)

It then wanders off for a few seconds, to come back and say "hey, shut it down for me, oh and by the way, I can't tell if your DMZ install is down, since it's on the other side of a firewall, so click here when you reckon it's down." (again, not quite the same words)

The summary tab, and then we're off and running.

BTW, I did end up jumping in Thunderbird and sending a few emails between my two users... so I've now got heaps of data to have upgraded... (all of 4 emails and a draft...)

OK, File updates done, now onto the config..

And there you go. Upgraded. Now to go test it.

Interesting that SMTP and IMAP aren't listening on the ports I specified earlier (25,143)...

Lets see why.. first port of call.. hasbind..

[orabee@radium bin]$ cd $ORACLE_HOME/beehive/bin
[orabee@radium bin]$ ls -l hasbind*
-rwx------ 1 orabee oinstall 32530 Oct 24 21:51 hasbind
-rws--s--x 1 root oinstall 32538 Aug 18 19:02 hasbind.orig

There you go, new binary without the root permissions. Let's change it and restart..

Yep, All looks good. All three of my emails are there too :-)

Oh, and by the way. Guess what I found after all this...

This, here it is if you're too lazy to click a link...

Note: If you configure Oracle Beehive with an external, LDAP-based user directory, unless there is a BEEadmin account in that external directory which is marked to synchronize with Oracle Beehive, the BEEadmin account will be deleted when you first synchronize. This is because all Oracle Beehive accounts must be mastered in the external directory.

So does that mean I can just create a beeadmin account in OID and viola. hmmm. I'll have to try that later...

In case you missed it...

Beehive is now available to download from OTN. License agreements exist of course, please read before downloading.

Oracle Beehive Server Release 1 (1.4.1.0.0)

Download for Linux x86 (1,347,603,286 bytes) (cksum 2044562054)

Oracle Beekeeper Release 1 (1.4.1.0.0)

Download for Linux x86 (391,197,087 bytes) (cksum 2194524481)

At the moment it's Linux only. Windows and Solaris people, I'll let you know when I do...

Gavin

OK. Oracle Homes backed up, check. Database backed up, check. Beehive1.4.1 software downloaded and extracted, check.

I'm in a bit of a dilemma though... Do I upgrade my 1.3.1 to 1.4.1, or just do a fresh install of 1.4.1? In my Post install config, you'll notice I'm not quite up to configuring and testing Mail. So is doing an upgrade really worth seeing with my measly 2 users. I suppose theoretically it shouldn't matter if I've got 2 or 20,000 users, or any data stored for these users. I mean, obviously the timing may differ (I assume), but I doubt you the reader would be wondering how long it takes me to do an upgrade, (that's why you have test systems - do it yourself). So, 1.4.1 install would be cleaner.

Before we get to that, I kind of need to warn you about something, I've only just found it, and therefore haven't found the solution yet.

I can't log in as beeadmin....

I know I know, it's just a small issue. I didn't notice the other day after finishing the LDAP sync (as I was just excited to get it working). I hadn't had a chance until now to look at the environment to get ready for the Beehive 1.4.1 upgrade. (Those long time readers know I'm an Oracle Consultant, so I only get to play with Beehive after hours.)

I tried logging in as beeadmin. It didn't work, I thought I'd had the wrong password, (being a Consultant, you have to remember dozens of passwords). So went to change the password. Which then meant spending the next 1/2 hour figuring out if I had the right syntax. Every time I ran

[orabee@radium ~]$ beectl modify_user --user loginid=beeadmin --login_password

I got:

[orabee@radium ~]$ beectl command failed. See the log file for more details.
Profile doesnot have attribute mapping

Looking at the log I don't see much at all... Even when I fire it up with --log_level FINER I couldn't see anything pinpointing the error, so I'm assuming there's something wrong with my map between LDAP and UDS.

Maybe that's why I can't log in as beeadmin...Back I go.

[orabee@radium ~]$ beectl modify_property --component _AuthenticationService --name AuthStoreType --value db
[orabee@radium ~]$ beectl activate_configuration ; beectl modify_local_configuration_files

Tried logging in again as beeadmin, which... of course, works with the password I thought it was. Hmmm.

OK, so where does that leave me. My beeadmin password was correct after all, and if I tie in OID again, it's not going to let me log back in because of this attribute mapping issue.

Time to pull apart and rebuild my map. I'll let you know how I go.

If you have any suggestions, let me know.

If you've been following my installing and configuring antics over the last few weeks, get ready for some fun as we go through our first upgrade....

That's right people, Beehive 1.4.1 has just been released, so get your skates on, class starts as soon as I've downloaded 1.4.1...

In the meantime, we should update the bookmarks as well..

Beehive 1.4.1 Doco Home is where to go for all the latest.

But specifically for our install / config purposes... is the Linux Install Guide.

While I'm here and have your attention, lets look at What's New in Beehive 1.4.1

• Oracle Beehive Central
• OpenLDAP Support
• Support for Microsoft Windows Terminal Services
• Profile Migration Tool for Oracle Beehive Integration for Outlook
• Oracle Universal Records Management (Oracle URM) Configuration Using Oracle Beekeeper
• Task Coexistence with Microsoft Exchange Server 2003 Deployments
• SMPP Certification for Clickatell
• Actionable Notifications
• Automatic Groups for Managers, Peers, and Direct Reports

Bit of a list. I won't be going through all of them, (as I don't have a spare Microsoft SBS 2003 server to test Windows Terminal Services OBIO and Task coexistence, etc etc) but pretty cool stuff.

I know the Profile Migration Tool and Oracle Beehive Central will be quite important when it comes to migrating users into Beehive, so I'll probably cover them when the first migration rolls along...

The Automatic Groups for Managers, Peers and Direct Reports is nice. It's something in effect within Oracle ( we run Beehive internally @ Oracle). It means that to get hold of your boss, you don't have to feel bad about trying to get them to authorize you as a buddy, just so you can get hold of them, they're just there.

The Oracle URM configuration would be cool to do. Maybe one day...

BTW, there was also a new Release of Beekeeper 1.4.1 the other day I forgot to mention... I'll install that as part of the upgrade. Now that I know how to use beectl in anger I don't feel so bad becoming a point & click DBA :-)

I don't know about you, but I always try and get to know a product on the command line fully before migrating to the GUI version. I like to know that if things really go bad, and you can only get to the environment via SSH. You're not left there thinking "How do I extend that tablespace? I need a browser to get to DBControl...". Which is why I haven't covered Beekeeper yet...

So, exciting times ahead.

BTW, if you didn't take the plunge with me when I installed Beehive against 11.1.0.6. It's time to upgrade as :

Oracle Beehive requires an existing database with the following characteristics: Uses one of the follwing databases installed on any supported operating system:

• Oracle Database 10g Release 2 (10.2.0.1) Enterprise Edition with one of the following patch sets:
  • Oracle Database 10g Release 2 (10.2.0.3) Patch Set 2
  • Oracle Database 10g Release 2 (10.2.0.4) Patch Set 3
• Oracle Database 11g Release 1 (11.1.0.6) Enterprise Edition

Until next time.

Alrighty, first attempt at hooking Beehive up with OID and SSO. I love the fact that Beehive is a standalone product, making it easier to deploy quickly and without scrolling through certification matrices making sure it's compatible with your particular version of OID and SSO and Portal and blah blah....

But, what happens when you actually do have OID as your identity source and want to hook it up. I mean, why wouldn't you, you've spent the last 5 years ensuring OID is the source of identity, now Beehive comes along and says, "yeah you can do it, but you don't have to...", well, I WANT TO!

So lets give it a try. This post will concentrate on OID, I'll fire in another entry for the SSO integration.

You may have seen my Beehive 1.3 install not so long ago...

I also just happen to have a fresh new instance of OID 10.1.4.1 sitting around as well.. it's straight out of the box, nothing fancy.

Only one users has been created so far, nice and original:

firstname: first1
lastname: last1
uid: flast1
email: flast1@acme.com

I'm going to be taking my lead from Chapter 11 - Integrating and Synchronizing LDAP with Oracle Beehive of the Oracle Beehive Installation Guide for Linux

I won't go into the in's and out's of how and why and what happens. You can read the install guide for that. I want to actually do it, you can come along for the ride and watch me get bruised and battered by the experience.

Just quickly, this is what it says I should do:

• Create a map between OID and UDS (Oracle Beehive User Directory Service) users/groups - called a profile
• Plug the profile into Beehive
• Enable it
• Test it.
• Get a coffee and relax.

I admit, that last one I put in, but seriously, if you get Beehive hooked up to OID, the jobs almost done. You'll have all your users able to access Beehive, sweet!. OK, so there's the little issue of trying to import the existing data from email and calendar and chat and discussions and workspaces and stuff like that...

OK breathe... in....out....in....out....Sorry, didn't mean to scare you.

Lets get this OID thing done.

Thankfully, (and as expected), to create the map for UDS - OID, a template is provided. (In fact there's more templates than you can poke a stick at!)

Under $ORACLE_HOME/beehive/template/uds is the file - oidprofile_template.xml

We need to update it with our details, I'm not going to write down what I did, coz it's not going to mean much to you, check the guide to see what needs to change.

Here's a tip for new players, make sure you remove the < and > from comments within the xml file...

ie
...
<user_search_base><enter user search base></user_search_base>
<group_search_base><enter group search base></group_search_base>
...

Sounds obvious doesn't it. Depending on where you accidentally leave one, it'll let you upload no probs, then you sit around scratching your head for a few minutes trying to figure out why

[orabee@radium ~]$ beectl list_directory_profiles --file oidprofile.xml

doesn't return anything.... My accidental > was on

<primary_authentication_attribute>uid></primary_authentication_attribute>

No wonder it didn't work.

Another tip, you require the Enterprise name and Organization name for the map, which you can get via

[orabee@radium ~]$ beectl list_enterprises
and
[orabee@radium ~]$ beectl list_organizations --scope <Identifier returned from above query>

But, for some reason, I was getting errors with this last one.

ErrorCode:[BEES-06000,SEVERE,Unexpected error.]
Effect: The requested operation cannot be performed
Action: Contact system administrator.

I ended up restarting the whole lot and it worked after that... strange.

Hmm, another tip, since I'm here...

If an entry in the XML file is not mandatory (don't ask me how you figure that out :-) you can just remove the line. Don't leave the line in with the default comment, or remove the comment and leave the <field></field> there, neither get past the XML parser. (And yet the added > did...)

Ummm, what else.

You need the obfuscated password for orcladmin in the profile. This is an easy one:

$ beectl obfuscate
--DON'T FORGET, it's the ORCLADMIN password you're obfuscating, not beeadmin's...

Final tip.

Step E: Providing Scope and Membership Mapping Information was a bit confusing at first, until I read the bit below

This excerpt maps the following entries:
* A user that is under the attribute OU=Alpha will be scoped within the organization My_Organization.
* A user that is under the DN dc=us,dc=oracle,dc=com will scoped within the enterprise My_Enterprise. A user that is under the attribute dc=external,dc=us,dc=example,dc=com will scoped within the same enterprise (My_Enterprise). The same user will be a member of the organization My_Organization.

Which, because my OID install is Vanilla, I don't care about, so the first section in the guide can be ignored... might be handy in future when trying to map multiple Organizations.

The whole back half of the map I didn't touch, from <directory_attribute_map> down, as I don't have anything in particular in OID I want mapped across. If you've got something you require mapping, you'll need to look at that bit in more detail.

So after all that, this is how the profile upload should look...

[orabee@radium uds]$ beectl add_directory_profile --file oidprofile_template.xml

Start profile OID_BEEHIVE_PROFILE validation.
Successfully validated the profile OID_BEEHIVE_PROFILE.
Changes to configuration repository are not activated.
Successfully added 1 directory profiles.

Even though it shows it's already ENABLED, I figured why not:
[orabee@radium uds]$ beectl modify_property --component OID_BEEHIVE_PROFILE --name ProfileState --value ENABLE

[orabee@radium uds]$ beectl activate_configuration
Proposed configuration is saved successfully and activated now.

Let's grab the users from OID ready to test the map.

[orabee@radium uds]$ beectl download_ldap_user_data --file UsersFromLdap.xml --profile OID_BEEHIVE_PROFILE

File:$ORACLE_HOME/templates/uds/UsersFromLdap.xml is generated on host:radium
See the log files for this run on machine radium.
LDAP User extraction messages.
Successfully extracted data for 3 users.
Failed to extract data for 0 users.
Total users 3.
User XML generation messages.
Successfully generated xml data for 3 users.
Failed to generate xml data for 0 users.
Total users 3.

Looking at the file generated, I've got orcladmin, PUBLIC, and my flast1 user.

Let's add them to Beehive.

[orabee@radium uds]$ beectl add_user --file UsersFromLdap.xml --ldapbootstrap

Created 1 users.
Failed to create 2 users.
Total users 3.
User : PUBLIC addition failed. Reason: The specified address is invalid
User : orcladmin addition failed. Reason: The specified address is invalid

Sounds about right, neither PUBLIC or orcladmin had email addresses, so why should it add them.

BTW, the reason for adding the users is that since we've got the synchronisation happening between OID and Beehive's UDS (User Directory Service), all future changes will be brought across, it's everything before now that we needed to get.

OK, time to switch across to ldap for the Authentication Service

[orabee@radium uds]$ beectl list_properties --component _AuthenticationService --name AuthStoreType

-----------------+--------------------------------------------------------------
Property name | Property value
-----------------+--------------------------------------------------------------
AuthStoreType | db
-----------------+--------------------------------------------------------------

[orabee@radium uds]$ beectl modify_property --component _AuthenticationService --name AuthStoreType --value ldap

Changes to configuration repository are not activated.
Successfully stored the property for component id 2a7e1102-4ceb-4a14-8815-72503ba958f1.

[orabee@radium uds]$ beectl activate_configuration ; beectl modify_local_configuration_files

BEECTL figured out it needs a restart to move across, so down it goes, and up it comes...

[orabee@radium uds]$ beectl list_properties --component _AuthenticationService --name AuthStoreType

-----------------+--------------------------------------------------------------
Property name | Property value
-----------------+--------------------------------------------------------------
AuthStoreType | ldap
-----------------+--------------------------------------------------------------

Check if the user authenticates...

orabee@radium uds]$ beectl
beectl> login --authuser flast1 --authpassword XXXXXX
User flast1 is successfully authenticated and logged in.

Awesome, now for the big test, create a user in OIDDAS and see how it goes. Yep you guessed it:

firstname: first2
lastname: last2
uid: flast2
email: flast2@acme.com
User created, now, remembering the following entry in the profile...

[orabee@radium uds]$ beectl list_properties --component OID_BEEHIVE_PROFILE --name PollInterval

-----------------+--------------------------------------------------------------
Property name | Property value
-----------------+--------------------------------------------------------------
PollInterval | 600
-----------------+--------------------------------------------------------------

I've got 5 minutes to wait before getting worried, I'm off for a coffee...

Would you look at that. my flast2 user can log in (on the right), but not only that, have a look at where I'm coming from.. my DMZ install.

How easy was that... Next time, SSO.

Deploying Beehive instances in a DMZ is a lot simpler than I first expected. Yes, a few manual steps are required, and a few scripts to be run, but if you're used to working in DMZ, it's nothing different.

You've seen the screenshots from my main install, this isn't much different except in the product selection screen..

That and the fact that the installer doesn't ask for anything related to the existing installation.

OK, let's get into it. BTW, I know we were going through the list of things to do... which means I should be doing the Opening Ports Required by Oracle Beehive for FTP. But FTP is so boring and old...

Fine, you win, I'll do the ftp config... but I'm doing it quickly coz the DMZ is much cooler...

First, figure out what's already there...
[orabee@radium ~]$ beectl list_ports --format xml
...big long list.... look for FTP...
<row>
<column name="Protocol">FTP</column>
<column name="Listening Port">2121</column>
<column name="Virtual Port">2121</column>
<column name="Defining Component">_FtpService</column>
<column name="Property Name">Port</column>
<column name="Listening Component">BTI_InstanceA</column>
</row>
<row>
<column name="Protocol"></column>
<column name="Listening Port">2120</column>
<column name="Virtual Port"></column>
<column name="Defining Component">_FtpService</column>
<column name="Property Name">DefaultDataPort</column>
<column name="Listening Component">BTI_InstanceA</column>
</row>
<row>
<column name="Protocol"></column>
<column name="Listening Port">12121</column>
<column name="Virtual Port"></column>
<column name="Defining Component">_FtpService</column>
<column name="Property Name">DataConnectionPort</column>
<column name="Listening Component">BTI_InstanceA</column>
</row>
...
(which means, if you don't do anything, you can still FTP to port 2121, anyway.)

[orabee@radium ~]$ beectl modify_port --protocol FTP --port 21
Changes to configuration repository are not activated.
Successfully stored the property for component id 742db13f-a00f-4fdc-95b7-764364a81064.
Then the usual:
[orabee@radium ~]$ beectl activate_configuration ; beectl modify_local_configuration_files
[orabee@radium ~]$ beectl restart --component _FTPService
[orabee@radium ~]$ netstat -an |grep 21 |grep LISTEN
tcp 0 0 0.0.0.0:21451 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:21300 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:21401 0.0.0.0:* LISTEN

Waaiiitt aa miiinuuuteee.... that doesn't quite look right, we've just changed it to port 21, which means I should be seeing tcp 0.0.0.0.0:21 LISTEN...

Oh, hang on. Did I edit the cap.ora file for ftp in the last post...no. OK.

So, update /etc/cap.ora to add port 21.
[orabee@radium ~]$ cat /etc/cap.ora
+user orabee: bind port 25,143,80,21

Better, now restart from the beginning... modify_property, activate_config, modify_local, restart service...

[orabee@radium ~]$ netstat -an |grep 21 |grep LISTEN
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN

MUUCCCHH better... let's give it a quick whirl..

[gavin@home ~]$ ftp radium 21
Connected to radium.
220 The service is ready for new user.
Name (radium:gavin): beeadmin
331 User name accepted. Need password for beeadmin.
Password:
230 You are logged in.
Remote system type is UNIX.
ftp> pwd
Remote directory: /
ftp> bye

OK. so NOW can I go onto the DMZ?.. Thankyou. OK. here we go.

Once again, I'll be basing it on the Beehive Install Guide for Linux, specifically this section. And continuing the theme of using chemical elements for servers, the DMZ server is called gallium.

Nothing different, except as I mentioned above, the screen where you select DMZ instead of Standard...

You'll need to read up on what's included and excluded from the DMZ install. But the big one is, beectl doesn't work, which means opmn is your friend here.

I'm now going to jump across to the DMZ Config section to continue.

First thing, configure the wallet on the DMZ instance...

[oracle@gallium ~]$ mv $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default_OLD
[oracle@gallium ~]$ cd $ORACLE_HOME/bin
[oracle@gallium bin]$ ./orapki wallet create -wallet $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default -auto_login -pwd XXXXXX

Edit the bti.properties file to include the correct wallet directory
[oracle@gallium ~]$ vi $ORACLE_HOME/beehive/conf/bti.properties

Edit the opmn.xml file to change the wallet directory
[oracle@gallium ~]$ vi $ORACLE_HOME/opmn/conf/opmn.xml
...
<notification-server interface="ipv4">
<port local="6101" remote="6201" request="6004"/>
<ssl enabled="true" wallet-file="$ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default"/>
</notification-server>
...

OK. We now need to join the opmns together, the existing Mid tier install, and the new DMZ install.
On the original (in my case, radium) server, find the ports used for ons.
[orabee@radium conf]$ grep "port local" opmn.xml
<port local="6100" remote="6200" request="6003"/>

Now on the DMZ server (gallium) edit the opmn.xml file to include all midtiers.
<ssl enabled="true" wallet-file="$ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default"/>
<topology>
<nodes list="radium.au.oracle.com:6200"/>
</topology>
</notification-server>

Restart opmn.
[oracle@gallium bin]$ ./opmnctl stopall ; ./opmnctl startall
opmnctl: stopping opmn and all managed processes...
opmnctl: starting opmn and all managed processes...
[oracle@gallium bin]$ ./opmnctl status
Processes in Instance: dmz1.gallium
---------------------------------+--------------------+---------+---------
ias-component | process-type | pid | status
---------------------------------+--------------------+---------+---------
BTI | BTI | 25446 | Alive
ASG | ASG | N/A | Down
HTTP_Server | HTTP_Server | 25445 | Alive

Find the ONS ports for this DMZ server :
[oracle@gallium conf]$ grep "port local" opmn.xml
<port local="6101" remote="6201" request="6004"/>

Find a few things from the bti.properties file as well...
[oracle@gallium conf]$ cat bti.properties
ServerPort=21300
PersistentId=183284364
...
NumberOfClientWorkers=1

If you've got a firewall between the servers...(and you should... it's a DMZ people!!) Now's the time to get some ports open. Check which ones by finding the AJP ports on the original server.

[orabee@radium conf]$ beectl list_components --type ManagedOc4j
---------------+----------------------------------------------------------------
Component type | Component identifier
---------------+----------------------------------------------------------------
ManagedOc4j | BEEAPP_instance131a
...
[orabee@radium conf]$ beectl list_properties --component BEEAPP_instance131a
Property name | Property value
--------------------------+-----------------------------------------------------
AjpPortMaxValue | 12600
AjpPortMinValue | 12501

Open from 12501-12504 for Beehive, + an extra 2 for Zimbra if you'll be doing that later...

OK, now we've got all the information to add the DMZ to the cluster.

This is what I ran.
[orabee@radium conf]$ beectl add_dmz_home_instance --hostname gallium --opmn_request_port 6004 --opmn_remote_port 6201 --bti_server_port 21300 --bti_unique_id 183284364 --no_of_client_workers 1

Changes to configuration repository are not activated.
Successfully created configuration for the DMZ installation in the central repository.
Component identifier of the DMZ BeehiveInstance is e99569a5-2a2c-4a73-a765-d322677b7c94

Awesome, now the obligatory activate&modify... this time with a slight twist...
[orabee@radium conf]$ beectl activate_configuration ; beectl modify_local_configuration_files --log_level FINEST
..get ready for a big chunk of debug...

OK. Time to check if things are working using $ORACLE_HOME/opmn/bin/opmnctl @cluster status -l

Hmm. Neither are showing each other, yet...Ahh, OPMN log on gallium gives us the reason.

08/10/01 18:01:53 [ons-secure] Connection 8,radium,6200 SSL handshake failed

I think this could be the default wallet on the original beehive server not being right... maybe? let's change it and see...

[orabee@radium 1.3.1]$ mv $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default_OLD
[orabee@radium 1.3.1]$ $ORACLE_HOME/bin/orapki wallet create -wallet $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default/ -auto_login -pwd XXXXXX

[orabee@radium 1.3.1]$ beectl modify_property --component beehive_instance_instance131a --name WalletDir --value $ORACLE_HOME/Apache/Apache/conf/ssl.wlt/default

[orabee@radium 1.3.1]$ beectl obfuscate
Specify the value for secure option --password (The text you type will not be displayed as it is entered):
Enter value for password: XXXXXX
[orabee@radium 1.3.1]$ beectl modify_secure_property --component beehive_instance_instance131a --name WalletPassword --value XXXXXX --obfuscated
[orabee@radium 1.3.1]$ beectl activate_configuration ; beectl modify_local_configuration_files

This could make or break it.... it's restarting everything, well, almost everything.

Hmm. still not working. And that message is still coming up in the opmn.log... I might change it to ssl=false to see if my hunch is right.

Well well well. What do we have here...

[oracle@gallium logs]$ $ORACLE_HOME/opmn/bin/opmnctl @cluster status
Processes in Instance: instance131a.radium
---------------------------------+--------------------+---------+---------
ias-component | process-type | pid | status
---------------------------------+--------------------+---------+---------
BTI | BTI | 25693 | Alive
ASG | ASG | N/A | Down
OC4JGroup:default_group | OC4J:BEECORE | 26240 | Alive
OC4JGroup:default_group | OC4J:BEEAPP | 26477 | Alive
OC4JGroup:default_group | OC4J:BEEMGMT | 26072 | Alive
OC4JGroup:default_group | OC4J:oc4j_soa | 25756 | Alive
HTTP_Server | HTTP_Server | 25721 | Alive

Processes in Instance: dmz1.gallium
---------------------------------+--------------------+---------+---------
ias-component | process-type | pid | status
---------------------------------+--------------------+---------+---------
BTI | BTI | 26528 | Alive
ASG | ASG | N/A | Down
HTTP_Server | HTTP_Server | 26527 | Alive

Final test... Let's login to the DMZ

Nice!

I'll keep investigating this ssl thingy here. But in the meantime, enjoy your installing.

Next time, OID. More cool stuff. When will it end! I hear you say.

Let's look at a few things you'll need to do after installing Beehive, but before you start migrating users...

If you haven't installed Beehive yet, check out my last post.

OK, here we go. According the the Oracle® Beehive Installation Guide - Post Installation Procedures, here's what we have to do:

• Using Oracle Beehive Command-Line Utility
• Configuring Oracle Beehive to Listen on Ports Less Than 1024
• Opening Ports Required by Oracle Beehive for FTP
• Configuring DMZ Instances
• Integrating and Synchronizing LDAP with Oracle Beehive
• Configuring SSL
• Configuring TLS
• Configuring SSL for LDAP Integration
• Enabling AJPS
• Configuring Oracle Beehive E-mail
• Configuring Oracle Secure Enterprise Search
• Configuring Oracle Single Sign-On
• Configuring External Oracle BPEL Process Manager with Oracle Beehive
• Installing Oracle Beehive Integration for Outlook
• Configuring Oracle Beehive Integration for Zimbra
• Cloning Oracle Beehive
• Performing Oracle Beehive Administration Console Post-Installation Procedures

Seems like a big list! Let's do a few this time and see how we go.

Using Oracle Beehive Command-Line Utility, oh, easy. beectl is the fella. Here's the link - Get used to the syntax and use of beectl. Everything becomes a lot easier if you know how to use it, scripting, admin, start/stop etc. etc.

Configuring Oracle Beehive to Listen on Ports Less Than 1024 - According to the Administrators notes, specifically the section "Modifying Oracle Beehive Ports using Privileged Port Numbers" (that was obvious wasn't it...) here's what we need to do.

• Change permissions on the .apachectl executable. (if changing Apache)
• Change permissions on the hasbind executable.
• Create /etc/cap.ora file
• Add the username and ports to the cap.ora file
• viola! hey presto, privileged ports allowed, now go configure it.

Here's what I did:

[orabee@radium ~]$ ls -l $ORACLE_HOME/Apache/Apache/bin/.apachectl $ORACLE_HOME/beehive/bin/hasbind
-rwx------ 1 orabee oinstall 31734 Aug 2 03:19 hasbind
-rwxr-x--- 1 orabee oinstall 1703780 Aug 14 18:46 .apachectl

[orabee@radium ~]$ sudo chown root $ORACLE_HOME/Apache/Apache/bin/.apachectl
[orabee@radium ~]$ sudo chmod a+sx $ORACLE_HOME/Apache/Apache/bin/.apachectl
[orabee@radium ~]$ sudo chown root $ORACLE_HOME/beehive/bin/hasbind
[orabee@radium ~]$ sudo chmod a+sx $ORACLE_HOME/beehive/bin/hasbind

[orabee@radium ~]$ ls -l $ORACLE_HOME/Apache/Apache/bin/.apachectl $ORACLE_HOME/beehive/bin/hasbind
-rwsr-s--x 1 root oinstall 1703780 Aug 14 18:46 .apachectl
-rws--s--x 1 root oinstall 31734 Aug 2 03:19 hasbind

[orabee@radium ~]$ sudo cat "
+user orabee: bind port 25,143,80
" > /etc/cap.ora

[orabee@radium ~]$ ls -l /etc/cap.ora
-rw-r--r-- 1 root root 31 Aug 13 22:00 /etc/cap.ora

Now time to configure Beehive.

You can see from the following the ports it's currently using:

[orabee@radium ~]$ beectl list_ports --format xml
...
<row>
<column name="Protocol">HTTP</column>
<column name="Listening Port">7778</column>
<column name="Virtual Port">7778</column>
<column name="Defining Component">ohs_instance131a.radium</column>
<column name="Property Name">HttpListenPort</column>
<column name="Listening Component">ohs_instance131a.radium</column>
</row>
<row>
<column name="Protocol">HTTPS</column>
<column name="Listening Port">4444</column>
<column name="Virtual Port">4444</column>
<column name="Defining Component">ohs_instance131a.radium</column>
<column name="Property Name">HttpSslListenPort</column>
<column name="Listening Component">ohs_instance131a.radium</column>
</row>

[orabee@radium ~]$ beectl modify_property --component ohs_instance131a.radium --name HttpListenPort --value 80

[orabee@radium ~]$ beectl modify_property --component _VIRTUAL_SERVER --name HttpPort --value 80

Then, (and get used to this bit...) Activate the configuration, and modify the local config files

[orabee@radium ~]$ beectl activate_configuration
[orabee@radium ~]$ beectl modify_local_configuration_files

To change the SMTP and IMAP, it's a little different... We'd already added it to /etc/cap.ora so we don't need to worry about that.

Actually, let's wait for another day to configure these ports... but in case you're itching to.. it looks something like:

[orabee@radium ~]$ modify_port --protocol SMTP --port <port_number>
[orabee@radium ~]$ modify_port --protocol IMAP --port <port_number>

Next time, ftp port change, then the cool one - DMZ install.

Let's have a look at installing the new Oracle® Beehive 1.3.

We'll start off with a nice easy install. Two servers, database and mid tier, I'm using chemical elements for naming conventions these days so whenever you see stronium, think database, whenever you see radium, think midtier... ok? Let's get started

A few other facts for the install...

• Oracle Enterprise Linux 5 (Carthage)
• 2GB RAM
• Oracle Beehive 1.3
• Oracle Database 11.1.0.6 32bit

OK, I'm going to be running through the Oracle® Beehive Installation Guide so if you want to have that up as we go through it might make more sense...

I'm not going to get into the nitty-gritty, you can read as well as I can (plus things might change after I write this). There's a few prereqs to get through for each server version for Beehive, no surprises there.

As mentioned before, I'll be installing it against 11.1.0.6, so we need to check the prereqs for this as well.

I've added a few other patches to the database ORACLE_HOME to help things along, coz, as you can see from the Beehive install guide, they don't mention 11g just yet... so I'm trying something out here... lets hope it works. If not I'll drop back to 10g.

Lets call the database buzz13. I'll still make sure the minimum init.ora parameters are as defined in the doc, chances are the installer will check that...

ie
java_pool_size 50M (52428800)
job_queue_processes 10
processes 150
undo_retention 3600

Archive logging is on.

By the way, I'm just using dbca with the general database template so it's nice and quick.

While we're waiting for the database to finish off, lets start the mid tier install. Remember radium is our midtier server.

I spose I should take some screenshots for you hey...

OK. Here's the database going in (in the background) with the beehive installer just starting up, I run VNC on one machine and send all output to that. (easier..)

I won't show all the screens, just the important ones. Like this one, just the standard install for now.

And this, prereqs done..

I'm doing an install only. We can do the configure later. (So I've got a point to go to if it doesn't like my 11g database).

OK, so while that's going in, lets check on the database install.... all done, good. Let's quickly check it over. Off to the trusty Enterprise Console.

All looks good. OK. So Beehive has finished installing. The database is ready.

The beehive installer told me where to run the configuration wizard from:

$ORACLE_HOME/beehive/oobwiz/configWizard

Off we go.

OK, this bit needs some thinking about. Well, at least for me. It would probably be quite easy for you guys and gals that are implementing Beehive at work... But for me to make something up that I recognise and make sense...

OK, how about this:

Enterprise: ACME
Organization: Consulting
Instance: instance131a
Site: HeadQuarters

I hope this makes sense later on. Just remember if you're following along in later posts to remember what I've called it and what you've called it. No use you trying to shutdown BEEAPP_instance131a.radium. - that's mine. Get it? you will...

Anyway, onwards

It hasn't stumbled with the database, thats good.

Um, OK. It's done. Installed. How easy was that.

Next post, we'll look at the Post-Installation Procedures.
Here's something we'll probably need for that:

[orabee@radium ~]$ beectl modify_property --component _AuthenticationService --name AuthStoreType --value ldap

But more about that later.

G

Oracle Beehive was announced at Oracle Openworld yesterday by Chuck Rozwat and Charles Phillips.

From the OTN Site:

Oracle Beehive provides an integrated set of collaboration services built on a single, scalable, open, and enterprise-class collaboration platform. Beehive allows users to access their collaborative information through familiar clients while enabling IT to consolidate collaborative infrastructure and implement people-centric applications with a centrally managed, secure, and compliant environment built on Oracle technology.

• Downloading, installing
• Installed, now what?
• Integrating with OID
• Integrating with SSO
• My favorite, installing Beehive in a DMZ - yes, it's already been solved for you!

If you can't wait until my next post (days, not months like before...) here's some stuff for you.

First, have a read of the documents over at the Oracle Technology site,
If you're itching to start installing... go to Oracle By Example, and see how the OBE guys do it.
If you want to start talking to others about Beehive, hit the forums.

Later, I'll talk about Migrating to Beehive from Oracle 10gCollaboration Suite, and MSExchange, co-existence with Exchange and a few other bits and pieces.

Stay tuned. First up, installing Beehive.

G