DSEE Tip: Quick Start Installation Procedure

Following recent experience whilst installing Sun Directory Server Enterprise Edition (DSEE) I decided to put togoether so simple "Quick Start" installation instruction that can be used to get an instance of DSEE up and running quickly. Also described is how to install the Directory Service Control Centre (DSCC) when not using the packaged installation file.

In addition to this page I have put together a number of simple window scripts, available here, that allow you to automate the build / rebuild of your windows directory instance.

Resources

DSEE Installation

Directory Server Enterprise Edition (DSEE) 6.1  is installed from the multi-platform installation media, found here, and installed using the command-line process below; the default values are shown in Table 1: Default DSEE Parameters:

  1. Unix :

    Copy DSEE.6.1.Solaris10-X86_AMD64-full.tar.gz to the Solaris box and extract into temporary install directory.

    Windows :

    Copy DSEE.6.2.Windows-X86-full.zip to the Windows box and extract into a temporary install directory.

  2. Execute the dsee_deploy found in the DSEE_ZIP_Distribution sub-directory.

    dsee_deploy install -c DS -i <install directory> -p 11169 –-no-inter

  3. Add the following to your PATH:

      • <install directory>/ds6/bin

      • <install directory>/dps6/bin

      • <install directory>/dscc6/bin

      • <install directory>/dsrk6/bin

  1. Create a directory by executing the dsadm in the ds6/bin sub-directory.

    Unix :

    dsadm create -p 1389 -P 1636 <install directory>/ds

    Windows :

    dsadm create -p 1389 -P 1636 <install directory>/ds1389

  2. Start directory.

    dsadm start <instance path>

  3. Test that the server has started.

    ldapsearch -h localhost -p 1389 -b "" -s base "(objectclass=\*)"

  4. Create empty Suffix.

    Unix :

    dsconf create-suffix -h localhost -p 1389 dc=msoa,dc=sierra,dc=sun,dc=com

    Windows :

    dsconf create-suffix --unsecured -h localhost -p 1389 dc=msoa,dc=sierra,dc=sun,dc=com

  5. Test by connecting remote LDAP Browser.


Parameter

Default Value

Installation Directory

/export/home/sierra/software/DSEE6.1

($DSEE_INSTALL_DIR)

Cacao Agent

11169 (set using the -p flag)

LDAP Port

1389

LDAP SSL Port

1636

Directory Manager DN

cn=”Directory Manager”

Directory Manager Password

adminadmin

DSCC Password

adminadmin

Base Suffix

dc=msoa,dc=sierra,dc=sun,dc=com

DS Instance Path

$DSEE_INSTALL_DIR/ds

(For windows ds will not work because the installation will try and create an audit logger called ds which is reserved in windows. Instead call the instance $DSEE_INSTALL_DIR/ds1389) $MY_DS



Table 1: Default DSEE Parameters

DSCC Installation

The Directory Service Control Centre (DSCC) can be used to manage you Directory Server providing a more comprehensive interface than the simple Directory Server Editor. For the reference architecture we will be running Glassfish and it is therefore assumed that this has been installed.

The DSCC is shipped as part of the Directory Installation and a dscc6 directory will be created following the above installation.

  1. Execute dsccsetup initialize within the $DSEE_INSTALL_DIR/dscc6/bin directory.

    1. Set password as above

    2. Check by calling dsccsetup status.

  2. Execute dsccreg add-server -h localhost –description “My DSEE” $MY_DS to register the previously created Directory.

  3. Access the Glassfish Admin Console

  4. Install the $DSEE_INSTALL_DIR/var/dscc6/dscc.war file

    1. Context Root: /dscc

    2. Name: DSCC

  5. Access the dscc

  6. Add the following lines in the {glassfish-install-dir}/domains/domain1/config/server.policy file

// Permissions for Directory Service Control Center

grant codeBase "file:${com.sun.aas.instanceRoot}/applications/j2ee-modules/DSCC/-"

{

permission java.security.AllPermission;

};


Quick Start Installation Scripts

The installation scripts are all configured using the DSEEEnv.bat file, below, therefore if you need to change any of the paramters this is the file should be edited.

SET DSEE_HOME=C:\\Software\\LDAP\\SunDSEE
SET DSEE_PATH=%DSEE_HOME%\\ds6\\bin;%DSEE_HOME%\\dps6\\bin;%DSEE_HOME%\\dsee6\\bin;
%DSEE_HOME%\\dsrk6\\bin;%DSEE_HOME%\\dsee6\\bin;%DSEE_HOME%\\dsee6\\cacao_2\\bin;%DSEE_HOME%\\dscc6\\bin


SET LDAP_HOST=localhost
SET LDAP_PORT=1389
SET LDAPS_PORT=1636

SET DEFAULT_SUFFIX=dc=blog,dc=sun,dc=com
SET LDAP_MANAGER=cn=Directory Manager
SET LDAP_MANAGER_PASSWORD=adminadmin

SET DSEE_BASE_DIR=C:\\Software\\LDAP\\SunDSEE
SET DEFAULT_DS=%DSEE_BASE_DIR%\\ds1389
SET DSCC_DS=%DSEE_BASE_DIR%\\var\\dscc6\\dcc\\ads
SET PERL5LIB=
SET INSTALLATION_SRC_DIR=C:\\MyDownloads\\JES\\DSEE.6.1.Windows-X86-full\\DSEE_ZIP_Distribution

SET PATH=%PATH%;%DSEE_PATH%

SET AM_LDIF_DIR=C:\\Software\\AppServer\\accessmanager\\config


  • setDSEEEnv.bat - Configuration file
  • createDefaultSuffix.bat - Creates the suffix specified in setDSEEEnv.bat
  • createDS.bat - Creates the default directory
  • deleteDS.bat - Delete the directory.
  • installDSEE.bat - Install the extracted zip distribution.
  • unistallDSEE.bat - Removes directory instance.

Resources




Comments:

I love it! I have trouble adding clients and importing data. Are here many steps after this before clients can be added and teh ds used to authenticate logins?

Posted by Alice Ander on January 29, 2008 at 09:46 PM GMT #

Their are no further steps that have to be done. What you can do is create a suffix within the DSCC and select the populate with default data. This will give you a set of default users. If we did this for the suffix dc=wlm,dc=sun,dc=com and created you as a user of type inetOrgPerson then your UserDn would be uid=Alice,ou=People,dc=wlm,dc=sun,dc=com with the you set. If you are looking at installing Access Manager for this I have added some simple instructions at http://blogs.sun.com/toxophily/entry/dsee_tip_installing_access_manager

Posted by guest on January 30, 2008 at 05:11 AM GMT #

I'll do that right away. I haven't used glassfish admin (new to Solaris 10), but will install the war file into DSCC. I'm looking forward to being able to eventually running "ldapclient init" without any errors. Thank you for the documentation and comments (I wish Sun would do that!).

Posted by Alice Ander on January 30, 2008 at 07:57 AM GMT #

This is indeed useful. Please see my article on using Perl to automate Directory Server rollouts: http://developers.sun.com/identity/reference/techart/ds-perl.html &
http://blogs.sun.com/jo/entry/automating_directory_server_6_with

Posted by Jonathan Gershater on February 11, 2008 at 11:00 AM GMT #

Post a Comment:
Comments are closed for this entry.
About

As a member of the Oracle A-Team we specialise in enabling and supporting the Oracle Fusion Middleware communities.

Search

Archives
« April 2014
MonTueWedThuFriSatSun
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
    
       
Today