•
SSL (HTTPS)
- SSL encryption is strongly recommended for communications between your Policy
Server and the Policy Agents and Agent gateways running on assets. This will require that a
Certification Authority certificate is generated.
Before running the installer, make sure of the following:
◦
Either port 443 or port 8443 is available.
◦
You know what the location of the certificate keystore file will be (for the "Keystore"
property).
◦
You know what passphrase you will enter during the creation of the certificate keystore
file (for the "Key PassPhrase" property).
After it is created, the certificate keystore file will contain the certificate and private key for
the machine.
NOTE:
Make sure that the Policy Agents and Agent gateways are also configured to use
SSL for communications with Policy Server by using the Policy Server Settings dialog box in
Agent Builder or the Policy Server settings tab in the Agent Deployment Utility.
Although the possible SSL encryption levels are 40, 128, and 168, Tomcat does not support
40-bit SSL encryption. Use 128-bit encryption, or, if the operating system supports it, use
168-bit encryption.
•
Decide whether to run the components as services (daemons) or start the services after
installation
- HP recommends that you run Policy Server, the HSQL database, and the internal
OpenDS directory server as services. However, do not start the services immediately after
installation. You first must set up SSL, which will require that the server be stopped and restarted.
The names of the services (daemons) are as follows:
◦
Policy Server - HP 3PAR Policy Server
◦
HSQLDB - HP 3PAR Policy Server Database
◦
OpenDS - OpenDS
Once you have all the installation information, you are ready to run the Policy Server installer.
12
Preparation for Installation