Novell ACCESS MANAGER 3.1 SP1 - ADMINISTRATION, Installation Manual

Page 1: ... www novell com novdocx en 17 September 2009 AUTHORIZED DOCUMENTATION Linux Access Gateway on Red Hat Installation Guide Access Manager 3 1 SP1 July 23 2009 Linux Access Gateway on Red Hat Installation Guide ...

Page 2: ...xport or re export to entities on the current U S export exclusion lists or to any embargoed or terrorist countries as specified in the U S export laws You agree to not use deliverables for prohibited nuclear missile or chemical biological weaponry end uses See the Novell International Trade Services Web page http www novell com info exports for more information on exporting Novell software Novell...

Page 3: ...ell Trademarks For Novell trademarks see the Novell Trademark and Service Mark list http www novell com company legal trademarks tmlist html Third Party Materials All third party trademarks are the property of their respective owners ...

Page 4: ...4 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 ...

Page 5: ...inux Access Gateway 16 3 4 Configuring Hardware and System Services 27 3 5 Verifying the Linux Access Gateway Installation on RHEL 34 3 6 Configuring the Linux Access Gateway to Boot from RHEL 35 3 7 Starting the Linux Access Gateway from RHEL 36 3 8 Configuring the Linux Access Gateway after It Is Installed on RHEL 37 3 8 1 Configuring the New Network Interface 37 3 8 2 Configuring a Secondary IP...

Page 6: ...6 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 ...

Page 7: ...ager 3 1 Installation Guide http www novell com documentation novellaccessmanager31 installation page documentation novellaccessmanager31 installation data bookinfo html Novell Access Manager 3 1 Basic Setup Guide http www novell com documentation novellaccessmanager31 basicconfig page documentation novellaccessmanager31 basicconfig data bookinfo html Novell Access Manager 3 1 Access Gateway Guide...

Page 8: ... When a single pathname can be written with a backslash for some platforms or a forward slash for other platforms the pathname is presented with a backslash Users of platforms that require a forward slash such as Linux or UNIX should use forward slashes as required by your software ...

Page 9: ... System Requirements This section explains the requirements for installing the Novell Access Manager Linux Access Gateway Section 1 1 1 Hardware Requirements on page 9 Section 1 1 2 Linux Access Gateway Network Requirements on page 9 1 1 1 Hardware Requirements 3 GB memory Hard disk with a free partition of 100 GB other than the root partition either as unformatted and unallocated free space or as...

Page 10: ...he installation 5 The system reboots with SLES 9 6 Login to the Novell Access Manager Administration Console and verify that the Linux Access Gateway is imported For more information seeSection 3 5 Verifying the Linux Access Gateway Installation on RHEL on page 34 7 Complete the following hardware and system services configuration Network Interface Configuration If you do not configure the network...

Page 11: ...x Access Gateway after it is installed on RHEL For information on configuring the gateway see the Novell Access Manager 3 1 SP1 Access Gateway Guide http www novell com documentation novellaccessmanager31 accessgateway page documentation novellaccessmanager31 accessgateway data bookinfo html NOTE If you want to add or modify the network configuration for Linux Access Gateway installed on RHEL the ...

Page 12: ...12 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 ...

Page 13: ...pt path refers to the path to the RPM packages packageName refers to the RPM package name For example enter the following command chroot lag opt novell bin lagupgrade sh url http 10 10 10 1 publish upgrades accessgateway 31sp1 lagrpms tar gz For more information on upgrading Linux Access Gateway see Upgrading Novell Access Manager Components in the Novell Access Manager 3 1 SP1 Installation Guide ...

Page 14: ...14 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 ...

Page 15: ... 3 8 Configuring the Linux Access Gateway after It Is Installed on RHEL on page 37 3 1 Before You Begin 1 Before you begin the installation make sure that the minimum system requirements are met For more information see Section 1 1 System Requirements on page 9 2 Execute the following commands to note the hard disk partition entries on the RHEL server mount fdisk l df h 3 Conditional If you are in...

Page 16: ...Gateway installation CD The boot screen appears 2 Use the down arrow key and select Advanced Installation 3 If an error message on continuing the text mode of installation is displayed press O to continue with the installation Existing RHEL OS Partition RHEL 5 1 Linux Access Gateway Linux Access Gateway Installation Existing RHEL OS Partition Before After RHEL 5 1 I00 GB Additional RHEL Partiton o...

Page 17: ...figuring 17 novdocx en 17 September 2009 The Linux kernel loads and the advanced installation starts and displays the Linux Access Gateway splash screen followed by the License Agreement screen 4 Read the agreement then select I Agree to proceed ...

Page 18: ...18 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 5 Select English US on the Language selection screen then select Accept ...

Page 19: ...Additional Information on Installing And Configuring 19 novdocx en 17 September 2009 6 Select New installation then select OK 7 Select Change then select Partitioning ...

Page 20: ...20 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 8 Select Custom Partitioning Setup then tab to Next ...

Page 21: ...figuring 21 novdocx en 17 September 2009 9 Select Custom Partitioning for Experts then tab to Next 10 To get free space to install Linux Access Gateway select an existing partition in RHEL for removal If you already have free space go to Step 12 ...

Page 22: ...Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 11 Select OK when prompted to reconfirm deletion 12 Select Create to create a new partition 13 Select Extended Partition then tab to Next ...

Page 23: ...Additional Information on Installing And Configuring 23 novdocx en 17 September 2009 14 Specify 100 GB as the End Cylinder value then tab to OK ...

Page 24: ... Logical partition then select OK 15b Fill in the following fields Format Make sure Format is selected File system Select Ext3 for the type Size Specify 30GB for the End cylinder value Mount Point Select as the mount point 15c Select OK 16 Create a var partition as follows 16a Select the hard drive select Create Logical partition then select OK ...

Page 25: ...mat Make sure Format is selected File system Select Ext3 for the type Size Specify 20GB for the End cylinder value Mount Point Select var as the mount point 16c Select OK 17 Create a COS partition that uses the remaining space on the hard disk 17a Select the hard drive select Create select Logical partition then select OK ...

Page 26: ...mat File system ID Select 0x68 Novell COS for the ID Size Accept the default value for the End cylinder value This selection allocates the remaining space 50 GB to the Extended Partition Mount Point Make sure the Mount Point has no value 17c Select OK 17d Select Next 18 Select Accept to continue with the installation of Linux Access Gateway ...

Page 27: ... hard disk is formatted removing all data and the partitions are created After all the packages are installed the system reboots in SUSE Linux Enterprise Server SLES 9 and finishes the installation 20 Continue with Section 3 4 Configuring Hardware and System Services on page 27 3 4 Configuring Hardware and System Services 1 In the root user password screen specify the password for root then re typ...

Page 28: ...28 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 2 Tab to Next then press Enter The Network Configuration screen appears ...

Page 29: ...rface configuration If you do not configure the network interface the Linux Appliance setup fails Make sure that Network configuration matches the RHEL configuration 2a To change the network configuration select Change from the Network Configuration screen then select Network Interfaces 2b Tab to Change then press Enter ...

Page 30: ...x en 17 September 2009 2c Select Edit The Network Address Setup screen appears The Access Gateway must not use DHCP it must be assigned with a static IP address 2d Configure a static IP address Static address setup Select this option to enter a static IP address ...

Page 31: ...er 2f Fill in the following fields Host Name Specify the same hostname given for the RHEL machine Domain Name Change the domain name to the domain name for your network Name Server 1 Specify the IP address of your DNS server If you have more than one DNS server specify their IP addresses in the Name Server 2 and Name Server 3 fields You do not need to configure a domain search 2g Tab to OK then pr...

Page 32: ...ide novdocx en 17 September 2009 2i Specify the gateway for your network tab to OK then press Enter 2j Tab to Next then press Enter 2k Tab to Finish then press Enter 3 Tab to Next then press Enter The Administration Console Configuration screen appears ...

Page 33: ...st Username Specify the name of the Administration Console user Password Specify the password for the user Reenter Password Re type the password for the user 5 Tab to Next then press Enter 6 Tab to Next then press Enter 7 The Add a new local user screen appears Select Next 8 When the Empty user login prompt is shown select Yes 9 On the Hardware configuration option select Next The final configurat...

Page 34: ...ear as green if you successfully completed the steps in Section 3 4 Configuring Hardware and System Services on page 27 If an Access Gateway started to import into the Administration Console but failed to complete the process the following message appears Server gateway name is currently importing If it has been several minutes after installation click repair import to fix it 5 Conditional If you ...

Page 35: ...ommand to mount the partition or the boot partition of RHEL mount dev partition directory Replace partition with the or boot partition of RHEL that you want to mount and directory with the newly created directory For example mount dev sda1 rhel 5 To get multiple boot options in Linux Access Gateway use a file editor such as vi to copy the lines similar to the lines shown below from the RH boot loa...

Page 36: ...able the firewall select System Administration Security Level and Firewall Firewall Option to Disabled Click Apply to save changes NOTE This is the preferred option 3b Open the required ports in the firewall then select System Administration Security Level and Firewall Firewall Option Select Other Ports Add then add 1443 as the port and set the protocol as TCP Add other ports required for the reve...

Page 37: ...e by using the following command etc init d novell am gateway start NOTE You must close the terminal used to execute the above command The Linux Access Gateway service is automatically started when the machine is rebooted 10 Optional If you want to stop the Linux Access Gateway service use the following command etc init d novell am gateway stop 3 8 Configuring the Linux Access Gateway after It Is ...

Page 38: ...tation novellaccessmanager31 installation page documentation novellaccessmanager31 installation data bookinfo html 3 8 2 Configuring a Secondary IP Address 1 Configure the secondary IP address in RHEL by selecting System Administration Network 2 Use the Administration Console for Linux Access Gateway to configure the secondary IP address For more information see Section 3 8 1 Viewing and Modifying...

Page 39: ...or on page 39 4 1 Health Status Displays NTP Check Failed Error If the Linux Access Gateway health displays the following error you can safely ignore it NTP is enabled but a status check failed Required Action Verify that the NTP server is installed You can also use the following command then refresh the health umount var run cp var run ntpd pid lag var lib ntp var run ntp ntpd pi ...

Page 40: ...40 Linux Access Gateway on Red Hat Installation Guide novdocx en 17 September 2009 ...

Page 41: ...e managed on RHEL server syslog cron tab entries must be managed on RHEL Secondary IP addresses must be managed on RHEL Patches are upgraded from the Linux Access Gateway partition Linux Access Gateway logs are viewed from the Linux Access Gateway partition Linux Access Gateway coredumps are collected from the Linux Access Gateway partition Touch files are added or removed from the Linux Access Ga...

Page 42: ...e editor such as vi to copy the lines similar to the line shown below from the Linux Access Gateway boot loader lagboot boot grub menu lst to the end of the Red Hat boot loader boot grub grub conf file title Linux kernel hd0 4 boot vmlinuz root dev sda5 vga 0x32b selinux 0 splash silent resume dev sda2 elevator cfq showopts initrd hd0 4 boot initrd This ensures that the system provides options to ...