小编给大家分享一下WebSEAL Configure配置是怎么样的,希望大家阅读完这篇文章之后都有所收获,下面让我们一起去探讨吧!
1.[rstest1][/]#pdconfig
Tivoli Access Manager Setup Menu
Configure Package
Unconfigure Package
Display Configuration Status
x. Exit
Select the menu item [x]: 1
Tivoli Access Manager Configuration Menu
Access Manager Runtime Configuration
Access Manager WebSEAL Configuration
x. Return to the Tivoli Access Manager Setup Menu
Select the menu item [x]: 1
Will the policy server be installed on this machine (y/n) [No]:
Tivoli Common Directory logging is not configured.
This scheme provides a common location for log files for Tivoli products instead of separate locations determined by each application.
Do you want to use Tivoli Common Directory logging (y/n) [No]: y
The default location of the Tivoli Common Directory is [/var/ibm/tivoli/common].
Press Enter to accept the default location, or type a different location and press Enter:
Log files for this application will be created in directory: /var/ibm/tivoli/common
LDAP
Active Directory
Registry [1]:
LDAP server host name: ldapcls.isax.intra
LDAP server port [389]:
Policy server host name: rswps2.isax.intra
Policy server SSL port [7135]:
Domain [Default]:
Automatically download the pdcacert.b64 file from the policy server? (y/n) [Yes]:
The SSL configuration of Access Control Runtime has completed successfully.
Tivoli Access Manager policy server domain name:Default
Tivoli Access Manager policy server host name:rstest1.isax.intra
Tivoli Access Manager policy server listening port:7135
The package has been configured successfully.
Press Enter to continue.
Ø配置 WebSEAL
Access Manager WebSEAL Setup Menu
Configure
Unconfigure
Display Configuration Status
x. Return to Access Manager Setup Menu
Please select the menu item [x]: 1
Enter WebSEAL instance name [default]:
Use logical network interface (y/n) [n]?
Enter WebSEAL hostname [rstest1]:
Enter WebSEAL listening port [7234]:
Enter administrator ID [sec_master]:
Enter administrator password:
Enable SSL communication with the LDAP server (y/n) [y]? n
Allow HTTP access (y/n) [y]?
Enter HTTP port [80]:
Allow secure HTTPS access (y/n) [y]?
Enter HTTPS port [443]:
Enter Web document root directory [/opt/pdweb/www-default/docs]:
Configuring WebSEAL instance 'default'...
Starting the: webseald-default
The WebSEAL instance 'default' has been successfully configured.
Press
Ø上传 /opt/pdweb/www-defaut/docs 的登陆页面。
mkkrb5clnt -r ISAX.INTRA -c m10-dc03.isax.intra -s m10-dc03.isax.intra -d isax.intra
config.krb5 -r ISAX.INTRA -c m10-dc03.isax.intra -s m10-dc03.isax.intra -d isax.intra
cd /usr/krb5/bin
./kinit testcls@ISAX.INTRA
./klist
./kinit -k -t /var/pdweb/keytab-default/testcls.keytab HTTP/testcls.isax.intra@ISAX.INTRA
./klist
spnego-krb-keytab-file = /var/pdweb/keytab-default/testcls.keytab
看完了这篇文章,相信你对“WebSEAL Configure配置是怎么样的”有了一定的了解,如果想了解更多相关知识,欢迎关注编程网行业资讯频道,感谢各位的阅读!
