4 GB RAM
Dual CPU or Core (3.0 GHz or comparable chip)
100 GB hard disk
This size is recommended to ensure ample space for logging in a production environment. This disk space must be local and not remote.
If you have custom partitioned your hard disk as follows, ensure that the free disk space mentioned against each partition is available:
|
Partition |
Disk Space |
|---|---|
|
/opt/novell |
1 GB |
|
/opt/volera |
5 MB |
|
/var/opt/novell |
1 GB |
|
/var |
512 MB |
|
/usr |
25 MB |
|
/etc |
1 MB |
|
/tmp/novell_access_manager |
10 MB |
|
/tmp |
10 MB |
|
/ |
512 MB |
One of the following operating systems:
SUSE Linux Enterprise Server (SLES) 11 SP4 or SLES 12 SP3 with 64-bit operating system x86-64 hardware. (physical or virtual).
Ensure that the following packages are installed:
rsyslog-module-gtls
rsyslog
binutils
glibc-32bit
Red Hat Enterprise Linux (RHEL) 6.9 or RHEL 7.4 (64-bit) (physical or virtual). For installing the RHEL packages, see Section 8.0, Installing Packages and Dependent RPMs on RHEL for Access Manager.
NOTE:Access Manager 4.4 SP1 onwards, you can select to install these RPMs automatically along with Access Manager installation. While installing Access Manager, specify N when you get the following prompt:
Enter the local mount directory if you have the OS ISO mounted locally. This will be used as the local catalog for the additional rpms. Do you have a locally mounted ISO (y/n)?
The Access Manager installer checks the online catalog and then installs the required RPMs automatically.
gettext
python (interpreter)
Static IP address.
IMPORTANT:
No LDAP software, such as eDirectory or OpenLDAP, can be installed.
If the OpenLDAP server is installed, uninstall it. If you do not want to uninstall it, ensure that it does not use the port 636 or does not bind the port 389 to localhost.
Because of library update conflicts, you cannot install Access Manager on a Linux User Management (LUM) machine.
To authenticate to Identity Server through User Portal, use one of the following web browsers:
Firefox 54.0.1
Chrome 60.0.3112.101
Edge 38.14393.0.0/ EdgeHTML 14.14393
Internet Explorer 11.0.9600.18738 Update Versions 11.0.44 (KB4025252)
For information about network requirements, see Section 1.3, Network Requirements.
Installation time: about 10 minutes.
|
What you need to know to install Identity Server |
|
Open a terminal window.
Log in as a root user.
Access the install script.
Ensure that you have downloaded the software or you have the CD available.
For software download instructions, see the release-specific Readme.
Do one of the following:
If you are installing from CD or DVD, insert the disc into the drive, then navigate to the device. The location might be /media/cdrom, /media/cdrecorder, or /media/dvdrecorder, depending on your hardware.
If you downloaded the tar.gz file, unzip the file by using the following command:
tar -xzvf <filename>
Change to the novell-access-manager directory.
At the command prompt, run the following install script:
./install.sh
When you are prompted to install a product, specify 2, Install Identity Server, then press Enter.
This selection is also used for installing additional Identity Servers for clustering behind an L4 switch. You need to run this install for each Identity Server you add to the cluster.
NOTE:Administration Console is accessible on ports 2080 (HTTP) and 2443 (HTTPs) if Identity Server is installed on the same machine.
The following warning is displayed:
Warning: If NAT is present between this machine and Administration Console, configure NAT in Administration Console. Exit this installation if NAT is not configured in Administration Console. Would you like to continue (y/n)?
For more information about how to configure NAT, see Configuring Administration Console Behind NAT.
Specify Y to proceed.
Review and accept the License Agreement.
Verify that the required rpms are of the latest versions. Specify Y to proceed.
Specify the IP address, user ID, and password for of the primary Administration Console.
Specify the IP address of the Novell Access Manager Server Communications Local Listener. Specify the local NAT IP address if local NAT is available for Identity Server.
If the installation program rejects the credentials and IP address, ensure that the correct ports are open on both Administration Console and Identity Server, as described in Section 3.1, Prerequisites.
The following components are installed:
|
Component |
Description |
|---|---|
|
Access Manager Server Communication |
Enables network communications, including identifying devices, finding services, moving data packets, and maintaining data integrity. |
|
Identity Server |
Provides authentication and identity services for the other Access Manager components and third-party service providers. |
|
Identity Server Configuration |
Allows Identity Server to be securely configured by Administration Console. If the installation process terminates at this step, the probable cause is a failure to communicate with Administration Console. Ensure that you specified the correct IP address. |
|
Access Manager Server Communications Configuration |
Enables Identity Server to auto-import itself into Administration Console. |
Continue with one of the following actions:
Verify the installation. See Verifying Identity Server Installation
Install Access Gateway. See Section 4.2.2, Installing Access Gateway Appliance or Section 4.3, Installing Access Gateway Service.
Configure Identity Server. See Setting Up a Basic Access Manager Configuration in the NetIQ Access Manager 4.4 Administration Guide.
NOTE:After installing Identity Server, you must create a cluster configuration. See Identity Servers Cluster in the NetIQ Access Manager 4.4 Administration Guide.