2.2 Installing Administration Console on Windows

2.2.1 Prerequisites for Installing Administration Console on Windows

  • Ensure that the system meets the requirements for installing Administration Console.

    For information about the requirements, see NetIQ Access Manager System Requirements.

  • The hard disk has ample space for logging in a production environment. This disk space must be in the local server and not in the remote server.

  • Static IP address

  • Ports 389 and 636 are open

For information about browser support, see Browser Support in the NetIQ Access Manager System Requirements guide.

For information about network requirements, see Section 1.3, Network Requirements.

2.2.2 Installation Procedure

IMPORTANT:Before you start the installation, ensure that Powershell is installed and enabled.

Installation time: about 20 minutes.

What you need to create during installation

A username and password for the Administrator.

NOTE:If Administration Console and Identity Server are installed on different servers, both use 8080 and 8443 ports. If Administration Console and Identity Server are installed on the same server, Identity Server uses 8080 and 8443 ports and Administration Console uses 2080 and 2443 ports.

  1. Verify that the machine meets the minimum requirements. See Prerequisites for Installing Administration Console on Windows.

  2. Close any running applications and disable any virus scanning programs.

  3. (Conditional) To use a remote desktop for installation, use any one of the following:

    • Current version of VNC viewer

    • Microsoft Remote Desktop with the /console switch for Windows XP SP2

    • Microsoft Remote Desktop with the /admin switch for Windows XP SP3

  4. Download the ZIP file and extract it.

    For software download instructions and the filename, see the release-specific Release Notes.

  5. Double-click the <ZIP filename>.exe file from the extracted folder.

  6. Read the introduction, then click Next.

  7. Accept the license agreement, then click Next.

  8. Select Access Manager Administration Console, then click Next.

    If you are installing Identity Server on the same machine, select Access Manager Identity Server.

  9. Specify whether this is a primary Administration Console in a failover group, then click Next.

    The first Administration Console installed becomes the primary console.

    You can install up to three Administration Consoles for replication and failover purposes. If this is not the primary console, you must provide the IP address for the primary Administration Console.

  10. Specify an administration user ID and password.

    NOTE:If you are installing secondary Administration Console, the user ID must be from the o=novell container. If you specify a user from other container, the installer fails to install Administration Console.

  11. Specify the static IP address of the machine.

  12. Click Install.

    The configuration database takes awhile to install and configure.

  13. (Optional) After the installation completes, view the install log file found in the following location:

    \Program Files\Novell\log\AccessManagerServer_ InstallLog.log

  14. Restart the server.

    IMPORTANT:You must restart the server before installing any other Access Manager components.

  15. Continue with Configuring the Windows Administration Console Firewall.

Configuring the Windows Administration Console Firewall

Before you install other Access Manager components and import them into Administration Console, or before you log in to Administration Console from a client machine, you must first configure the firewall on Administration Console.

  1. Click Control Panel > Windows Firewall.

  2. Click Advanced, then for the Local Area Connection, click Settings.

  3. For each port that needs to be opened, click Add, then Specify the following details:

    Field

    Description

    Description of service

    Specify a name. For example, Admin Console Access for port 8080 or Secure Admin Console Access for port 8443.

    Name or IP address

    Specify the IP address of Administration Console.

    External Port number for this service

    Specify the following port:

    • 8080

    • 8443

  4. (Conditional) If you are importing Access Gateway into Administration Console, add the following ports:

    • 1443

    • 8444

    • 1289

    • 1290

    • 524

    • 636

    For specific information about the ports listed in Step 3 and Step 4, see Table 1-3.

  5. (Conditional) If you are importing an Access Gateway Appliance, click ICMP, select all options, then click OK > OK.

  6. Run the following commands to restart Tomcat:

    net stop Tomcat8
net start Tomcat8

  7. Continue with Section 2.3, Logging In to Administration Console.