Review the following considerations before installing Tomcat:
We highly recommend that you configure Tomcat to use https with either TLSv1.2 or TLS1.1. Any prior version of TLS should not be used. For more information, see Securing Tomcat
.
You can install Tomcat, PostgreSQL, and ActiveMQ on the same server or on separate servers.
When you install Tomcat or ActiveMQ, the OpenJDK JRE is automatically included.
To use ActiveMQ, which guarantees that Identity Governance sends notifications using SMTP, install MQServer.
The installation process sets the JRE location in the setenv.sh or the sentenv.bat file.
Linux: Default location in /opt/netiq/idm/apps/tomcat/bin/
Windows: Default location in c:\netiq\idm\apps\tomcat\bin\
(Conditional) If you use Linux, do not run Tomcat as root. The installation process creates a user account for the Tomcat service, which should not be root.