8.1 Planning to Install PostgreSQL and Tomcat

From Identity Manager 4.6, NetIQ supports only Apache Tomcat as an application server. If your company provides a supported version of Tomcat, you can use it with Identity Manager.

Alternatively, NetIQ bundles Tomcat and PostgreSQL in the same installation program for your convenience. This installer lets you install these applications without downloading them separately. NetIQ does not provide updates for these components, or administration, configuration, or tuning information beyond what is outlined in the NetIQ Identity Manager documentation.

8.1.1 Checklist for Installing Tomcat and PostgreSQL

NetIQ recommends that you complete the steps in the following checklist:

	Checklist Items
	Review the planning information. For more information, see Section I, Planning to Install Identity Manager.
	Review the hardware and software requirements for the computers that will host the Identity Vault. For more information, see the following sections: Meeting System Requirements. Prerequisites for Installing Tomcat Prerequisites for Installing PostgreSQL
	Decide whether you should install NetIQ Sentinel before installing Tomcat or PostgreSQL. For more information, see Recommended Installation Scenarios and Server Setup. NOTE:Sentinel installation is supported only on a Linux server. To install Sentinel, you must have a Linux server in your environment.
	Install the applications: For a guided installation, see Using the Wizard to Install PostgreSQL and Tomcat. For a silent installation, see Silently Installing Tomcat and PostgreSQL for Identity Manager.
	Install the rest of the Identity Manager components.

8.1.2 Understanding the Installation Process for PostgreSQL and Tomcat

You can choose to install one or both of the applications. For example, you might not need PostgreSQL because you already have a supported version of the application on the server. The following considerations apply to the individual installations:

PostgreSQL

The installation process installs the database for the identity applications and creates an administrative user called idmadmin to own the database. However, the installation does not create the schema in the database for the identity applications. Schema information gets added when you install the identity applications.

If you already have a supported version of PostgreSQL running on the server, the installation program prompts you for the password for the default postgres user. The program then creates the idmadmin user and assigns it the same password as for postgres.

At the end of the process, the installation program starts the database instance. The instance must be running when you install other Identity Manager components that use the database, such as the User Application.

You are not required to use PostgreSQL for the database for identity applications.

Tomcat

The installation process creates the IDM Apps Tomcat Service. To support the Tomcat application server, the installation program also installs Apache ActiveMQ and Oracle JRE. These items help Tomcat send email notifications.

The installation program does not start Tomcat upon completion. Tomcat must be stopped before you install other Identity Manager components, such as Identity Reporting.

8.1.3 Prerequisites for Installing PostgreSQL

Review the following considerations before planning the PostgreSQL installation:

You can install the version of PostgreSQL bundled with Identity Manger in an environment that runs an older version of the database program. To ensure that the new installation does not overwrite the previous version, specify a different directory for the files.
The identity applications apply some prerequisites to the database they use, such as PostgreSQL. For more information, see Prerequisites for Installing the Database for the Identity Applications.
You cannot install more than one version of PostgreSQL because the service account for PostgreSQL does not handle both instances. Uninstall the old version before installing this version of PostgreSQL.

8.1.4 Prerequisites for Installing Tomcat

Review the following considerations before planning the Tomcat installation:

You can install Tomcat and PostgreSQL on the same server or on separate servers.
The installation process installs supported versions of Oracle JRE and Apache ActiveMQ.
The installation process also installs the files required for the Apache Log4j service to audit Tomcat events.
You can use your own Tomcat installation program instead of the one provided in the Identity Manager installation kit. However, to use the Apache Log4j service with your version of Tomcat, ensure that you have the appropriate files installed. For more information, see Using the Apache Log4j Service to Log Sign-on. This requirement applies to using Tomcat for OSP, the identity applications, and Identity Reporting.
To have guaranteed delivery of email notifications with ActiveMQ, install MQServer.
The identity applications apply some prerequisites to the Tomcat application server on which they run. For more information, see Prerequisites and Considerations for the Application Server.
The installation process sets the JRE location in the setenv.bat file, located by default in the c:\NetIQ\idm\apps\tomcat\bin directory. When you install the identity applications and Identity Reporting on Tomcat, the process updates the JAVA_OPTs or CATALINA_OPTS entries in the setenv.bat file.

8.1.5 System Requirements for PostgreSQL

PostgreSQL has the same computer requirements as for the identity applications. For more information, see Meeting System Requirements. Also see the release notes for the latest version of Identity Manager and the PostgreSQL documentation.

8.1.6 System Requirements for Tomcat

Tomcat has the same computer requirements as for the identity applications. For more information, see Meeting System Requirements. Also see the release notes for the latest version of Identity Manager and the Apache documentation.