2.1 Installing iManager Server and iManager Workstation on Linux

This section provides the steps for installing iManager Server and iManager Workstation on Linux servers and clients. To prepare for the installation, review the prerequisites and system requirements:

2.1.1 Installing iManager Server on Linux

The following procedure describes how to install the server version of iManager on a Linux server using an installation wizard, either in GUI format or from the console. To perform a silent, unattended installation, see Installing iManager Silently.

If the setup program for iManager Server detects a previously installed version of iManager, it might give you the option to stop the installation process or remove the existing iManager, JRE, and Tomcat installations.

When you install iManager, the process lays down the following products on your server:

  • Tomcat 8.5.27

  • Java 1.8.0_162 (64-bit)

After a successful installation, the setup program generates a configuration file, by default /var/log/install.properties, with values based on the questions asked during the installation. You can modify this file for use in a silent installation. For more information, see Installing iManager Silently.

To install iManager on Linux:

  1. At the NetIQ Downloads Web site, search for iManager products, select the iManager version that you want to use, then download it to a directory on your server. For example, iMan_310_linux_x86_64.tgz.

  2. Extract to the downloaded file in to the iManager folder:

    For example, use the follwoing command:

    tar -zxvf iMan_310_linux_x86_64.tgz

  3. Open a shell and change to the /extracted_directory/iManager/installs/linux directory.

    This path is relative to the directory where you copied or extracted the iManager files.

  4. Enter one of the following commands while logged in as root or root-equivalent.

    To do a command-line (text) install:

    ./iManagerInstallLinux.bin

    To do a GUI install:

    ./iManagerInstallLinux.bin -i gui

  5. At the splash screen, specify a language, and then click OK.

  6. Read the Introduction, and then click Next.

  7. Accept the License Agreement, and then click Next.

  8. For the components that you want to install, specify iManager, Tomcat, JVM.

    NOTE:You must select this option only. iManager will not work as expected if you select either of the other two options.

  9. Click Next.

  10. (Optional) To use IPv6 addresses with iManager, click Yes in the Enable IPv6 window.

    You can enable IPv6 addresses after you install iManager. For more information, see Configuring iManager for IPv6 Addresses after Installation.

  11. Click Next.

  12. (Optional) To download and install plug-ins as part of the installation, complete the following steps:

    1. Specify that you want to download and install plug-ins, and then click Next.

    2. (Conditional) For a console install, enter a comma-separated list of the plug-in numbers that you want to download.

    3. (Conditional) If you are using the wizard program, select the check boxes of the plug-ins that you want to download.

      (Optional) To download plug-ins from an different network location, specify an alternative Network URL.

      When using an alternative URL for downloading plug-ins, you must verify the URL contents, and verify that the plug-in is appropriate for your use. By default, the installation program downloads plug-ins from . For more information, see Understanding Installation for iManager Plug-ins.

    4. Click Next.

    5. (Conditional) The setup program might display the following message: 

      No new or updated plug-ins found. All plug-ins are downloaded or updated or the iManager download server is unavailable.

      If this occurs, one or more of the following conditions exist:

      • There are no updated plug-ins available from the download site.

      • There is a problem with your Internet connection. Verify your connection and try again.

      • Connection to the Descriptor File was not successful. This URL refers to an XML descriptor file of available iManager plug-ins.

      • The iManager installation is behind a proxy that does not allow a connection to the above URL.

    6. Specify whether you want to install plug-ins from a local drive, and then click Next.

    7. (Conditional) To install plug-ins from a local directory, specify the directory path that contains the appropriate plug-in (.npm) files.

      The default path is /extracted location/iManager/installs/plugins, but you can specify any valid mount point here.

    8. Click Next.

  13. You can specify the ports on which you want Tomcat to run. Ensure that the custom ports you are mentioning are available.

    The default ports are 8080 for HTTP, 8443 for HTTPS, and 9009 as the MOD_JK connector port.

  14. Click Next.

  15. Specify the certificate public key algorithm that you want the TLS certificate to use, then click Next.

    The options are:

    • RSA: The certificate uses a 2048-bit RSA key pair.

    • ECDSA 256: The certificate uses a ECDSA key pair with curve secp256r1.

    By default, RSA is selected.

  16. Based on the certificate selected in Step 15, iManager allows you to configure the following cipher levels for TLS communication.

    • RSA: This certificate allows four cipher levels.

      • NONE: Allows any type of cipher.

      • LOW: Allows a 56-bit or a 64-bit cipher.

      • MEDIUM: Allows a 128-bit cipher.

      • HIGH: Allows ciphers that are greater than 128-bit.

    • ECDSA 256: This certificate allows only one cipher level.

      • SUITEB 128 ONLY: Allows a 128-bit cipher.

    For ECDSA certificates, iManager allows only Suite B ciphers.

    By default, the cipher level is set to NONE. The selected cipher level is activated after Tomcat server is restarted.

  17. (Optional) Specify an authorized user and the appropriate eDirectory tree name that this user will manage.

    NOTE:

    • NetIQ does not recommend leaving these settings blank. If you leave these fields blank, iManager allows any user to install plug-ins and make changes to iManager server settings. You can specify an authorized user after completing the installation process. For more information, see Specifying an Authorized User for eDirectory.

    • The installation program does not validate the specified user credentials with eDirectory.

    • You should not enter the IP address of the eDirectory tree in the tree name field. Otherwise, some of the iManager functionalities will be impacted.

  18. Click Next.

  19. Read the Pre-Installation Summary page, and then click Next.

  20. When the installation completes, click Done.

  21. When the initialization of iManager finishes, click the first link in the Getting Started page, an then log in. For more information, see “Accessing iManager” in the NetIQ iManager Administration Guide.

    NOTE:If you plan to run iManager Workstation as a non-root user in the future, do not run iManager as root the first time. For more information, see Installing iManager Server and iManager Workstation on Windows.

  22. Use the chmod command to change the permissions on the following InstallAnywhere files to 644 (read) to prevent modifications: 

    /var/opt/novell/tomcat8/webapps/nps/UninstallerData/.com.zerog.registry.xml
    /var/opt/novell/tomcat8/webapps/nps/UninstallerData/Uninstall_PluginName/.com.zerog.registry.xml

    Do not modify the content in these files. Changing the content might affect other installations that use InstallAnywhere.

2.1.2 Installing iManager Workstation on Linux Clients

iManager Workstation is a self-contained environment. You can install multiple versions on the same workstation (including older versions of Mobile iManager). However, you should not attempt to run them concurrently. If you need to use different versions, run one version, close it, and then run the other version.

When you install iManager, the process lays down the following products on your server:

  • Tomcat 8.5.27

  • Java 1.8.0_162 (64-bit)

NOTE:You cannot run iManager Workstation from a path that includes spaces. For example, products/iManager Workstation/working.

To install iManager Workstation on Linux clients:

  1. At the NetIQ Download Web site, search for iManager products, select iManager 3.1, then download iMan_310_workstation_linux_x86_64.tar.bz2 to a directory on your server.

  2. Use the following command to extract the file:

    tar -xjvf iMan_310_workstation_linux_x86_64.tar.bz2

    The extraction creates an imanager folder in the same folder where iManager Workstation’s tar.bz2 file is located.

  3. To install or upgrade the Novell International Cryptography Infrastructure (NICI) software, log in as root or a root-equivalent because the required NICI packages are used system-wide.

    NetIQ requires you to install 64-bit NICI.

  4. To install NICI, enter the following commands from the preinstalls folder:

    • rpm -Uvh nici*.rpm

    On desktops where NICI is not installed, use the above mentioned command to install NICI. On desktops where NICI is already installed, use the above mentioned command to upgrade NICI.

  5. To install OpenSSL rpm, enter the following command from the preinstalls folder:

    • rpm -Uvh netiq-openssl*.rpm

  6. (Conditional) To run iManager Workstation as a non-root user in the future, do not run iManager as root the first time. Navigate to the imanager/bin directory and execute the iManager Workstation startup script.

                  ./iManager.sh

  7. In the iManager login window, specify a user name, password, and an eDirectory tree.

    For more information about accessing iManager, see “Accessing iManager” in the NetIQ iManager Administration Guide.

  8. (Optional) To enable IPv6 addresses, complete the following steps:

    1. Open the User_Install_Directory/Tomcat/conf/catalina.properties file.

    2. Set the following configuration entries in the catalina.properties file:

      java.net.preferIPv4Stack=false
      java.net.preferIPv4Addresses=true

    3. Restart iManager.