9.2.3 Installing Access Manager

Prerequisites

  • Ensure that you meet the requirements listed in Network Requirements.

  • Edit the /etc/hosts files on each instance and add an entry to resolve its hostname to its private IP address.

  • Create port rules in the various security groups. See Step 8 and Step 9 in Creating and Deploying Instances. For the list of ports, see Table 1-7, Table 1-8, and Table 1-9.

  • Before starting Access Manager installation, ensure that the additional packages listed in the prerequisites sections of each Access Manager component are added.

  • Verify the SSH connectivity to the instances. The following is a sample syntax for verifying the connectivity:

    "ssh -i <key_name> ec2-user@<instance_public_ip>

    To view the public IP address of an instance, click Instances > [instance] > Description.

IMPORTANT:Re-importing Identity Server and Access Gateway is not supported.

Installation Procedure

Perform the following steps to install Access Manager components on the respective instances:

In the following steps, run the Access Manager installation scripts as a root user using sudo. For example, sudo sh <script-name>.

  1. Copy the novell-access-manager-<version>.tar.gz file using Secure Copy (scp) to the instances on which you will install Administration Console and Identity Server.

    The following is a sample scp command that shows how to copy the installer using the SSH key and username specified while creating the instance:

    scp -i <keyname> <path&name_of_file_to_copy> ec2-user@<instance_ip>:/<directory>

  2. Copy the novell-access-gateway-<version>.tar.gz file to the instance on which you will install Access Gateway.

  3. Install Administration Console, Identity Server, and Access Gateway on the respective instances.

    For information about how to install these components, see Installing Administration Console, Installing Identity Server, and Installing Access Gateway Service.

    IMPORTANT:While installing Identity Server and Access Gateway, specify the internal IP address of the Administration Console machine. This ensures that communications among machines happen inside the firewall.

  4. Configure Identity Server and Access Gateway.

    For information about how to configure, see Setting Up a Basic Access Manager Configuration in the NetIQ Access Manager 5.0 Administration Guide.