3.2 Installing Identity Server

Installation time: about 10 minutes.

What you need to know to install Identity Server

Username and password of the administrator.
(Conditional) IP address of Administration Console if it is installed on a separate machine.

Open a terminal window.
Log in as a root user.
Access the install script.
1. Ensure that you have downloaded the software.
  
  For software download instructions, see the release-specific Readme.
2. If you downloaded the tar.gz file, unzip the file by using the following command:
  
  tar -xzvf <filename>
3. Change to the novell-access-manager directory.
At the command prompt, run the following install script:
```
./install.sh
```
When you are prompted to install a product, specify 2, Install Identity Server, then press Enter.

This selection is also used for installing additional Identity Servers for clustering behind an L4 switch. You need to run this install for each Identity Server you add to the cluster.

NOTE:Administration Console is accessible on ports 2080 (HTTP) and 2443 (HTTPs) if Identity Server is installed on the same machine.

The following warning is displayed:
```
Warning: If NAT is present between this machine and Administration Console, configure NAT in Administration Console.
Exit this installation if NAT is not configured in Administration Console.
Would you like to continue (y/n)? 
```
For information about configuring NAT, see Configuring Administration Console Behind NAT.
Specify Y to proceed.
Review and accept the License Agreement.
Verify that the required rpms are of the latest versions. Specify Y to proceed.
Specify the IP address, user ID, and password for of the primary Administration Console.
Specify the IP address of the Novell Access Manager Server Communications Local Listener. Specify the local NAT IP address if local NAT is available for Identity Server.

If the installation program rejects the credentials and IP address, ensure that the correct ports are open on both Administration Console and Identity Server.

The following components are installed:

Component	Description
Access Manager Server Communication	Enables network communications, including identifying devices, finding services, moving data packets, and maintaining data integrity.
Identity Server	Provides authentication and identity services for the other Access Manager components and third-party service providers.
Identity Server Configuration	Allows Identity Server to be securely configured by Administration Console. If the installation process terminates at this step, the probable cause is a failure to communicate with Administration Console. Ensure that you specified the correct IP address.
Access Manager Server Communications Configuration	Enables Identity Server to auto-import itself into Administration Console.

Continue with one of the following actions:
- Verify the installation. See Verifying Identity Server Installation.
- Install Access Gateway. See Section 4.2.2, Installing Access Gateway Appliance or Section 4.3, Installing Access Gateway Service.
- Configure Identity Server. See Setting Up a Basic Access Manager Configuration in the NetIQ Access Manager 5.0 Administration Guide.
NOTE:After installing Identity Server, you must create a cluster configuration. See Configuring Identity Servers Clusters in the NetIQ Access Manager 5.0 Administration Guide.