一、环境
OS: Red Hat Enterprise Linux 5.4
IP Address: 10.100.100.160
FQDN: oiam.sttg-poc.com
二、RHEL5.4系统安装
安装Redhat Linux的过程比较简单,我选用的Linux版本是Redhat Enterprise Linux 5.4,因需装Oracle10g,系统环境需求如下:
RAM:1GB(最低需求512MB)
SWAP:2GB
必须安装以下系统组件:GNOME桌面环境、编辑器、开发工具、开发库等.
A) desktop environments:
gnome desktop environment
B) applications:
editer
C) development:
development libraries
development tools
gnome software development
D) servers:
不安装
E) base system:
base
x windows system
F) cluster storage:
不安装
G) clustering:
不安装
H) virtualization:
不安装
三、安装Oracle 10g
参考: [Leo]RHEL5.4安装Oracle 10g r2.txt文件
1) 内核版本要求
要在Linux上安装Oracle,所需内核版本:2.4.9-e.25(或更高版本)
通过运行以下命令检查内核版本:
[root@oiam ~]# uname -r
2.6.18-164.el5
2) 程序包安装和更新
在安装好Linux后,需验证安装是否具备Oracle 10g所需要的所有程序包和更新,按以下步骤验证安装.
所需程序包的版本(或更高版本):
gcc-3.2.3-2
make-3.79
binutils-2.11
openmotif-2.2.2-16
setarch-1.3-1
compat-gcc-7.3-2.96.122
compat-gcc-c++-7.3-2.96.122
compat-libstdc++-7.3-2.96.122
compat-libstdc++-devel-7.3-2.96.122
compat-db-4.0.14.5
要查看系统上安装了这些程序包的哪些版本,以 root 用户身份运行以下命令:
[root@rhel ~]# rpm -q gcc make binutils openmotif setarch compat-db compat-gcc-34 openmotif compat-gcc-34-c++ compat-libstdc++-296
gcc-4.1.2-46.el5
make-3.81-3.el5
binutils-2.17.50.0.6-12.el5
openmotif-2.3.1-2.el5
setarch-2.0-1.1
compat-db-4.2.52-5.1
compat-gcc-34-3.4.6-4
openmotif-2.3.1-2.el5
compat-gcc-34-c++-3.4.6-4
compat-libstdc++-296-2.96-138
如果系统上缺少任何程序包,或版本比以上指定的版本旧(compat-db 除外),则需要安装这些包,这些包在RHEL的DVD安装盘上的server目录下都有.
[root@rhel ~]# cd "/media/RHEL_5.3 i386 DVD/Server"
[root@rhel ~]# rpm -Uvh setarch-2*
[root@rhel ~]# rpm -Uvh make-3*
[root@rhel ~]# rpm -Uvh glibc-2.5-42.i686.rpm
[root@rhel ~]# rpm -Uvh libaio-0*
[root@rhel ~]# rpm -Uvh compat-db-4*
[root@rhel ~]# rpm -Uvh compat-libstdc++-296*
[root@rhel ~]# rpm -Uvh compat-libf2c-34*
[root@rhel ~]# rpm -Uvh compat-gcc-34-3*
[root@rhel ~]# rpm -Uvh compat-gcc-34-c++-3*
[root@rhel ~]# rpm -Uvh gcc-4*
[root@rhel ~]# rpm -Uvh libXp-1*
[root@rhel ~]# rpm -Uvh openmotif-2*
3) 验证系统要求
要验证系统是否满足 Oracle 10g 数据库的最低要求,以 root 用户身份登录并运行以下命令。
要查看可用 RAM 和交换空间大小,运行以下命令:
[root@rhel ~]# grep MemTotal /proc/meminfo
MemTotal:512236 kB
[root@rhel ~]# grep SwapTotal /proc/meminfo
SwapTotal:1574360 kB
所需最小 RAM 为 512MB,而所需最小交换空间为 1GB。对于 RAM 小于或等于 2GB 的系统,交换空间应为 RAM 数量的两倍;对于 RAM 大于 2GB 的系统,交换空间应为 RAM 数量的一到两倍。
Oracle 10g 软件还需要 2.5GB 的可用磁盘空间,而数据库则另需 1.2GB 的可用磁盘空间。/tmp 目录至少需要 400MB 的可用空间。要检查系统上的可用磁盘空间,运行以下命令:
[root@rhel ~]# df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda3 6.8G 1.3G 5.2G 20% /
/dev/sda1 99M 17M 77M 18% /boot
4) 创建 Oracle 组和用户帐户
Oracle数据库必须在Oracle用户下才能安装,所以需要建立相应的用户群组、用户,以及设置相应的目录属主、目录权限
[root@rhel ~]# groupadd oinstall
[root@rhel ~]# groupadd dba
[root@rhel ~]# groupadd oper
[root@rhel ~]# useradd -g oinstall -G dba oracle
[root@rhel ~]# mkdir -p /app/oracle/product/10.2.0/db_1
[root@rhel ~]# chown -R oracle.oinstall /app/oracle
[root@rhel ~]# chmod -R 775 /app/oracle
[root@rhel ~]# passwd oracle
5) 修改/etc/redhat-release文件
获得Oracle10g认证的Redhat Linux最高版本为redhat-4, 所以需要修改redhat-release文件.
[root@rhel ~]# vi /etc/redhat-release
# Red Hat Enterprise Linux Server release 5.4 (Tikanga)
redhat-4
6) 配置Linux内核参数
Linux 内核非常出色。与大多数其他 *NIX 系统不同,Linux 允许在系统启动和运行时修改大多数内核参数。完成内核参数更改后不必重新启动系统。Oracle 数据库 10g 需要以下所示的内核参数设置。其中给出的是最小值,因此如果您的系统使用的值较大,则不要更改它。
设置原则:
kernel.shmmax 为 4GB-1byte或一半的物理内存(kernel.shmmax默认即可无需设置), 哪个值更低用哪个; fs.file-max 为512 * PROCESSES.
kernel.shmall = 2097152
kernel.shmmax = 2147483648
kernel.shmmni = 4096
kernel.sem = 250 32000 100 128
fs.file-max = 65536
net.ipv4.ip_local_port_range = 2048 65000
以 root 用户身份登录后执行下命令
[root@rhel ~]# vi /etc/sysctl.conf
# For Oracle
kernel.shmmni = 4096
kernel.sem = 250 32000 100 128
fs.file-max = 65536
net.ipv4.ip_local_port_range = 1024 65000
net.core.rmem_default = 262144
net.core.rmem_max = 262144
net.core.wmem_default = 262144
net.core.wmem_max = 262144
保存文件后执行以下命令激活更改.
[root@rhel ~]# /sbin/sysctl -p
7) 为oracle用户设置Shell限制
Oracle 建议对每个 Linux 帐户可以使用的进程数和打开的文件数设置限制。要进行这些更改,以 root 用户的身份执行下列命令:
[root@rhel ~]# vi /etc/security/limits.conf
# For Oracle 10g
oracle soft nproc 2047
oracle hard nproc 16384
oracle soft nofile 1024
oracle hard nofile 65536
[root@rhel ~]# vi /etc/pam.d/login
# For Oracle 10g
session required /lib/security/pam_limits.so
以oracle用户身份运行以下命令:
[root@rhel ~]# vi /etc/profile
# For Oracle 10g
if [ $USER = "oracle" ]; then
if [ $SHELL = "/bin/ksh" ]; then
ulimit -p 16384
ulimit -n 65536
else
ulimit -u 16384 -n 65536
fi
umask 022
fi
以root用户身份运行以下命令:
[root@rhel ~]# vi /etc/csh.login
if ( $USER == "oracle" ) then
limit maxproc 16384
limit descriptors 65536
umask 022
endif
8) 配置Oracle用户环境变量
要使用 Oracle 产品,应该或必须设置几个环境变量。对于数据库服务器,建议设置以下环境变量:
ORACLE_BASE
ORACLE_HOME
ORACLE_SID
PATH
如果您在同一服务器上安装了多个 Oracle 产品或数据库,则 ORACLE_HOME、ORACLE_SID 和 PATH 变量可能会更改。
ORACLE_BASE 变量不应更改,并可以在需要时在您的登录配置文件中设置它。Oracle 提供了一个称作 oraenv 的实用程序来设置其他变量。
以 oracle 身份登录,并通过在 .bash_profile 或 .profile(bash 或 ksh)中添加以下行,将 ORACLE_BASE 添加到登录配置文件
[root@rhel ~]# su - oracle
[root@oiam ~]# vi .bash_profile
# For Oracle 10g
TMP=/tmp; export TMP
TMPDIR=$TMP; export TMPDIR
ORACLE_BASE=/app/oracle; export ORACLE_BASE
ORACLE_HOME=$ORACLE_BASE/product/10.2.0/db_1; export ORACLE_HOME
ORACLE_SID=orcl; export ORACLE_SID
ORACLE_TERM=xterm; export ORACLE_TERM
PATH=/usr/sbin:$PATH; export PATH
PATH=$ORACLE_HOME/bin:$PATH; export PATH
LD_LIBRARY_PATH=$LD_LIBRARY_PATH:$ORACLE_HOME/lib:$ORACLE_HOME/opmn/lib:/lib:/usr/lib; export LD_LIBRARY_PATH
CLASSPATH=$ORACLE_HOME/JRE:$ORACLE_HOME/jlib:$ORACLE_HOME/rdbms/jlib; export CLASSPATH
9) 安装Oracle
首先运行xhost #命令启动X-Windows安装界面
[root@rhel ~]# xhost +
[root@rhel ~]# su - oracle
[root@oiam ~]# export DISPLAY=localhost:0.0
开始安装
[root@oiam ~]# ./runInstaller
进入图形安装界面,根据提示安装即可,与在Windows下安装一致.
在安装的最后弹出一个“Setup Privileges”窗口,提示需要以 root 用户身份运行配置脚本。以 root 用户身份登录,
切换到该窗口中指示的目录,然后执行 root.sh 脚本。该脚本提示输入本地 bin 目录的位置。按 Enter 键接受默认值。当脚本完成时,返回到 Setup Privileges 窗口并单击 OK
[root@oiam ~]# su root
[root@rhel ~]# /app/oracle/oralnventory/orainstRoot.sh
[root@rhel ~]# /app/oracle/product/10.2.0/db_1/root.sh
安装完成后,恢复Oracle用户语言环境以及/etc/redhat-release文件。
[root@oiam ~]# rm –f .i18n
[root@rhel ~]# vi /etc/redhat-release
Red Hat Enterprise Linux Server release 5.4 (Tikanga)
修改$ORACLE_HOME/bin/dbstart 数据库启动脚本
[root@oiam ~]# vi $ORACLE_HOME/bin/dbstart
找到:
ORACLE_HOME_LISTNER=/ade/vikrkuma_new/oracle
替换为:
ORACLE_HOME_LISTNER=$ORACLE_HOME
10) 测试运行安装的Oracle系统
启动监听器:
[root@oiam ~]# lsnrctl start
启动及关闭数据库.
[root@oiam ~]# sqlplus /nolog
SQL> connect / as sysdba
Connected to an idle instance.
SQL> startup
SQL> shutdown
设置自启动:
[root@rhel ~]# vi /etc/oratab
orcl:/app/oracle/product/10.2.0/db_1:Y
创建启动停止脚本
[root@oiam ~]# vi /app/db.sh
#!/bin/sh
# description: Oracle start&stop&restart script.
#
# Set ORA_HOME to be equivalent to the $ORACLE_HOME
# from which you wish to execute dbstart and dbshut;
#
# Set ORA_OWNER to the user id of the owner of the
# Oracle database in ORA_HOME.
ORA_HOME=/app/oracle/product/10.2.0/db_1
ORA_OWNER=oracle
if [ ! -f $ORA_HOME/bin/dbstart ] ; then
echo "Oracle startup: cannot start"
exit
fi
case "$1" in
'start')
# Start the Oracle databases:
# The following command assumes that the oracle login
# will not prompt the user for any values
su - $ORA_OWNER -c "$ORA_HOME/bin/sqlplus /NOLOG $args <<EOF
connect / as sysdba
startup
EOF"
su - $ORA_OWNER -c "$ORA_HOME/bin/lsnrctl start"
;;
'stop')
# Stop the Oracle databases:
# The following command assumes that the oracle login
# will not prompt the user for any values
su - $ORA_OWNER -c "$ORA_HOME/bin/lsnrctl stop"
su - $ORA_OWNER -c "$ORA_HOME/bin/sqlplus /NOLOG $args <<EOF
connect / as sysdba
shutdown immediate
EOF"
;;
'restart')
$0 stop
$0 start
;;
*)
echo $"Usage: $0 {start|stop|restart}"
exit 1
esac
[root@oiam ~]# chmod 775 /app/db.sh
四、安装OIM 9.1.0.1
1) 安装JDK 1.6.0_17
使用默认的安装目录: /usr/java/jdk1.6.0_17
[root@oiam ~]# ./jdk-6u17-linux-i586-rpm.bin
指定JDK环境路径:
[root@oiam ~]# vi /etc/bashrc
加入:
export JAVA_HOME=/usr/java/jdk1.6.0_17
export PATH=$JAVA_HOME/bin:$PATH
2) 安装JBOSS
安装目录: /app/jboss-4.2.3.GA
[root@oiam ~]# unzip jboss-4.2.3.GA.zip -d /app
修改JBOSS启动参数:
[root@oiam ~]# vi /app/jboss-4.2.3.GA/bin/run.conf
找到:
-Xms128m -Xmx512m
替换为:
$JAVA_OPTS -XX:PermSize=128m -XX:MaxPermSize=256m -Xms1280m -Xmx1280m
让JBOSS服务绑定所有IP地址:
[root@oiam ~]# vi /app/jboss-4.2.3.GA/server/default/deploy/jboss-web.deployer/server.xml
找到
${jboss.bind.address}
替换为
0.0.0.0
指定JBOSS环境路径:
[root@oiam ~]# vi /etc/bashrc
加入:
export JBOSS_HOME=/app/jboss-4.2.3.GA
export PATH=$PATH:$JBOSS_HOME/bin
创建启动停止脚本(可跟踪日志,比如日志文件存储于/mnt/hgfs/temp/jboss.log)
[root@oiam ~]# vi /app/jboss.sh
#!/bin/sh
# description: JBOSS Server start&stop&restart script.
#
# Set JB_HOME to be equivalent to the $JBOSS_HOME
# from which you wish to execute run.sh and shutdown.sh;
#
JB_HOME=/app/jboss-4.2.3.GA
JB_LOG=/mnt/hgfs/temp/jboss.log
if [ ! -f $JB_HOME/bin/run.sh ] ; then
echo "/$JB_HOME setting is error."
exit
fi
case "$1" in
'start')
# Start the JBOSS Server:
if [ "x$JB_LOG" != "x" ] ; then
echo "Starting the JBOSS Server, please check log file: $JB_LOG"
$JB_HOME/bin/run.sh -b 0.0.0.0 > $JB_LOG &
else
$JB_HOME/bin/run.sh -b 0.0.0.0
fi
;;
'stop')
# Stop the JBOSS Server:
$JB_HOME/bin/shutdown.sh -S
;;
'restart')
$0 stop
$0 start
;;
*)
echo $"Usage: $0 {start|stop|restart}"
exit 1
esac
[oracle@oiam ~]$ chmod 775 /app/jboss.sh
3) 安装OIM
A. 修改数据库JAVA POOL
[oracle@oiam ~]$ sqlplus / as sysdba
SQL> alter system set java_pool_size=60m;
System altered.
SQL> show parameter java_pool
NAME TYPE VALUE
------------------------------------ ----------- ----------
java_pool_size big integer 60M
B. 准备数据库
[root@oiam ~]# su - oracle
[oracle@oiam ~]$ cp /media/cdrom/installServer/Xellerate /tmp/Xellerate -rf
[oracle@oiam ~]$ cd /tmp/Xellerate/db/oracle
[root@oiam oracle]$ ./prepare_xl_db.sh
## Enter the ORACLE HOME directory or Press [Enter] to
accept the default /app/oracle/product/10.2.0/db_1 as ORACLE_HOME.
/app/oracle/product/10.2.0/db_1
## Current database <ORACLE_SID> is orcl
Do you want to continue with this database [y,Y,n,N] ?
y
## Enter the Oracle Identity Manager user name
oimuser
## Enter the password for Oracle Identity Manager (oimuser) user
## Enter the tablespace to hold the Oracle Identity Manager user data
oimtbs
## Enter the directory to store the datafile for the Oracle Identity Manager tablespace
/app/oracle/oradata/orcl
## Enter the name of the datafile without the extension .dbf
(For e.g. xeltspace_01)
oimtbs_01
## Enter the Temporary tablespace for Oracle Identity Manager User
TEMP
Validating the given inputs...
Validating the given inputs is done.
Preparing the database for Oracle Identity Manager. Please wait...
Errors/warnings occurred during the database preparation. Please check the log file prepare_xell_db.lst for more info.
查看 prepare_xell_db.lst 日志文件,发现错误如下:
DROP VIEW v$xatrans$
*
ERROR at line 1:
ORA-00942: table or view does not exist
DROP VIEW v$pending_xatrans$
*
ERROR at line 1:
ORA-00942: table or view does not exist
不用理会
C. 部署Diagnostic Dashboard:
[root@oiam ~]# cp /media/cdrom/DiagnosticDashboard/XIMDD.war /app/jboss-4.2.3.GA/server/default/deploy/
[root@oiam ~]# /app/jboss.sh start
访问 http://oiam.sttg-poc.com:8080/XIMDD/进行安装前诊断
Test Name: Oracle Database Prerequisites Check
Database Server: oiam.sttg-poc.com
Port: 1521
Database Name: orcl
OIM Database User Name: oimuser
System User Name: system
System User Password: ********
Test Name: Java VM System Properties Report
D. 安装Oracle Identity Manager Server
[root@oiam ~]# /app/jboss.sh stop
[root@oiam ~]# cd /media/cdrom/installServer
[root@oiam installServer]# ./install_server.sh
Select a language to be used for this wizard.
[X] 6 - English
xelsysadm's password: ********
Select the Oracle Identity Manager application that you want to install:
[ ] 1 - Oracle Identity Manager
[X] 2 - Oracle Identity Manager with Audit and Compliance Module
Oracle Identity Manager Server Installer: Target directory
Oracle Identity Manager Install Location
Please specify a directory or press Enter to accept the default directory.
Destination Directory: [/opt/oracle] /app/oim
Oracle Identity Manager Server Installer: Database Server Selection
Select the database to be used for the Oracle Identity Manager repository:
[X] 1 - Oracle Database
[ ] 2 - Microsoft SQL Server
Oracle Identity Manager Server Installer: Database Information
Provide database connectivity information:
Database Host name or IP Address: [localhost] oiam.sttg-poc.com
Port Number: [1521]
Database SID: orcl
User Name: oimuser
Select the Authentication mode for the Oracle Identity Manager Web Application.
If the SSO mode is selected, then enter the header value in the space provided.
[X] 1 - Oracle Identity Manager Default Authentication
Select the application server to be used to deploy Oracle Identity Manager:
[X] 3 - JBoss Application Server
Provide the following information for the JBoss Application Server:
Enter the path of the directory.
Provide the location where the application server is installed:
[/opt/jboss-4.2.3] /app/jboss-4.2.3.GA
Provide the location of the JDK used to run the Application Server:
[/opt/jdk160_10]/usr/java/jdk1.6.0_17
The selected JDK version is not supported by Oracle Identity Manager.
Oracle Identity Manager may not function correctly if you continue installation with this unsupported version of JDK.
Do you want to proceed with this unsupported version?y/n
y
停止JBOSS
[root@oiam ~]# /app/jboss.sh stop
创建启动停止脚本(可跟踪日志,比如日志文件存储于/mnt/hgfs/temp/oim.log)
[root@oiam ~]# vi /app/oim.sh
#!/bin/sh
# description: JBOSS Server start&stop&restart script.
#
# Set JB_HOME to be equivalent to the $JBOSS_HOME
# from which you wish to execute run.sh and shutdown.sh;
#
JB_HOME=/app/jboss-4.2.3.GA
OIM_HOME=/app/oim
OIM_LOG=/mnt/hgfs/temp/oim.log
if [ ! -f $JB_HOME/bin/run.sh ] ; then
echo "/$JB_HOME setting is error."
exit
fi
if [ ! -f $OIM_HOME/xellerate/bin/xlStartServer.sh ] ; then
echo "/$OIM_HOME setting is error."
exit
fi
case "$1" in
'start')
# Start the OIM Server:
if [ "x$OIM_LOG" != "x" ] ; then
echo "Starting the OIM Server, please check log file: $OIM_LOG"
$OIM_HOME/xellerate/bin/xlStartServer.sh > $OIM_LOG &
else
$OIM_HOME/xellerate/bin/xlStartServer.sh
fi
;;
'stop')
# Stop the OIM Server:
$JB_HOME/bin/shutdown.sh -S
;;
'restart')
$0 stop
$0 start
;;
*)
echo $"Usage: $0 {start|stop|restart}"
exit 1
esac
[oracle@oiam ~]$ chmod 775 /app/oim.sh
访问http://oiam.sttg-poc.com:8080/xlWebApp
使用xelsysadm登录
创建完整的启动停止脚本
[root@oiam ~]# vi /app/all.sh
#!/bin/sh
case "$1" in
'start')
echo "Starting Oracle 10g Database..."
/app/db.sh start
echo "Starting OIM Server..."
/app/oim.sh start
;;
'stop')
echo "Stoping OIM Server..."
/app/oim.sh stop
echo "Stoping Oracle 10g Database..."
/app/db.sh stop
;;
'restart')
$0 stop
$0 start
;;
*)
echo $"Usage: $0 {start|stop|restart}"
exit 1
esac
[oracle@oiam ~]$ chmod 775 /app/all.sh
E. 在Windows下安装OIM Design Console, 即Oracle Identity Manager Client
运行安装目录下的/installServer/setup_client.exe文件开始安装
Directory:
C:/oracle
Select the application server to be used to deploy Oracle Identity Manager:
[X] JBoss Application Server
JRE Location:
C:/Program Files/Java/jdk1.6.0_17
Specify application server configuration:
Host Name:
oiam.sttg-poc.com
Nameing Port:
1099
Oracle Identity Manager Web Server Host IP Address:
oiam.sttg-poc.com
Port Number:
8080
SSL:
[X]No
当提示:Copy the file jbossall-client.jar from <JBOSS_HOME>/client to C:/oracle/xlclient/ext directory 时,将复制<JBOSS_HOME>/client/jbossall-client.jar文件复制到C:/oracle/xlclient/ext目录
并将<JBOSS_HOME>/client/log4j.jar文件复制到C:/oracle/xlclient/ext目录, 否则登录时会显示"[XELLERATE.JBOSSLOGINHANDLER],Error in creating login context"错误
F、在RHEL5.4下安装OIM Design Console[可选]
1) 卸载SCIM
[root@oiam ~]# yum remove scim
[root@oiam ~]# reboot
2) 开始安装
将Windows平台安装的Design Console复制至RHEL5.4,更改相关配置
安装目录 /app/oimDesignConsole
将 Config文件夹修改为小写
[root@oiam ~]# cd /app/oimDesignConsole/xlclient/
[root@oiam xlclient]# mv Config config
检查 /app/oimDesignConsole/xlclient/config/xlconfig.xml 文件,查看 <ApplicationURL> 和 <java.naming.provider.url> 对应的正确。
创建Design Console运行脚本
[root@oiam ~]# vi /app/oimDesignConsole/xlclient/xlclient.sh
#!/bin/bash
OIM_DC_HOME=/app/oimDesignConsole/xlclient
export OIM_DC_HOME
cd $OIM_DC_HOME
CLASSPATH=$CLASSPATH:./lib/XellerateClient.jar:./lib/xlAPI.jar:./lib/xlLogger.jar:./lib/xlVO.jar:./lib/xlUtils.jar:./lib/xlCrypto.jar:./lib/xlAuthentication.jar:./lib/xlDataObjectBeans.jar:./ext/log4j.jar:./ext/log4j-1.2.8.jar:./ext/jhall.jar
export CLASSPATH
CLASSPATH=$CLASSPATH:./ext/jakarta-oro-2.0.8.jar:./ext/bsh.jar:./ext/mail.jar:./ext/jboss-j2ee.jar:./ext/jboss-jaas.jar:./ext/jbosssx.jar:./ext/jts.jar:./ext/jbossall-client.jar:./ext/concurrent.jar:./ext/getopt.jar:./ext/gnu-regexp.jar:./ext/jacorb.jar:./ext/jboss-client.jar:./ext/jboss-common-client.jar:./ext/jbosscx-client.jar:./ext/jbossha-client.jar:./ext/jboss-iiop-client.jar:./ext/jbossjmx-ant.jar:./ext/jboss-jsr77-client.jar:./ext/jbossmq-client.jar:./ext/jboss-net-client.jar:./ext/jbosssx-client.jar:./ext/jboss-system-client.jar:./ext/jboss-transaction-client.jar:./ext/jcert.jar:./ext/jmx-connector-client-factory.jar:./ext/jmx-ejb-connector-client.jar:./ext/xdoclet-module-jboss-net.jar:./ext/jsse.jar:./ext/jnet.jar:./ext/jmx-rmi-connector-client.jar:./ext/jmx-invoker-adapter-client.jar:./ext/jnp-client.jar:./ext/wlfullclient.jar:./ext/sas.jar:./ext/oc4jclient.jar:./ext/ejb.jar:./ext/oscache.jar:./ext/commons-logging.jar:./ext/javagroups-all.jar
export CLASSPATH
# DEBUG_OPTS=-classic -Xdebug -Xnoagent -Djava.compiler=NONE -Xrunjdwp/:transport=dt_socket,server=y,suspend=n,address=5001 -DXL.RedirectSysOutErrToFile=TRUE -DXL.SysOutErrLogFile=./logs/Client.System.Out.Err.log
# export DEBUG_OPTS
java -DXL.ExtendedErrorOptions=TRUE -DXL.HomeDir=$OIM_DC_HOME -Djava.security.policy=config/xl.policy -Dlog4j.configuration=config/log.properties -Djava.security.manager -Djava.security.auth.login.config=config/auth.conf com.thortech.xl.client.base.tcAppWindow -server server
5) 配置OIM关键的系统参数
使用xelsysadm帐号登录至Design Console
访问Administration->System Configuration,搜索后列出所有参数,点击System Configuration Table.
修改Key为49的配置
Name: Compiler Path for Connectors
Keyword: XL.CompilerPath
将Value设为: /usr/java/jdk1.6.0_17/bin
对应OIM Server安装主机的jdk目录
修改Key为64的配置
Name: Enable Exception Reports
Keyword: XL.EnableExceptionReports
将Value设为: TRUE
五、OIM升级至BP09
1) 停止 OIM 服务
[root@oiam ~]# /app/oim.sh stop
2) 备份数据库和JBOSS、OIM安装目录
将补丁文件解压缩至 /tmp/BP09
[root@oiam ~]# mkdir /tmp/BP09
[root@oiam ~]# cd /tmp/BP09
[root@oiam BP09]# unzip /mnt/hgfs/temp/p9341015_9101_Generic.zip
3) 升级Oracle数据库
Perform the following steps by using the OIM User credentials on the Oracle Identity Manager schema:[root@oiam ~]# su - oracle
[oracle@oiam ~]$ cd /tmp/BP09/db/oracle/Scripts/
[oracle@oiam Scripts]$ sqlplus oimuser/{oim_db_user_password} @upg_9101BP09.sql
[oracle@oiam Scripts]$ sqlplus oimuser/{oim_db_user_password} @xsd_entries_Oracle.sql
[oracle@oiam Scripts]$ cd ../StoredProcedures/
[oracle@oiam StoredProcedures]$ sqlplus oimuser/{oim_db_user_password} @compile_all_XL_SP.sql
[oracle@oiam StoredProcedures]$ exit
To load metadata into the Oracle Identity Manager database:
以OIM安装的用户root
[root@oiam ~]# cd /tmp/BP09/db/Metadata/
[root@oiam Metadata]# vi LoadXML.sh
将
JAVA_HOME=
改为
JAVA_HOME=/usr/java/jdk1.6.0_17
将
#ORACLE_DRIVER_DIR=
#export ORACLE_DRIVER_DIR
改为
ORACLE_DRIVER_DIR=/app/oim/xellerate/ext
export ORACLE_DRIVER_DIR
将
CLASSPATH=../../../xlhome/lib/xlUtils.jar
改为
CLASSPATH=/app/oim/xellerate/lib/xlUtils.jar
运行 LoadXML.sh 脚本
[root@oiam Metadata]# chmod +x LoadXML.sh
[root@oiam Metadata]# ./LoadXML.sh jdbc:oracle:thin:@oiam.sttg-poc.com:1521:orcl oimuser/{oim_db_user_password}
显示:
/usr/java/jdk1.6.0_17/bin/java -cp /app/oim/xellerate/lib/xlUtils.jar:/app/oim/xellerate/ext/ojdbc14.jar com.thortech.xl.util.LoadXML Oracle oracle.jdbc.driver.OracleDriver jdbc:oracle:thin:@oiam.sttg-poc.com:1521:orcl oimuser/{oim_db_user_password} AUD AUD_CLASS com.thortech.xl.audit.userprofileaudit.UserProfileAuditor AUD_METADATA_XML ../Metadata/UserProfileAuditMetadata.xml
Usage: java -cp <fully-qualified-path-of-db-drivers(s)> LoadXML DBType DBDriver JDBCURL DBUserName DBPassword TableName RecordLocatorColumn RecordLocatorValue XMLColumn XMLValueLocation
4) 升级OIM
[root@oiam ~]# cd /app/oim/xellerate/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/lib/* lib/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/webapp/* webapp/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/DDTemplates/* DDTemplates/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/ext/* ext/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/config/FormMetaData.xml config/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/config/log.properties config/
[root@oiam xellerate]# cp -r /tmp/BP09/xellerate/config/Version.prop config/
[root@oiam xellerate]# vi config/xlconfig.xml
在<Cache> .....</Cache>之间加入:
<AccessPolicyDefinition>
<Enable>false</Enable>
<ExpireTime>14400</ExpireTime>
</AccessPolicyDefinition>
[root@oiam xellerate]# cd setup
运行 path_jboss.sh,参数为OIM的Oracle数据库用oimuser的密码:
[root@oiam setup]# ./patch_jboss.sh {oim_db_user_password}
[root@oiam ~]# cp /tmp/BP09/Diagnostic/ Dashboard/* /app/jboss-4.2.3.GA/server/default/deploy/
6) 升级OIM Design Console
对于Windows平台
复制 PATCH/xlclient 至 OIM_DC_HOME/xlclient 目录
对于Linux平台
[root@oiam ~]# cp -r /tmp/BP09/xlclient/* /app/oimDesignConsole/xlclient/
7) 升级文档
[root@oiam ~]# cp -r /tmp/BP09/documentation/* /app/oim/documentation/