IBM Security Access Manager for Enterprise Single Sign-On, Version 8.2

Configuring the IMS Server for a new installation with the IMS Configuration Wizard (stand-alone)

Configure the IMS Server to complete the IMS Server installation.

Before you begin

About this task

To configure the IMS Server, the IMS Configuration Wizard helps you accomplish the following tasks:
  1. Set up the data sources.
  2. Update certificates.
  3. Set up the IMS Server URL.
  4. Configure the IMS Server for directory servers.

WebSphere® Application Server fix packs 15 and 17 might have connectivity problems with Oracle. Install the interim fix before running the IMS Configuration Wizard. See http://www-01.ibm.com/support/docview.wss?uid=swg24029891

Procedure

  1. Open the IMS Configuration Wizard. The URL is in the following form: https://<dmgr_hostname>:<admin_ssl_port>/front

    For example: https://localhost:9043/front.

  2. To switch to another language in the IMS Configuration Wizard, choose your preferred language in the Language menu.
  3. In the Server Set Up page, select Set up a new IMS Server.
  4. Click Begin.
  5. In Enter data source information, accept the default values or customize the fields for the data source.
  6. Click Next.
  7. To use the default option to create a database schema by using the IMS Configuration Wizard, ensure that the Create IMS Server database schema check box is selected.
    Note: Alternatively, you can create the database schema manually. See Creating database schemas.
  8. Click Next.
  9. Select the IMS Server database type.
    Note: If you are using a Microsoft SQL Server database, you have the following choices:
    • Default: Create a database with the configuration wizard. Select Create new database.
    • Use an existing database. Clear the Create new database check box. Click Next.
  10. Click Next.
  11. In Database Configuration - <database type>, specify the connection information about the database type. Follow the instructions in the wizard to specify the database connection details. The database type you select might include a different set of fields. See the help descriptions on the page for guidance.
    Tip: To see additional help for each item, move the cursor over each item.
    The following fields are specific to DB2®. You can use the following descriptions for additional guidance:
    Host Name
    Specify the database host name. For example: mydbsvr.
    Port

    The database connection port number is pre-filled. Verify whether the default port value is correct.

    For example:
    • The default value for DB2 is 50000.
    • The default value for SQL Server is 1433.
    • The default value for Oracle is 1521.
    Note: To determine the correct database connection port numbers, see your database vendor documentation on how to determine the correct values for your database server.
    Database name
    Specify the name of the database. For example: imsdb.
    User name
    Specify the database user you prepared. For example: db2admin.
    User password
    Specify the password for the database user.
  12. Click Next.
  13. In Provide Root CA Details, verify the default values.

    Verify the keystore name, keystore password, and certificate alias of the Root CA used to sign the IMS Server intermediate CA.

    Important: If you recreated or upgraded the key size for the root CA, the root CA alias name might change. Be sure to specify the correct alias. See the following descriptions for guidance:
    Tip: Use the Planning Worksheet to verify the custom values you used. See Planning worksheet.
    Keystore name
    Specifies the name of the root key store. The root key store is a key database that contains both public and private keys for secure communication. Typically, you can use the default value.
    Keystore scope
    Specifies the level at which the keystore is visible at the cell or node level. Typically, you can use the default value.
    Keystore password
    Specifies the password for the root certificate keystore. Typically, you can use the default value.
    Root CA alias name
    Accept the default value for the root alias unless the root CA alias has been modified.
  14. Click Next. The certificate credentials for the keystore and root alias are verified.
  15. In Configure IMS Services URL, specify the IBM HTTP Server or load balancer name and port number or accept the default values.
    Note: The IBM HTTP Server or load balancer name:
    • Is the fully qualified name of the IBM HTTP Server or load balancer that interfaces with the WebSphere Application Server.
    • Must match the CN attribute of the SSL certificate used by the IBM HTTP Server.
  16. Click Next.
  17. Configure the IMS Server to work with a directory server.
    Note:
    • To configure directory servers later, be sure to complete the directory server setup before you use the IMS Configuration Utility.
    • If you are planning to use a directory server, configure the IMS Server to work with a directory server before you provision an IMS Server administrator account.
  18. Click Next.
  19. Review the settings.
  20. Click Save.
  21. To complete the IMS Server configuration, do one of the following options:
    Option Description
    If you configured enterprise directories:

    (Network deployment) Restart the deployment manager node.

    (Stand-alone deployment) Restart the application server.
    If you did not configure any enterprise directories: Restart the ISAMESSOIMSConfig.

Results

You successfully set up the IMS Server.

What to do next

If you configured the enterprise directory, you can provision the IMS Server administrator account.

If you have not yet configured the enterprise directory, do it through the IMS Configuration Utility.

Parent topic: Configuring the IMS Server for a stand-alone deployment
Next topic: Provisioning the IMS Server administrator

Feedback