Friday 13 November 2015

IBM Security Directory Integrator (ISDI, TDI) - Create New solution directory

Creating new solution directory

The following command is useful in creating a new solution directory.

<TDI_INSTALLATION_DIRECTORY>/ibmdisrv –s <path to new solution directory> -g
e.g.:  /opt/IBM/TDI/V7.1.1/ibmdisrv –s /home/jeelani/tdisol1 -g

Once the new solution directory is created, modify the following properties in solution.properties file located in the solution directory.

The highlighted port number needs to be modified so that it is unique across all the running TDI instances.
com.ibm.di.store.database=jdbc:derby://localhost:1527/$soldir$/TDISysStore;create=true
com.ibm.di.store.jdbc.urlprefix=jdbc:derby://localhost:1527/
com.ibm.di.store.port=1527

Change the port of the TDI instance from 1099. It should be unique so that remote processes can connect to TDI instance on this port. Similary modify the web server port to be unique.
api.remote.naming.port=1099
web.server.port=1098

Save the solution.properties file and start the server TDI Instance. Considering the example used above, the solution directory is /home/jeelani/tdisol1 use the following command to start the instance
(If TDI_INSTALLATION_DIRECTORY is /opt/IBM/TDI/V7.1.1)

/opt/IBM/TDI/V7.1.1/ibmdisrv –s /home/jeelani/tdisol1 –c <path to config> -r <AL Name>

If you want to start the server in daemon mode, the use the command similar to the following.

/opt/IBM/TDI/V7.1.1/ibmdisrv –s /home/jeelani/tdisol1 –d close –c <path to config> -r <AL Name>

Optionally, modify the following password properties values as described below, if you see any error regarding SSL keystore “The password is incorrect or tampered” after starting the server.

{protect}-api.keystore.password=server
{protect}-api.truststore.pass=server
{protect}-javax.net.ssl.trustStorePassword=administrator
{protect}-javax.net.ssl.keyStorePassword=administrator
{protect}-api.client.keystore.pass=administrator
{protect}-api.client.key.pass=administrator
{protect}-api.client.truststore.pass=administrator

You can use the tdisvrctl utility, to view status of the server or to start or stop config or AL's.
<TDI_INSTALLATION_DIRECTORY>/bin/tdisvrctl –h <hostname/ip address> -p <remote api port of server> -op <command like start|stop|status etc>

e.g.: /opt/IBM/TDI/V7.1.1/bin/tdisvrctl –h localhost -p 1099 -op status
/opt/IBM/TDI/V7.1.1/bin/tdisvrctl –h localhost -p 1099 -op stop –c <config_name>
/opt/IBM/TDI/V7.1.1/bin/tdisvrctl –h localhost -p 1099 -op start –c <config_name> -r <AL_Name>
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)