Dani's Middleware

Problem [root@srv1234 PolicyDirector]# java com.tivoli.pd.jcfg.SvrSslCfg -action config -admin_id sec_master -admin_pwd ******** -appsvr_id tim2tam -appsvr_pwd secret -host srv1234 -mode remote -port 999 -policysvr srv1235.mycompany.com:7135:1 -authzsvr srv1235.mycompany.com:7136:1 -cfg_file /opt/PolicyDirector/conf/srv1235.conf -key_file /opt/PolicyDirector/conf/keystore_srv1235.ks -domain Default -cfg_action create Exception in thread "main" [java.lang.IllegalStateException: HPDAZ0602E   Corrupted file: Insufficient information to contact a Policy Server. ] Wrappered Exception: java.lang.IllegalStateException: HPDAZ0602E   Corrupted file: Insufficient information to contact a Policy Server.         at com.tivoli.pd.jadmin.PDAppSvrConfig.configureAppSvr(PDAppSvrConfig.java:195)         at com.tivoli.pd.jcfg.SvrSslCfg.config(SvrSslCfg.java:179)         ...

[root@srvapp sbin]# java com.tivoli.pd.jcfg.SvrSslCfg -action config -admin_id sec_master -admin_pwd ********* -appsvr_id tim2tam -appsvr_pwd ******** -host srvapp -mode remote -port 999 -policysvr srvtam.mycompany.com:7135:1 -authzsvr srvtam.mycompany.com:7136:1 -cfg_file /opt/PolicyDirector/conf/srvtam.conf -key_file /opt/PolicyDirector/conf/keystore_srvtam.ks -cfg_action create Problem : Exception in thread "main" [java.io.IOException: No such file or directory ] Wrappered Exception: java.io.IOException: No such file or directory at com.tivoli.pd.jadmin.PDAppSvrConfig.configureAppSvr(PDAppSvrConfig.java:528) at com.tivoli.pd.jcfg.SvrSslCfg.config(SvrSslCfg.java:335) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:64) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:615) at com.tivo...

If you already configured the WPM and then found out that it is implemented in the ISC (What a bad idea!), then you have to unconfigure the WPM: # /opt/PolicyDirector/sbin/amwpmcfg -action unconfig -interactive Then unpack the iscwpm.war (/opt/PolicyDirector/java/export/pdwpm/iscwpm.war): # /opt/WebSphere/AppServer/java/bin/jar xvf /tmp/iscwpm.war Modify ibm-portal-security.xml: old: new: Repack the iscwpm.war (remove the copy of your original /tmp/iscwpm.war first) and put it into place again: # /opt/WebSphere/AppServer/java/bin/jar cvf /opt/PolicyDirector/java/export/pdwpm/iscwpm.war /tmp/* Reconfigure the WPM: # /opt/PolicyDirector/sbin/amwpmcfg -action config -interactive Then you can give your WPM Adminperson the role wpm-user within the ISC. Then he/she can see everything, but can only do changes in WPM. IBM link: http://www-01.ibm.com/support/docview.wss?rs=638&context=SSPREK&q1=6.1+role&uid=swg21307731&loc=en_US&cs=utf-8&lang=en

Imagine some funny guys installed some weird servers or anything connecting to your policy director and you do not know why and who and they are long gone and you assume that the servers have no purpose anymore. Or you have an old Web Portal Manager (amwpm) installation, but the server where it was installed is long gone. So, how to get rid of those servers in your list? pdadmin sec_master> server list si2tty-hst1116.dada.com amwpm-hst2128 hirsch.emea.dadacorp.net-localhost # touch /tmp/null.conf # svrsslcfg -unconfig -f /tmp/null.conf -n amwpm -h hst2128 -P ******* -A sec_master Unconfiguration of application "amwpm" for host "hst2128" is in progress. This might take several minutes. SSL unconfiguration for application "amwpm" has completed successfully. # svrsslcfg -unconfig -f /tmp/null.conf -n si2tty -h hst1116.dada.com -P ******* -A sec_master Unconfiguration of application "si2tam" for host "hst1116.dada.com" is in ...