使用安裝媒體隨附的 mc-<version>-<build>.tar.gz tar 檔,在 z/Linux 上安裝及配置「管理主控台」。IBM Installation Manager 不適用於這項安裝。
z/Linux 主控台隨附 IBM HTTP Server,而不是 Apache Web 伺服器。
在您安裝「管理主控台」後,請在 z/Linux 上安裝代理程式 rpm 套件 (zlinux-bfagent-<version>.rpm),以便為 Build Forge® 設定 z/Linux 伺服器。如需安裝指示,請參閱將代理程式安裝在 UNIX 和 Linux 系統上。
如果您選擇 WebSphere Application Server,則需提供更多資訊:
http://mydomain.com:9080/jas
如果您選擇已提供的 IHS 伺服器,則需提供更多 SSL 的相關資訊,包括是否使用 SSL、埠、所用的記憶體,以及是要使用現有的安全憑證還是另行建立。
./cmdline-install.sh
Install directory [/opt/buildforge]
What database will you be using?
Enter the # of the database you will use
1) DB2
2) Oracle
3) MySQL
What is your database hostname? 127.0.0.1
What is your database port number? [1521]
What is your database name? build
What is your database user name? build
What is your database user password?
Confirm your database user password?
Would you like this installation to create the Build Forge database schema? (y|n) [y]
這時請指定用戶端程式庫和資訊。視您的資料庫選擇而定,會提示您下列資訊。請使用絕對路徑。Where are your 32-bit DB2 client libraries (libdb2.so.1)?
Where is your DB2 (DB2_HOME) installed?
Where are your MySQL client libraries (libmysqlclient.so)?
Where are your Oracle client libraries (libclntsh.so)?
Where is your Oracle instant client (ORACLE_HOME) installed?
Where is your tns.names file located (TNS_ADMIN)?
Please enter the directory with your database JDBC jar file?
Will you be using the supplied Tomcat app server? (y|n) n
Enter the full URL used to contact the services layer on your application server:
http://mydomain.com:9080/jas
Enter the directory to install the Build Forge Services plugins to:
Specify the war deployment directory:
Enter the path to a jar executable (which should be included in any JDK):
Enter the temporary storage path for the Services Layer:
What http port will the Build Forge services layer use? [3966]
What ssl port will the Build Forge services layer use? [49150]
Will you be using the supplied Apache web server? (y|n)[y]
Would you like Apache to use SSL? (y|n)[n] Enter 'y' to configure Apache for SSL
What ssl port will Apache use? [443]
Please enter a memory limit for PHP (in MB): [256]
Would you like to modify or specify a custom SSL certificate? (y|n) [n]
Do you have an existing secure certificate? (y|n)[n]
A validity period is required for this cert please enter in [number][period] format
Examples: 10Y = 10 years, 6M = 6 months, 350D = 350 daysEnter the validity period for this cert:
Enter the common name for the certificate (usually the name of the server) [linux142.rtp.raleigh.ibm.com]:
Please enter your Locality/City:
Please enter your State/Province:
Please enter your Organization Name:
Please enter your Organization Unit:
Please enter your Country from the list below:
France
Taiwan
Italy
Germany
Korea
United States
China
Brazil
Spain
Japan
Please enter your Street Address:
A keystore password is required, and must be at least 6 characters long
Please enter a keystore password
<bfinstall>/rc/buildforge start
<bfinstall>/server/tomcat/logs/catalina.out
此時會啟動「管理主控台」,並顯示登入提示。
z/Linux 的授權檔位於 <bfinstall> 目錄中。授權檔名稱為 IRBF_license。安裝後它會包含一則文字訊息,指示您從 Passport Advantage 下載實際的授權檔。
下載授權檔並將它放置在 <bfinstall> 目錄中之後,請配置 Build Forge® 來使用它:
例如:<bfinstall>/IRBF_license。
檢閱個人憑證和金鑰儲存庫
金鑰儲存庫 | 說明 |
---|---|
buildForgeKeyStore.p12 | 包含受密碼保護的 keyEntry(內含公開/私密金鑰配對的個人憑證)。 |
buildForgeTrustStore.p12 | 包含一個受密碼保護的 trustedCertEntry(僅含公開金鑰的憑證)。 |
buildForgeKey.pem | 包含一個受密碼保護的私密金鑰。 |
buildForgeCert.pem | 包含一個無密碼保護的憑證,內含對應至 buildForgeKey.pem 中之私密金鑰的公開金鑰。 |
buildForgeCA.pem | 最初含有和 buildForgeCert.pem 相同的資訊;會新增其他的同層級憑證,以建立信任。 |
buildForgeKeyForApache.pem | 需要這個金鑰儲存庫,才能針對 Apache HTTP Server 啟用 SSL。與 buildForgeKey.pem 不同,它沒有密碼保護,啟動 Apache HTTP Server 時系統不會提示您輸入密碼。 |
如需轉換現有 PEM 憑證和管理憑證的相關資訊,請參閱管理憑證。
配置 IBM HTTP Server 以使用 SSL
請參閱使用 IBM HTTP Server 而非 Apache HTTP Server中的配置 IHS 的 SSL。您必須變更金鑰儲存庫格式並新增 httpd.conf 的項目。
在「管理主控台」使用者介面中啟用 SSL
使用「管理主控台」使用者介面設定,在「管理主控台」中啟用 SSL,並更新 Build Forge® 資料庫。您可以透過 來存取那些設定。然後,檢查 bfclient.conf 配置檔中已更新必要的內容值。
啟用 SSL 除錯
若要在「管理主控台」中針對 SSL 問題進行除錯,請完成下列步驟來記載 SSL 所需的其他資訊。
export BFDEBUG_SECURITY=1
com.buildforge.level = ALL
重新啟動 Tomcat,讓這些變更生效。