Version 9.8
 —  Reference Guide to SIN  —

Frequently Asked Questions

This document provides details on the additional functionality in SIN. Its usage is dependent on the specific security requirements of particular applications, so applying the described configurations is optional for some of the products.

The information is organized under the following headings:


What is SSX RMI Service?

This section details the configurations related to the implementation of RMI in SSX.

Using SSX RMI is optional. Its usage is prompted only in cases when you must invoke the methods of remote SIN objects from different hosts.

SSX RMI on Windows uses the Apache prunsrv service application to allow usage of SIN components for authentication as services on remote hosts. The SSX RMI service on UNIX uses the sagrmisrvc start script.

For more information on the prunsrv service, see http://commons.apache.org/daemon/procrun.html.

The information is organized under the following headings:

How to Start RMI on Windows

Check the rmisrvc folder inside SIN distribution for the following files:

  1. install_service.bat installation script

  2. RmiService.config file

  3. prunsrv.exe

  4. prunmgr.exe

  5. Other required files

Following is a list of the required files:

Note:
For the correct version number, see Readme.txt in your SIN distribution.

Start of instruction setTo use SSX RMI on Windows

  1. Put all required JAR and DLL files into one directory together with the install_service.bat installation script.

  2. Execute the installation script.

    Note:
    Executing the script installs the server, but it is not started automatically.

  3. Pass the URL of the sample configuration file RmiService.config to the service. The only parameter in this file is port = 31415. This is the port on which the RMI server is started.

    In the simplest case, the URL can point to a file in the same directory as the JAR and DLL files, but it can also be served centrally by an application server.

You can uninstall the service with > prunsrv //DS//SAGRMI and modify the parameters of the installed service with > prunmgr //ES//SAGRMI.

How To Start RMI on UNIX

Put the sagrmisrvc start script in the usual place for the relevant UNIX (or Linux) distribution.

For example, this will be /etc/rc.d/init.d on most Linux systems.

Important:
Consult the administration manual of your Unix OS for the right place for thesagrmisrvc file.

Check the rmisrvc folder inside SIN distribution for the following files:

  1. The sagrmisrvc start script

  2. The rmisrvc.sh shell script

  3. The other required files

Following is a list of the required files:

Note:
For the correct version number, see the Readme.txt in the SIN distribution.

Start of instruction setTo use SSX RMI on UNIX

Put all required files into the RMISRVC_BASE directory.

  1. The start script runs the rmisrvc.sh shell script.

  2. Set the environment variable RMISRVC_BASE in the sagrmisrvc script accordingly and take note of the comments concerning further settings.

  3. Ensure that the authdaemonPath pointing to the sagssxauthd2 executable in your SSX installation is set correctly in the jaas.config and that its S-bit is set.

    Important:
    There is a shell script included in the SSX distribution that can be used to perform this step.

Top of page

What Should I Know About the Modules' Configuration

Keep in mind the following warnings when setting up the JAAS configuration:

Top of page

How Do I Use HTTPS with the XmlServerLoginModule

The communication between the XmlServerLoginModule and the CentraSite server works also via HTTPS. This is a requirement if the calling program and the CentraSite server are not located on the same physical machine.

Following are the prerequisites for the HTTPS connection:

Top of page