weblogic 10 linux

leeagle 2012-04-23

[日期:2010-06-13]来源:Linux社区作者:Linux

§2.1安装准备

?下载WebLogic10.3forx86linux安装文件;

?安装SUSELinuxenterpriseServer11.0;

?检查SUSE环境,确保/root空闲空间在2G以上。如果/root空间不足,则应扩展root空间,或创建一个新的文件系统,并确保该文件系统空间在2G以上。本手册假定该文件系统的mount点是/soft;如root的空间足够,则在root创建目录/soft作为安装源目录;

?创建WebLogic使用的文件系统,该文件系统的mount点建议为/bea,空间应在2G以上,后续将安装WebLogic软件到该文件系统中。

§2.2安装过程

§2.2.1创建bea组和weblogic用户

使用root登录操作系统,执行下列命令创建bea组和weblogic用户。bea组号为600,weblogic用户号为600,属于bea组,home目录为/bea。

#groupadd-g600bea

#useradd-d/bea-u600-g600weblogic

#passwdweblogic--激活weblogic用户

执行下列命令将/bea分配给weblogic用户。

#cd/

#chownweblogic:bea/bea

#chmod755/bea

§2.2.2上传安装文件并执行

使用weblogic登录,使用bin模式,上传WebLogic安装文件server103_linux.bin到soft目录,执行下列命令执行安装文件。

$cd/soft

$chmoda+xserver103_linux.bin

$./server103_linux.bin-mode=console

系统自动解压缩安装文件,并启动文本的安装界面。

§2.2.3欢迎界面

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

Welcome:

--------

ThisinstallerwillguideyouthroughtheinstallationofWebLogicPlatform

10.3.0.0.Type"Next"orentertoproceedtothenextprompt.Ifyouwantto

changedataenteredpreviously,type"Previous".Youmayquittheinstalleratanytimebytyping"Exit".

Enter[Exit][Next]>next

§2.2.4指定WebLogic主目录为/bea

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseBEAHomeDirectory:

--------------------------

"BEAHome"=[Enternewvalueorusedefault"/root/bea"]

EnternewBEAHomeOR[Exit][Previous][Next]>/bea

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseBEAHomeDirectory:

--------------------------

"BEAHome"=[/bea]

Useabovevalueorselectanotheroption:

1-EnternewBEAHome

2-Changetodefault[/root/bea]

EnteroptionnumbertoselectOR[Exit][Previous][Next]>next

§2.2.5选择安装类型为Custom

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseInstallType:

--------------------

Selectthetypeofinstallationyouwishtoperform.

->1|Complete

|Installthefollowingsoftwareproductsandexamples:

|-WebLogicServer

|-Workshop

2|Custom

|Choosesoftwareproductsandcomponentstoinstallandperformoptional

|configuration.

EnterindexnumbertoselectOR[Exit][Previous][Next]>2

§2.2.6选择要安装的产品组件

需取消安装Workshop和ServerExamples

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseProductsandComponents:

-------------------------------

Release10.3.0.0

|_____WebLogicServer[1]x

||_____CoreApplicationServer[1.1]x

||_____AdministrationConsole[1.2]x

||_____ConfigurationWizardandUpgradeFramework[1.3]x

||_____Web2.0HTTPPub-SubServer[1.4]x

||_____WebLogicJDBCDrivers[1.5]x

||_____ThirdPartyJDBCDrivers[1.6]x

||_____WebLogicServerClients[1.7]x

||_____WebLogicWebServerPlugins[1.8]x

||_____UDDIandXquerySupport[1.9]x

||_____ServerExamples[1.10]x

|_____Workshop[2]x

|_____WorkshopforWebLogic[2.1]x

|_____WorkshopRuntimeFramework[2.2]x

*Estimatedsizeofinstallation:788.3MB

EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>2

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseProductsandComponents:

-------------------------------

Release10.3.0.0

|_____WebLogicServer[1]x

||_____CoreApplicationServer[1.1]x

||_____AdministrationConsole[1.2]x

||_____ConfigurationWizardandUpgradeFramework[1.3]x

||_____Web2.0HTTPPub-SubServer[1.4]x

||_____WebLogicJDBCDrivers[1.5]x

||_____ThirdPartyJDBCDrivers[1.6]x

||_____WebLogicServerClients[1.7]x

||_____WebLogicWebServerPlugins[1.8]x

||_____UDDIandXquerySupport[1.9]x

||_____ServerExamples[1.10]x

|_____Workshop[2]

|_____WorkshopforWebLogic[2.1]

|_____WorkshopRuntimeFramework[2.2]

*Estimatedsizeofinstallation:406.3MB

EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>1.10

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseProductsandComponents:

-------------------------------

Release10.3.0.0

|_____WebLogicServer[1]x

||_____CoreApplicationServer[1.1]x

||_____AdministrationConsole[1.2]x

||_____ConfigurationWizardandUpgradeFramework[1.3]x

||_____Web2.0HTTPPub-SubServer[1.4]x

||_____WebLogicJDBCDrivers[1.5]x

||_____ThirdPartyJDBCDrivers[1.6]x

||_____WebLogicServerClients[1.7]x

||_____WebLogicWebServerPlugins[1.8]x

||_____UDDIandXquerySupport[1.9]x

||_____ServerExamples[1.10]

|_____Workshop[2]

|_____WorkshopforWebLogic[2.1]

|_____WorkshopRuntimeFramework[2.2]

*Estimatedsizeofinstallation:360.4MB

EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>next

§2.2.7选择要安装的JDK

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

JDKSelection(Any*indicatesBEASuppliedVM):

------------------------------------------------

JDK(s)chosenforusewiththisproductinstallationwillbeinstalled.Supporteddefaultsifnotdeselectedwillbeusedinscriptstring-substitution.

1|AddLocalJdk

2|/bea/jdk160_05[x]*

3|/bea/jrockit_160_05[x]*

*Estimatedsizeofinstallation:713.2MB

Enter1toaddor>=2totoggleselectionOR[Exit][Previous][Next]>next

§2.2.8安装确认

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ChooseProductInstallationDirectories:

----------------------------------------

BEAHomeDirectory:[/bea]

ProductInstallationDirectories:

"WebLogicServer"=[Enternewvalueorusedefault"/bea/wlserver_10.3"]

EnternewWebLogicServerOR[Exit][Previous][Next]>next

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

ThefollowingProductsandJDKswillbeinstalled:

--------------------------------------------------

WebLogicPlatform10.3.0.0

|_____WebLogicServer

||_____CoreApplicationServer

||_____AdministrationConsole

||_____ConfigurationWizardandUpgradeFramework

||_____Web2.0HTTPPub-SubServer

||_____WebLogicJDBCDrivers

||_____ThirdPartyJDBCDrivers

||_____WebLogicServerClients

||_____WebLogicWebServerPlugins

||_____UDDIandXquerySupport

|_____JDKs

|_____SunSDK1.6.0_05

|_____BEAJRockit1.6.0_05SDK

*Estimatedsizeofinstallation:713.3MB

Enter[Exit][Previous][Next]>next

§2.2.9文件复制

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

Installingfiles..

0%25%50%75%100%

[------------|------------|------------|------------]

[*****************************

PerformingStringSubstitutions...

CreatingDomains...

§2.2.10安装结束

<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->

InstallationComplete

Congratulations!Installationiscomplete.

Press[Enter]tocontinueortype[Exit]>按回车键

§2.3创建管理服务器的域

AdminServerName:AdminServer

ListenAddress:192.168.100.1

ListenPort:8080

SSLListenPort:8081

SSLenabled:true

DomainName:weblogic

§2.3.1运行ConfigurationWizard

$cd/bea/wlserver_10.3/common/bin

./config.sh-mode=console

§2.3.2选择创建新域

<--------------------OracleWebLogicConfigurationWizard------------------->

Welcome:

--------

Choosebetweencreatingandextendingadomain.Basedonyourselection,

theConfigurationWizardguidesyouthroughthestepstogenerateanewor

extendanexistingdomain.

->1|CreateanewWebLogicdomain

|CreateaWebLogicdomaininyourprojectsdirectory.

2|ExtendanexistingWebLogicdomain

|ExtendanexistingWebLogicdomain.Usethisoptiontoadd

|applicationsandservices,ortooverrideexistingdatabaseaccess(JDBC)

|andmessaging(JMS)settings.Youcanalsoincorporateadditional

|functionalityinyourdomain,forexample,byincludingAquaLogicService

|Bus.

EnterindexnumbertoselectOR[Exit][Next]>1

§2.3.3选择域源

<--------------------OracleWebLogicConfigurationWizard------------------->

SelectDomainSource:

---------------------

Selectthesourcefromwhichthedomainwillbecreated.Youcancreatethe

domainbyselectingfromtherequiredcomponentsorbyselectingfroma

listofexistingdomaintemplates.

->1|ChooseWeblogicPlatformcomponents

|YoucanchoosetheWeblogiccomponent(s)thatyouwantsupportedin

|yourdomain.

2|Choosecustomtemplate

|Choosethisoptionifyouwanttouseanexistingtemplate.This

|couldbeacustomcreatedtemplateusingtheTemplateBuilder.

EnterindexnumbertoselectOR[Exit][Previous][Next]>1

<--------------------OracleWebLogicConfigurationWizard------------------->

ApplicationTemplateSelection:

-------------------------------

AvailableTemplates

|_____WebLogicServer(Required)x

EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>next

§2.3.4配置管理员及密码

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureAdministratorUsernameandPassword:

----------------------------------------------

CreateausertobeassignedtotheAdministratorrole.Thisuseristhe

defaultadministratorusedtostartdevelopmentmodeservers.

|Name|Value|

_|_________________________|_________________________________________|

1|*Username:|weblogic|

2|*Userpassword:||

3|*Confirmuserpassword:||

4|Description:|Thisuseristhedefaultadministrator.|

Useabovevalueorselectanotheroption:

1-Modify"Username"

2-Modify"Userpassword"

3-Modify"Confirmuserpassword"

4-Modify"Description"

EnteroptionnumbertoselectOR[Exit][Previous][Next]>2

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureAdministratorUsernameandPassword:

----------------------------------------------

CreateausertobeassignedtotheAdministratorrole.Thisuseristhe

defaultadministratorusedtostartdevelopmentmodeservers.

"*Userpassword:"=[]

Enternew*Userpassword:OR[Exit][Reset][Accept]>

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureAdministratorUsernameandPassword:

----------------------------------------------

CreateausertobeassignedtotheAdministratorrole.Thisuseristhe

defaultadministratorusedtostartdevelopmentmodeservers.

|Name|Value|

_|_________________________|_________________________________________|

1|*Username:|weblogic|

2|*Userpassword:|***********|

3|*Confirmuserpassword:||

4|Description:|Thisuseristhedefaultadministrator.|

Useabovevalueorselectanotheroption:

1-Modify"Username"

2-Modify"Userpassword"

3-Modify"Confirmuserpassword"

4-Modify"Description"

5-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>3

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureAdministratorUsernameandPassword:

----------------------------------------------

CreateausertobeassignedtotheAdministratorrole.Thisuseristhe

defaultadministratorusedtostartdevelopmentmodeservers.

"*Confirmuserpassword:"=[]

Enternew*Confirmuserpassword:OR[Exit][Reset][Accept]>

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureAdministratorUsernameandPassword:

----------------------------------------------

CreateausertobeassignedtotheAdministratorrole.Thisuseristhe

defaultadministratorusedtostartdevelopmentmodeservers.

|Name|Value|

_|_________________________|_________________________________________|

1|*Username:|weblogic|

2|*Userpassword:|***********|

3|*Confirmuserpassword:|***********|

4|Description:|Thisuseristhedefaultadministrator.|

Useabovevalueorselectanotheroption:

1-Modify"Username"

2-Modify"Userpassword"

3-Modify"Confirmuserpassword"

4-Modify"Description"

5-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>Next

§2.3.5选产品模式+JRockitJDK

<--------------------OracleWebLogicConfigurationWizard------------------->

DomainModeConfiguration:

--------------------------

EnableDevelopmentorProductionModeforthisdomain.

->1|DevelopmentMode

2|ProductionMode

EnterindexnumbertoselectOR[Exit][Previous][Next]>2

<--------------------OracleWebLogicConfigurationWizard------------------->

JavaSDKSelection:

-------------------

->1|JRockitSDK1.6.0_05@/bea/jrockit_160_05

2|SunSDK1.6.0_05@/bea/jdk160_05

3|OtherJavaSDK

EnterindexnumbertoselectOR[Exit][Previous][Next]>1

§2.3.6选择要定制环境与服务设置

<--------------------OracleWebLogicConfigurationWizard------------------->

ChooseConfigurationOption:

----------------------------

*Doyouwanttomodifyanyofthepreconfiguredsettingsordefaultsin

*yourtemplate?

*

*Tokeepthedefaultortemplatesettings,andproceeddirectlytonameand*createyourdomain,leaveNoselected.

1|Yes

->2|No

EnterindexnumbertoselectOR[Exit][Previous][Next]>1

§2.3.7暂不配置安全存储

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureRDBMSSecurityStoreOptions:

---------------------------------------

CreatetheRDBMStablesinyourdatastorepriortobootingyourdomain.The

scriptsforusebyyourDBAareinWebLogicServer'sserver/libdirectory.

ClickNexttokeepthetemplatesettingsorbypassRDBMSoptions.

->1|Idon'twanttochangeanythinghere.

2|Iwanttocreate,change,orremoveRDBMSsupport.

EnterindexnumbertoselectOR[Exit][Previous][Next]>1

§2.3.8配置管理服务器的端口

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|7001|

4|SSLlistenport:|N/A|

5|SSLenabled:|false|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-Modify"Listenaddress"

3-Modify"Listenport"

4-Modify"SSLenabled"

EnteroptionnumbertoselectOR[Exit][Previous][Next]>2

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|7001|

4|SSLlistenport:|N/A|

5|SSLenabled:|false|

Entervaluefor"Listenaddress"OR[Exit][Previous][Next]>192.168.100.30

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|________________|

1|*Name:|AdminServer|

2|Listenaddress:|192.168.100.30|

3|Listenport:|7001|

4|SSLlistenport:|N/A|

5|SSLenabled:|false|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-Modify"Listenaddress"

3-Modify"Listenport"

4-Modify"SSLenabled"

5-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>3

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|7001|

4|SSLlistenport:|N/A|

5|SSLenabled:|false|

Entervaluefor"Listenport"OR[Exit][Previous][Next]>8080

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|8080|

4|SSLlistenport:|N/A|

5|SSLenabled:|false|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-Modify"Listenaddress"

3-Modify"Listenport"

4-Modify"SSLenabled"

EnteroptionnumbertoselectOR[Exit][Previous][Next]>4

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

*Enterindexnumbertomodify"Value"

1|true

->2|false

3|Unspecified

EnterindexnumbertoselectOR[Exit][Reset][Accept]>1

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|8080|

4|SSLlistenport:|7002|

5|SSLenabled:|true|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-Modify"Listenaddress"

3-Modify"Listenport"

4-Modify"SSLlistenport"

5-Modify"SSLenabled"

6-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>4

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|8080|

4|SSLlistenport:|7002|

5|SSLenabled:|true|

Entervaluefor"SSLlistenport"OR[Exit][Previous][Next]>8081

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfiguretheAdministrationServer:

------------------------------------

Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust

haveoneAdministrationServer.TheAdministrationServerhoststhe

AdministrationConsolewhichisusedtoperformadministrativetasks.

|Name|Value|

_|__________________|_____________________|

1|*Name:|AdminServer|

2|Listenaddress:|AllLocalAddresses|

3|Listenport:|8080|

4|SSLlistenport:|8081|

5|SSLenabled:|true|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-Modify"Listenaddress"

3-Modify"Listenport"

4-Modify"SSLlistenport"

5-Modify"SSLenabled"

6-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>next

§2.3.9暂不添加受管的服务器

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureManagedServers:

--------------------------

AddordeleteconfigurationinformationforManagedServers.Atypical

productionenvironmenthasoneormoreManagedServers.EachManagedServer

isaninstanceofWebLogicServerusedtohostenterpriseapplications.

|Name*|Listenaddress|Listenport|SSLlistenport|SSLenabled|

_|_______|________________|_____________|_________________|_____________|

EnternameforanewOR[Exit][Previous][Next]>next

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureClusters:

-------------------

Addordeleteconfigurationinformationforclusters.Aclustercontains

multipleWebLogicServerinstancesthatrunsimultaneouslyandwork

togethertoprovideincreasedscalabilityandreliability.Acluster

appearstobeasingleWebLogicServerinstancetoclients.

|Name*|Multicastaddress|Multicastport|Clusteraddress|

_|_______|___________________|________________|_________________|

12下一页GO

EnternameforanewClusterOR[Exit][Previous][Next]>next

§2.3.10暂不添加受管的主机

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureMachines:

-------------------

Addordeletemachines.AmachinehostsoneormoreWebLogicServer

instances.TheAdminServerandNodeManagerusethismachinedefinitionto

startremoteservers.

|Name*|Nodemanagerlistenaddress|Nodemanagerlistenport|

_|_______|_____________________________|__________________________|

EnternameforanewMachineOR[Exit][Previous][Next]>next

<--------------------OracleWebLogicConfigurationWizard------------------->

ConfigureUnixMachines:

------------------------

Addordeletemachines.AmachinehostsoneormoreWebLogicServer

instances.TheAdminServerandNodeManagerusethismachinedefinitionto

startremoteservers.

|Name|

_|______|

EnternameforanewUnixMachineOR[Exit][Previous][Next]>next

§2.3.11指定域名

<--------------------OracleWebLogicConfigurationWizard------------------->

Selectthetargetdomaindirectoryforthisdomain:

---------------------------------------------------

"TargetLocation"=[Enternewvalueorusedefault

"/bea/user_projects/domains"]

EnternewTargetLocationOR[Exit][Previous][Next]>next

<--------------------OracleWebLogicConfigurationWizard------------------->

EditDomainInformation:

------------------------

|Name|Value|

_|________|_____________|

1|*Name:|base_domain|

Entervaluefor"Name"OR[Exit][Previous][Next]>weblogic

<--------------------OracleWebLogicConfigurationWizard------------------->

EditDomainInformation:

------------------------

|Name|Value|

_|________|__________|

1|*Name:|weblogic|

Useabovevalueorselectanotheroption:

1-Modify"Name"

2-DiscardChanges

EnteroptionnumbertoselectOR[Exit][Previous][Next]>next

§2.3.12创建域

<--------------------OracleWebLogicConfigurationWizard------------------->

CreatingDomain...

0%25%50%75%100%

[------------|------------|------------|------------]

[***************************************************]

****DomainCreatedSuccessfully!****

§2.4创建受管服务器的域

参考《WebLogic10.3forWin32》-《创建受管服务器的Domain和Server》。

§2.5配置和启动节点管理器

§2.5.1直接运行

$cd/bea/wlserver_10.3/server/bin

$./startNodeManager.sh

§2.5.2配置节点管理器作为Daemon

在/etc/rc.d/rc3.d添加一个启动节点管理器的文件。该文件核心内容是启动节点管理器,即:

su-weblogic-c"nohup/bea/wlserver_10.3/server/bin/startNodeManager&"

这样,Linux启动后时自动启动节点管理器。

Runlevel

ThetermrunlevelreferstoamodeofoperationinoneofthecomputeroperatingsystemsthatimplementUnixSystemV-styleinitialization.Conventionally,sevenrunlevelsexist,numberedfromzerotosix;thoughuptoten,fromzerotonine,maybeused.Sissometimesusedasasynonymforoneofthelevels.

Instandardpractice,whenacomputerentersrunlevelzero,ithalts,andwhenitentersrunlevelsix,itreboots.Theintermediaterunlevels(1-5)differintermsofwhichdrivesaremounted,andwhichnetworkservicesarestarted.Lowerrunlevelsareusefulformaintenanceoremergencyrepairs,sincetheyusuallydon'tofferanynetworkservicesatall.Theparticulardetailsofrunlevelconfigurationdifferwidelyamongoperatingsystems,andslightlyamongsystemadministrators.

Therunlevelsystemreplacedthetraditional/etc/rcscriptusedinVersion7Unix.

?Standardrunlevels

Standardrunlevels

IDNameDescription

0HaltShutsdownthesystem.

SSingle-UserModeDoesnotconfigurenetworkinterfacesorstartdaemons.[1]

6RebootRebootsthesystem.

1=Almostallsystemsuserunlevel1forthispurpose.Thismodeisintendedtoprovideasafeenvironmenttoperformsystemmaintenance.Originallythisrunlevelprovidedasingleterminal(console)interfacerunningarootloginshell.Theincreasingtrendtowardsphysicalaccesstothecomputerduringthebootprocesshasledtochangesinthisarea.

?Linux

TheLinuxoperatingsystemcanmakeuseofrunlevelsthroughtheprogramsofthesysvinitproject.AftertheLinuxkernelhasbooted,theinitprogramreadsthe/etc/inittabfiletodeterminethebehaviorforeachrunlevel.Unlesstheuserspecifiesanothervalueasakernelbootparameter,thesystemwillattempttoenter(start)thedefaultrunlevel.

TypicalLinuxrunlevels

MostLinuxdistributions,inadditiontothestandardrunlevels,definethefollowingadditionalrunlevels:

TypicalLinuxrunlevels

IDNameDescription

1Single-UserModeDoesnot:configurenetworkinterfaces,startdaemons,orallownon-rootlogins.[2]

2Multi-UserModeDoesnot:configurenetworkinterfacesorstartdaemons.[3]

3Multi-UserModewithNetworkingStartsthesystemnormally.[4]

4Unused/Userdefinedforspecialpurposes

5X11Asrunlevel3+displaymanager.

^=Theadditionalbehaviorofthisrunlevelvariesgreatly.Alldistributionsprovideatleastonevirtualterminal.Somedistributionsstartaloginshellasthesuperuser;somerequirecorrectlyenteringthesuperuser'spasswordfirst;othersprovidealoginprompt,allowinganyuseraccess.

^=Insomecases,runlevels2and3functionidentically;offeringaMulti-UserModewithNetworking.

?DebianLinux

Debian,aswellasmostofthedistributionsbasedonit,likeearlyUbuntu,doesnotmakeanydistinctionbetweenrunlevels2to5.

DebianLinuxrunlevels

IDDescription

0Halt

1Singleusermode

2-5Fullmulti-userwithconsoleloginsanddisplaymanagerifinstalled

6Reboot

?sidux

sidux,aDebianSidbaseddistribution(current20081110).Thisisthelistforsiduxoperatingsystemrunlevels,pleasenotethatitdoesdifferfromdebianstablerunlevels.

siduxLinuxrunlevels

IDDescription

0init0powersoffthePC,halt

1init1singleusermode

2init2Multi-Usermodewithoutnetwork,and/ortostopornotenterX,

3init3Multi-UsermodewithnetworknotrunningtheXWindowSystem,and/ortostopornotenterX

4init4tostopornotenterX

5init5Multi-UsermodewithnetworkrunningtheXWindowSystem,and/ortostartX

6init6Reboot

?Ubuntu

Ubuntu6.10(EdgyEft)andlatercontainUpstartasareplacementforthetraditionalinit-process,buttheystillusethetraditionalinitscriptsandUpstart'sSysV-rccompatibilitytoolstostartmostservicesandemulaterunlevels.

?RedHatLinuxandFedora

RedHataswellasmostofitsderivatives(suchasCentOS)usesrunlevelslikethis:

RedHatLinux/Fedorarunlevels

IDDescription

0Halt

1Singleuser

2Fullmulti-userwithnetworkenabledbutmostnetworkservicesdisabled

3Fullmulti-user,consoleloginsonly

4Notused/Userdefinable

5Fullmulti-user,withdisplaymanageraswellasconsolelogins

6Reboot

Whichservicesarestartedinwhichrunlevelscanbemanagedwiththechkconfigtool,whichkeepsitsconfigurationsettingsunder/etc/rc.d/./sbin/chkconfig--listlistsalltheservicescontrolledbychkconfigandwhethertheyareon/offforeachrunlevel.SettingaserviceAcontrolledbychkconfig,forlevelsX,YandZisassimpleas/sbin/chkconfig--levelXYZA

?SUSELinux

SUSEusesasimilarsetuptoRedHat:

SUSELinuxrunlevels

IDDescription

0Halt

1Single-user

2Fullmulti-userwithnonetworking

3Fullmulti-userwithoutdisplaymanager

4Notused/Userdefinable

5Fullmulti-userwithdisplaymanager

6Reboot

TheservicesthatrununderaspecificrunlevelcanbemodifiedwithYaST|SystemServices(runlevel)orwithchkconfigcommandliketheRedHatbaseddistributions.

?SlackwareLinux

SlackwareLinuxusesrunlevel1formaintenance,asonotherLinuxdistributions;runlevels2,3and5identicallyconfiguredforaconsole(withallservicesactive);andrunlevel4addstheXWindowSystem.

SlackwareLinuxrunlevels

IDDescription

0Halt

1Single-user

2Fullmulti-userNOdisplaymanager

3Fullmulti-userNOdisplaymanager

4Fullmulti-userwithdisplaymanager

5Notused/Userdefinable

6Reboot

?GentooLinux

GentooLinuxrunlevels

IDDescription

0Halt

1Single-user

2Multi-user,nonetwork

3Fullmulti-userwithdisplaymanager

4Aliasedforrunlevel3(Fullmulti-userwithdisplaymanager)

6Reboot

?SystemVReleases3and4

SystemVrunlevels

IDDescription

0Shutdownsystem,power-offifhardwaresupportsit(onlyavailablefromtheconsole)

1Single-usermode,allfilesystemsunmountedbutroot,allprocessesexceptconsoleprocesseskilled

2Multi-usermode

3Multi-usermodewithRFS(andNFSinrelease4)filesystemsexported

4Multi-user,user-defined

5Halttheoperatingsystem,gotofirmware

6Haltthesystem,reboottodefaultrunlevel

s,SIdenticalto1(Single-usermode,allfilesystemsunmountedbutroot,allprocessesexceptconsoleprocesseskilled)exceptcurrentterminalactsasthesystemconsole

?Solaris

Solarisrunlevels

IDDescription

0Operatingsystemhalted;(SPARConly)droptoOpenBootprompt

SSingle-userwithonlyrootfilesystemmounted(asread-only)

1Single-usermodewithalllocalfilesystemsmounted(read-write)

2Multi-userwithmostdaemonsstarted.

3multi-user,identicalto2(runlevel3runsboth/sbin/rc2and/sbin/rc3),withfilesystemsexported,plussomeothernetworkservicesstarted.

4Alternativemulti-user,user-defined

5Shutdown,power-offifhardwaresupportsit

6Reboot

?HP-UX

HP-UXrunlevels

IDDescription

0Systemhalted

SSingle-user,bootedtosystemconsoleonly,withonlyrootfilesystemmounted(asread-only)

sSingleuser,identicaltoSexceptthecurrentterminalactsasthesystemconsole

1Single-userwithlocalfilesystemsmounted(read-write)

2Multi-userwithmostdaemonsstartedandCommonDesktopEnvironmentlaunched

3Multi-user,nearlyidenticaltorunlevel2withNFSexported

4Multi-userwithVUEstartedinsteadofCDE

5,6user-defined

?AIX

AIXdoesnotfollowtheSystemVR4(SVR4)runlevelspecification,withrunlevelsfrom0to9available,aswellasfromatoc.0and1arereserved,2isthedefaultnormalmulti-usermodeandrunlevelsfrom3to9arefreetobedefinedbytheadministrator.Runlevelsfromatocallowtheexecutionofprocessesinthatrunlevelwithoutkillingprocessesstartedinanother.

AIXrunlevels

IDNameDescription

0reserved

1reserved

2Normalmultiusermodedefaultmode

第三章配置和管理

§3.1配置单向SSL认证

WebLogic启用SSL连接需部署服务器证书、CA证书链、信任证书链。WebLogic安装完成后,在\wlserver_10.3\server\lib目录下会自动创建DemoIdentity.jks(密码DemoIdentityKeyStorePassPhrase)、DemoTrust.jks(密码DemoTrustKeyStorePassPhrase)、cacerts三个文件,分别存放服务器证书、信任证书和CA证书链。前两个文件是非安全的,只能用于测试,不能用于生产;后一个文件是Java的默认cacerts文件。对生产系统,必须部署独有的服务器证书、信任证书和CA证书链。本节描述部署生产系统Server证书的操作过程。

§3.1.1创建Server存储库

§3.1.1.1创建Server私钥

使用JDK自带的keytool工具创建Server私钥。命令如下:

keytool-genkey-aliasAdminServer-keyalgRSA-keysize1024-keystoreAdminServer.jks

该命令会询问存储库的密码和证书信息以及私钥保护密码。大致内容如下:

输入keystore密码:

再次输入新密码:

您的名字与姓氏是什么?

[Unknown]:AdminServer

您的组织单位名称是什么?

[Unknown]:Enterprise

您的组织名称是什么?

[Unknown]:WJZhiFu

您所在的城市或区域名称是什么?

[Unknown]:BeiJing

您所在的州或省份名称是什么?

[Unknown]:BJ

该单位的两字母国家代码是什么

[Unknown]:CN

CN=AdminServer,OU=Enterprice,O=WJZhiFu,L=BeiJing,ST=BJ,C=CN正确吗?

[否]:y

输入的主密码

(如果和keystore密码相同,按回车):

再次输入新密码:

填写时应注意:

?CN域应和Server域名一致,不应使用Server的ip地址;

?OU域应按颁发的证书类型划分为多个单元;如:Server、Enterprise、Person,可以使用编码;

?O域应为公司的英文名称;

?L域应为城市的英文名称;

?ST域应为省的英文名称;

?C域应为国家代码CN;

?存储库的密码和私钥密码应不同。

§3.1.1.2生成Server的证书申请文件

keytool-certreq-aliasAdminServer-sigalg"MD5withRSA"-fileAdminServer.csr-keystoreAdminServer.jks

§3.1.1.3认证证书申请

提交上步生成的AdminServer.csr证书申请文件提交给证书颁发机构进行认证。本例中使用openssl认证该证书申请,命令如下:

opensslca-inAdminServer.csr-outAdminServer.crt-configopenssl.cfg

§3.1.1.4导入证书文件

从CA获取到认证的证书文件后,使用keytool将该证书文件导入到存储库。Keytool导入证书时,会自动检查证书的合法性,确认该证书是信任的CA签署的。默认情况下,我们的CA证书没有包含在Java信任的CA清单中,因此先需要将我们的CA添加到Java的信任CA清单中。命令如下:

keytool-import-fileca.crt-keystoreD:\bea\jdk160_05\jre\lib\security\cacerts

注意:请确认您使用的keytool的JDK位置,Java信任CA清单存储库即为该JDK的jre/lib/security/cacerts文件。

添加CA证书完成后,将该文件复制到WebLogic的server/lib目录,覆盖当前的cacerts文件,然后执行如下命令导入Server的证书文件。

keytool-import-trustcacerts-aliasAdminServer-fileAdminServer.crt-keystoreAdminServer.jks

导入完成后,复制AdminServer.jks存储库到WebLogic的server/lib。至此,Server证书存储库准备就绪。

§3.1.2创建CA证书存储库

从CA处下载CA证书文件。CA证书文件一般有两种形式,一是单独的CA证书文件,二是.p7b证书链文件。

§3.1.2.1导入独立的CA证书文件

keytool可以导入DER格式(二进制)和PEM格式(BASE64编码格式,-----BEGINCERTIFICATE-----打头,-----ENDCERTIFICATE-----结束)。命令如下:

keytool-importcert-fileca.crt-trustcacerts-alias"WJZHIFUCA"-

keystoreWJZhiFuCA.jks

导入完成后,复制CA证书存储库到WebLogic的server/lib。

§3.1.2.2导入p7b的CA证书文件

P7b文件不能直接导入到存储库,应使用openssl工具将p7b文件转换为每证书一个der文件,然后参考上节导入各个文件。

转换p7b文件的命令如下:

opensslpkcs7-inca.p7b-outca.txt-outformPEM-informDEA-print_certs

编辑ca.txt文件,将每个-----BEGINCERTIFICATE-----打头,-----ENDCERTIFICATE-----结束的证书内容分别复制到一个文件中,然后顺序导入各个文件。导入完成后,导入完成后,复制CA证书存储库到WebLogic的server/lib。

§3.1.3部署证书文件

(1)启动WebLogic服务器,使用管理员登录到控制台;

(2)编辑Environment?Server的配置。本例编辑AdminServer;

(3)编辑Server的Keystore属性;

?Keystore选择为:CustomIdentityandCustomTrust;

?CustomIdentityKeystore:添加Server证书存储库全路径名;

?CustomIdentityKeystoreType:JKS

?填写该Server存储库的密码;

?CustomTrustKeystore:填写CA证书存储库的全路径名;

?CustomTrustKeystoreType:JKS

?填写该CA存储库的密码;

?Save

(4)编辑Server的SSL配置;

?IdentityandTrustLocations:KeyStores

?PrivateKeyAlias:填写为Server存储库私钥的别名,即AdminServer;

?填写Server存储库私钥的密码;

?Save。

至此,单向认证(客户端认证服务器)的SSL配置完成。

§3.2配置双向SSL认证

比照WebLogic服务器单向SSL认证的配置,完成服务器端的SSL配置,然后编辑Server?SSL?Advance配置。

?TwoWayClientCert:ClientCertsRequestedandEnforced;

?InboundCertificateValidation:BuiltinSSLValidationAndCertPathValidators;

?OutboundCertificateValidation:BuiltinSSLValidationAndCertPathValidators;

?Save

启用Server双向认证后,如果客户端没有相应的证书,则无法连接服务器。

§3.3WebLogic集群配置

本集群由三台计算机组成,AdminServer、Server1、Server2。AdminServer负责集群管理与部署,Server1和Server2组成集群提供对外服务。

§3.3.1准备证书文件

为AdminServer、Server1、Server2、Server1NodeManager、Server2NodeManager各准备一张Server证书,并参考“WebLogicServer双向SSL认证的配置”节,将这些证书和CA证书制作成如下文件:

文件名证书组成说明

ServerAdmin.jksAdminServer私钥

AdminServer证书CN=AdminServer

Server1.jksServer1私钥

Server1证书CN=server1.wjzhifu.com

Machine1.jksMachine1节点管理器私钥

Machine1节点管理器证书CN=machine1

Server2.jksServer2私钥

Server2证书

Server2节点私钥

Server2节点证书CN=server2.wjzhifu.com

Machine2.jksMachine2节点管理器私钥

Machine2节点管理器证书CN=machine2

ServerCA.jksCA证书CN=CA

注意:各证书的私钥密码应各不相同以提高安全性。

创建上述文件完成后,将ServerAdmin+ServerCA复制到管理服务器的wlserver_10.3\server\lib目录,Server1+Machine1+ServerCA复制到Server1的wlserver_10.3\server\lib目录,Server2+Machine2+ServerCA复制到Server2的wlserver_10.3\server\lib目录。

§3.3.2创建管理服务器和受管服务器的域

参考“创建管理服务器的域”和“创建受管服务器的域”章节,分别为管理服务器和每个Server创建域,并为AdminServer配置双向的SSL。创建域时应注意各机器域名、管理账号、密码均应相同。

创建各服务器的域完成后,启动管理服务器,并按下列步骤添加机器、Server、配置集群。

§3.3.2.1启动管理服务器

§3.3.2.2启动管理员终端,并登录

§3.3.2.3添加受管计算机

(1)创建计算机;

(2)编辑新建计算机的NodeManager属性;

相关推荐