weblogic 10 linux
leeagle 2012-04-23
[日期:2010-06-13]来源:Linux社区作者:Linux
§2.1安装准备
?下载WebLogic10.3forx86linux安装文件;
?安装SUSELinuxenterpriseServer11.0;
?检查SUSE环境,确保/root空闲空间在2G以上。如果/root空间不足,则应扩展root空间,或创建一个新的文件系统,并确保该文件系统空间在2G以上。本手册假定该文件系统的mount点是/soft;如root的空间足够,则在root创建目录/soft作为安装源目录;
?创建WebLogic使用的文件系统,该文件系统的mount点建议为/bea,空间应在2G以上,后续将安装WebLogic软件到该文件系统中。
§2.2安装过程
§2.2.1创建bea组和weblogic用户
使用root登录操作系统,执行下列命令创建bea组和weblogic用户。bea组号为600,weblogic用户号为600,属于bea组,home目录为/bea。
#groupadd-g600bea
#useradd-d/bea-u600-g600weblogic
#passwdweblogic--激活weblogic用户
执行下列命令将/bea分配给weblogic用户。
#cd/
#chownweblogic:bea/bea
#chmod755/bea
§2.2.2上传安装文件并执行
使用weblogic登录,使用bin模式,上传WebLogic安装文件server103_linux.bin到soft目录,执行下列命令执行安装文件。
$cd/soft
$chmoda+xserver103_linux.bin
$./server103_linux.bin-mode=console
系统自动解压缩安装文件,并启动文本的安装界面。
§2.2.3欢迎界面
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
Welcome:
--------
ThisinstallerwillguideyouthroughtheinstallationofWebLogicPlatform
10.3.0.0.Type"Next"orentertoproceedtothenextprompt.Ifyouwantto
changedataenteredpreviously,type"Previous".Youmayquittheinstalleratanytimebytyping"Exit".
Enter[Exit][Next]>next
§2.2.4指定WebLogic主目录为/bea
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseBEAHomeDirectory:
--------------------------
"BEAHome"=[Enternewvalueorusedefault"/root/bea"]
EnternewBEAHomeOR[Exit][Previous][Next]>/bea
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseBEAHomeDirectory:
--------------------------
"BEAHome"=[/bea]
Useabovevalueorselectanotheroption:
1-EnternewBEAHome
2-Changetodefault[/root/bea]
EnteroptionnumbertoselectOR[Exit][Previous][Next]>next
§2.2.5选择安装类型为Custom
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseInstallType:
--------------------
Selectthetypeofinstallationyouwishtoperform.
->1|Complete
|Installthefollowingsoftwareproductsandexamples:
|-WebLogicServer
|-Workshop
2|Custom
|Choosesoftwareproductsandcomponentstoinstallandperformoptional
|configuration.
EnterindexnumbertoselectOR[Exit][Previous][Next]>2
§2.2.6选择要安装的产品组件
需取消安装Workshop和ServerExamples
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseProductsandComponents:
-------------------------------
Release10.3.0.0
|_____WebLogicServer[1]x
||_____CoreApplicationServer[1.1]x
||_____AdministrationConsole[1.2]x
||_____ConfigurationWizardandUpgradeFramework[1.3]x
||_____Web2.0HTTPPub-SubServer[1.4]x
||_____WebLogicJDBCDrivers[1.5]x
||_____ThirdPartyJDBCDrivers[1.6]x
||_____WebLogicServerClients[1.7]x
||_____WebLogicWebServerPlugins[1.8]x
||_____UDDIandXquerySupport[1.9]x
||_____ServerExamples[1.10]x
|_____Workshop[2]x
|_____WorkshopforWebLogic[2.1]x
|_____WorkshopRuntimeFramework[2.2]x
*Estimatedsizeofinstallation:788.3MB
EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>2
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseProductsandComponents:
-------------------------------
Release10.3.0.0
|_____WebLogicServer[1]x
||_____CoreApplicationServer[1.1]x
||_____AdministrationConsole[1.2]x
||_____ConfigurationWizardandUpgradeFramework[1.3]x
||_____Web2.0HTTPPub-SubServer[1.4]x
||_____WebLogicJDBCDrivers[1.5]x
||_____ThirdPartyJDBCDrivers[1.6]x
||_____WebLogicServerClients[1.7]x
||_____WebLogicWebServerPlugins[1.8]x
||_____UDDIandXquerySupport[1.9]x
||_____ServerExamples[1.10]x
|_____Workshop[2]
|_____WorkshopforWebLogic[2.1]
|_____WorkshopRuntimeFramework[2.2]
*Estimatedsizeofinstallation:406.3MB
EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>1.10
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseProductsandComponents:
-------------------------------
Release10.3.0.0
|_____WebLogicServer[1]x
||_____CoreApplicationServer[1.1]x
||_____AdministrationConsole[1.2]x
||_____ConfigurationWizardandUpgradeFramework[1.3]x
||_____Web2.0HTTPPub-SubServer[1.4]x
||_____WebLogicJDBCDrivers[1.5]x
||_____ThirdPartyJDBCDrivers[1.6]x
||_____WebLogicServerClients[1.7]x
||_____WebLogicWebServerPlugins[1.8]x
||_____UDDIandXquerySupport[1.9]x
||_____ServerExamples[1.10]
|_____Workshop[2]
|_____WorkshopforWebLogic[2.1]
|_____WorkshopRuntimeFramework[2.2]
*Estimatedsizeofinstallation:360.4MB
EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>next
§2.2.7选择要安装的JDK
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
JDKSelection(Any*indicatesBEASuppliedVM):
------------------------------------------------
JDK(s)chosenforusewiththisproductinstallationwillbeinstalled.Supporteddefaultsifnotdeselectedwillbeusedinscriptstring-substitution.
1|AddLocalJdk
2|/bea/jdk160_05[x]*
3|/bea/jrockit_160_05[x]*
*Estimatedsizeofinstallation:713.2MB
Enter1toaddor>=2totoggleselectionOR[Exit][Previous][Next]>next
§2.2.8安装确认
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ChooseProductInstallationDirectories:
----------------------------------------
BEAHomeDirectory:[/bea]
ProductInstallationDirectories:
"WebLogicServer"=[Enternewvalueorusedefault"/bea/wlserver_10.3"]
EnternewWebLogicServerOR[Exit][Previous][Next]>next
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
ThefollowingProductsandJDKswillbeinstalled:
--------------------------------------------------
WebLogicPlatform10.3.0.0
|_____WebLogicServer
||_____CoreApplicationServer
||_____AdministrationConsole
||_____ConfigurationWizardandUpgradeFramework
||_____Web2.0HTTPPub-SubServer
||_____WebLogicJDBCDrivers
||_____ThirdPartyJDBCDrivers
||_____WebLogicServerClients
||_____WebLogicWebServerPlugins
||_____UDDIandXquerySupport
|_____JDKs
|_____SunSDK1.6.0_05
|_____BEAJRockit1.6.0_05SDK
*Estimatedsizeofinstallation:713.3MB
Enter[Exit][Previous][Next]>next
§2.2.9文件复制
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
Installingfiles..
0%25%50%75%100%
[------------|------------|------------|------------]
[*****************************
PerformingStringSubstitutions...
CreatingDomains...
§2.2.10安装结束
<---------------OracleInstaller-WebLogicPlatform10.3.0.0--------------->
InstallationComplete
Congratulations!Installationiscomplete.
Press[Enter]tocontinueortype[Exit]>按回车键
§2.3创建管理服务器的域
AdminServerName:AdminServer
ListenAddress:192.168.100.1
ListenPort:8080
SSLListenPort:8081
SSLenabled:true
DomainName:weblogic
§2.3.1运行ConfigurationWizard
$cd/bea/wlserver_10.3/common/bin
./config.sh-mode=console
§2.3.2选择创建新域
<--------------------OracleWebLogicConfigurationWizard------------------->
Welcome:
--------
Choosebetweencreatingandextendingadomain.Basedonyourselection,
theConfigurationWizardguidesyouthroughthestepstogenerateanewor
extendanexistingdomain.
->1|CreateanewWebLogicdomain
|CreateaWebLogicdomaininyourprojectsdirectory.
2|ExtendanexistingWebLogicdomain
|ExtendanexistingWebLogicdomain.Usethisoptiontoadd
|applicationsandservices,ortooverrideexistingdatabaseaccess(JDBC)
|andmessaging(JMS)settings.Youcanalsoincorporateadditional
|functionalityinyourdomain,forexample,byincludingAquaLogicService
|Bus.
EnterindexnumbertoselectOR[Exit][Next]>1
§2.3.3选择域源
<--------------------OracleWebLogicConfigurationWizard------------------->
SelectDomainSource:
---------------------
Selectthesourcefromwhichthedomainwillbecreated.Youcancreatethe
domainbyselectingfromtherequiredcomponentsorbyselectingfroma
listofexistingdomaintemplates.
->1|ChooseWeblogicPlatformcomponents
|YoucanchoosetheWeblogiccomponent(s)thatyouwantsupportedin
|yourdomain.
2|Choosecustomtemplate
|Choosethisoptionifyouwanttouseanexistingtemplate.This
|couldbeacustomcreatedtemplateusingtheTemplateBuilder.
EnterindexnumbertoselectOR[Exit][Previous][Next]>1
<--------------------OracleWebLogicConfigurationWizard------------------->
ApplicationTemplateSelection:
-------------------------------
AvailableTemplates
|_____WebLogicServer(Required)x
EnternumberexactlyasitappearsinbracketstotoggleselectionOR[Exit][Previous][Next]>next
§2.3.4配置管理员及密码
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureAdministratorUsernameandPassword:
----------------------------------------------
CreateausertobeassignedtotheAdministratorrole.Thisuseristhe
defaultadministratorusedtostartdevelopmentmodeservers.
|Name|Value|
_|_________________________|_________________________________________|
1|*Username:|weblogic|
2|*Userpassword:||
3|*Confirmuserpassword:||
4|Description:|Thisuseristhedefaultadministrator.|
Useabovevalueorselectanotheroption:
1-Modify"Username"
2-Modify"Userpassword"
3-Modify"Confirmuserpassword"
4-Modify"Description"
EnteroptionnumbertoselectOR[Exit][Previous][Next]>2
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureAdministratorUsernameandPassword:
----------------------------------------------
CreateausertobeassignedtotheAdministratorrole.Thisuseristhe
defaultadministratorusedtostartdevelopmentmodeservers.
"*Userpassword:"=[]
Enternew*Userpassword:OR[Exit][Reset][Accept]>
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureAdministratorUsernameandPassword:
----------------------------------------------
CreateausertobeassignedtotheAdministratorrole.Thisuseristhe
defaultadministratorusedtostartdevelopmentmodeservers.
|Name|Value|
_|_________________________|_________________________________________|
1|*Username:|weblogic|
2|*Userpassword:|***********|
3|*Confirmuserpassword:||
4|Description:|Thisuseristhedefaultadministrator.|
Useabovevalueorselectanotheroption:
1-Modify"Username"
2-Modify"Userpassword"
3-Modify"Confirmuserpassword"
4-Modify"Description"
5-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>3
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureAdministratorUsernameandPassword:
----------------------------------------------
CreateausertobeassignedtotheAdministratorrole.Thisuseristhe
defaultadministratorusedtostartdevelopmentmodeservers.
"*Confirmuserpassword:"=[]
Enternew*Confirmuserpassword:OR[Exit][Reset][Accept]>
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureAdministratorUsernameandPassword:
----------------------------------------------
CreateausertobeassignedtotheAdministratorrole.Thisuseristhe
defaultadministratorusedtostartdevelopmentmodeservers.
|Name|Value|
_|_________________________|_________________________________________|
1|*Username:|weblogic|
2|*Userpassword:|***********|
3|*Confirmuserpassword:|***********|
4|Description:|Thisuseristhedefaultadministrator.|
Useabovevalueorselectanotheroption:
1-Modify"Username"
2-Modify"Userpassword"
3-Modify"Confirmuserpassword"
4-Modify"Description"
5-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>Next
§2.3.5选产品模式+JRockitJDK
<--------------------OracleWebLogicConfigurationWizard------------------->
DomainModeConfiguration:
--------------------------
EnableDevelopmentorProductionModeforthisdomain.
->1|DevelopmentMode
2|ProductionMode
EnterindexnumbertoselectOR[Exit][Previous][Next]>2
<--------------------OracleWebLogicConfigurationWizard------------------->
JavaSDKSelection:
-------------------
->1|JRockitSDK1.6.0_05@/bea/jrockit_160_05
2|SunSDK1.6.0_05@/bea/jdk160_05
3|OtherJavaSDK
EnterindexnumbertoselectOR[Exit][Previous][Next]>1
§2.3.6选择要定制环境与服务设置
<--------------------OracleWebLogicConfigurationWizard------------------->
ChooseConfigurationOption:
----------------------------
*Doyouwanttomodifyanyofthepreconfiguredsettingsordefaultsin
*yourtemplate?
*
*Tokeepthedefaultortemplatesettings,andproceeddirectlytonameand*createyourdomain,leaveNoselected.
1|Yes
->2|No
EnterindexnumbertoselectOR[Exit][Previous][Next]>1
§2.3.7暂不配置安全存储
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureRDBMSSecurityStoreOptions:
---------------------------------------
CreatetheRDBMStablesinyourdatastorepriortobootingyourdomain.The
scriptsforusebyyourDBAareinWebLogicServer'sserver/libdirectory.
ClickNexttokeepthetemplatesettingsorbypassRDBMSoptions.
->1|Idon'twanttochangeanythinghere.
2|Iwanttocreate,change,orremoveRDBMSsupport.
EnterindexnumbertoselectOR[Exit][Previous][Next]>1
§2.3.8配置管理服务器的端口
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|7001|
4|SSLlistenport:|N/A|
5|SSLenabled:|false|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-Modify"Listenaddress"
3-Modify"Listenport"
4-Modify"SSLenabled"
EnteroptionnumbertoselectOR[Exit][Previous][Next]>2
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|7001|
4|SSLlistenport:|N/A|
5|SSLenabled:|false|
Entervaluefor"Listenaddress"OR[Exit][Previous][Next]>192.168.100.30
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|________________|
1|*Name:|AdminServer|
2|Listenaddress:|192.168.100.30|
3|Listenport:|7001|
4|SSLlistenport:|N/A|
5|SSLenabled:|false|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-Modify"Listenaddress"
3-Modify"Listenport"
4-Modify"SSLenabled"
5-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>3
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|7001|
4|SSLlistenport:|N/A|
5|SSLenabled:|false|
Entervaluefor"Listenport"OR[Exit][Previous][Next]>8080
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|8080|
4|SSLlistenport:|N/A|
5|SSLenabled:|false|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-Modify"Listenaddress"
3-Modify"Listenport"
4-Modify"SSLenabled"
EnteroptionnumbertoselectOR[Exit][Previous][Next]>4
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
*Enterindexnumbertomodify"Value"
1|true
->2|false
3|Unspecified
EnterindexnumbertoselectOR[Exit][Reset][Accept]>1
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|8080|
4|SSLlistenport:|7002|
5|SSLenabled:|true|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-Modify"Listenaddress"
3-Modify"Listenport"
4-Modify"SSLlistenport"
5-Modify"SSLenabled"
6-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>4
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|8080|
4|SSLlistenport:|7002|
5|SSLenabled:|true|
Entervaluefor"SSLlistenport"OR[Exit][Previous][Next]>8081
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfiguretheAdministrationServer:
------------------------------------
Enteradminstrationserverconfigurations.EachWebLogicServerdomainmust
haveoneAdministrationServer.TheAdministrationServerhoststhe
AdministrationConsolewhichisusedtoperformadministrativetasks.
|Name|Value|
_|__________________|_____________________|
1|*Name:|AdminServer|
2|Listenaddress:|AllLocalAddresses|
3|Listenport:|8080|
4|SSLlistenport:|8081|
5|SSLenabled:|true|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-Modify"Listenaddress"
3-Modify"Listenport"
4-Modify"SSLlistenport"
5-Modify"SSLenabled"
6-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>next
§2.3.9暂不添加受管的服务器
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureManagedServers:
--------------------------
AddordeleteconfigurationinformationforManagedServers.Atypical
productionenvironmenthasoneormoreManagedServers.EachManagedServer
isaninstanceofWebLogicServerusedtohostenterpriseapplications.
|Name*|Listenaddress|Listenport|SSLlistenport|SSLenabled|
_|_______|________________|_____________|_________________|_____________|
EnternameforanewOR[Exit][Previous][Next]>next
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureClusters:
-------------------
Addordeleteconfigurationinformationforclusters.Aclustercontains
multipleWebLogicServerinstancesthatrunsimultaneouslyandwork
togethertoprovideincreasedscalabilityandreliability.Acluster
appearstobeasingleWebLogicServerinstancetoclients.
|Name*|Multicastaddress|Multicastport|Clusteraddress|
_|_______|___________________|________________|_________________|
12下一页GO
EnternameforanewClusterOR[Exit][Previous][Next]>next
§2.3.10暂不添加受管的主机
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureMachines:
-------------------
Addordeletemachines.AmachinehostsoneormoreWebLogicServer
instances.TheAdminServerandNodeManagerusethismachinedefinitionto
startremoteservers.
|Name*|Nodemanagerlistenaddress|Nodemanagerlistenport|
_|_______|_____________________________|__________________________|
EnternameforanewMachineOR[Exit][Previous][Next]>next
<--------------------OracleWebLogicConfigurationWizard------------------->
ConfigureUnixMachines:
------------------------
Addordeletemachines.AmachinehostsoneormoreWebLogicServer
instances.TheAdminServerandNodeManagerusethismachinedefinitionto
startremoteservers.
|Name|
_|______|
EnternameforanewUnixMachineOR[Exit][Previous][Next]>next
§2.3.11指定域名
<--------------------OracleWebLogicConfigurationWizard------------------->
Selectthetargetdomaindirectoryforthisdomain:
---------------------------------------------------
"TargetLocation"=[Enternewvalueorusedefault
"/bea/user_projects/domains"]
EnternewTargetLocationOR[Exit][Previous][Next]>next
<--------------------OracleWebLogicConfigurationWizard------------------->
EditDomainInformation:
------------------------
|Name|Value|
_|________|_____________|
1|*Name:|base_domain|
Entervaluefor"Name"OR[Exit][Previous][Next]>weblogic
<--------------------OracleWebLogicConfigurationWizard------------------->
EditDomainInformation:
------------------------
|Name|Value|
_|________|__________|
1|*Name:|weblogic|
Useabovevalueorselectanotheroption:
1-Modify"Name"
2-DiscardChanges
EnteroptionnumbertoselectOR[Exit][Previous][Next]>next
§2.3.12创建域
<--------------------OracleWebLogicConfigurationWizard------------------->
CreatingDomain...
0%25%50%75%100%
[------------|------------|------------|------------]
[***************************************************]
****DomainCreatedSuccessfully!****
§2.4创建受管服务器的域
参考《WebLogic10.3forWin32》-《创建受管服务器的Domain和Server》。
§2.5配置和启动节点管理器
§2.5.1直接运行
$cd/bea/wlserver_10.3/server/bin
$./startNodeManager.sh
§2.5.2配置节点管理器作为Daemon
在/etc/rc.d/rc3.d添加一个启动节点管理器的文件。该文件核心内容是启动节点管理器,即:
su-weblogic-c"nohup/bea/wlserver_10.3/server/bin/startNodeManager&"
这样,Linux启动后时自动启动节点管理器。
Runlevel
ThetermrunlevelreferstoamodeofoperationinoneofthecomputeroperatingsystemsthatimplementUnixSystemV-styleinitialization.Conventionally,sevenrunlevelsexist,numberedfromzerotosix;thoughuptoten,fromzerotonine,maybeused.Sissometimesusedasasynonymforoneofthelevels.
Instandardpractice,whenacomputerentersrunlevelzero,ithalts,andwhenitentersrunlevelsix,itreboots.Theintermediaterunlevels(1-5)differintermsofwhichdrivesaremounted,andwhichnetworkservicesarestarted.Lowerrunlevelsareusefulformaintenanceoremergencyrepairs,sincetheyusuallydon'tofferanynetworkservicesatall.Theparticulardetailsofrunlevelconfigurationdifferwidelyamongoperatingsystems,andslightlyamongsystemadministrators.
Therunlevelsystemreplacedthetraditional/etc/rcscriptusedinVersion7Unix.
?Standardrunlevels
Standardrunlevels
IDNameDescription
0HaltShutsdownthesystem.
SSingle-UserModeDoesnotconfigurenetworkinterfacesorstartdaemons.[1]
6RebootRebootsthesystem.
1=Almostallsystemsuserunlevel1forthispurpose.Thismodeisintendedtoprovideasafeenvironmenttoperformsystemmaintenance.Originallythisrunlevelprovidedasingleterminal(console)interfacerunningarootloginshell.Theincreasingtrendtowardsphysicalaccesstothecomputerduringthebootprocesshasledtochangesinthisarea.
?Linux
TheLinuxoperatingsystemcanmakeuseofrunlevelsthroughtheprogramsofthesysvinitproject.AftertheLinuxkernelhasbooted,theinitprogramreadsthe/etc/inittabfiletodeterminethebehaviorforeachrunlevel.Unlesstheuserspecifiesanothervalueasakernelbootparameter,thesystemwillattempttoenter(start)thedefaultrunlevel.
TypicalLinuxrunlevels
MostLinuxdistributions,inadditiontothestandardrunlevels,definethefollowingadditionalrunlevels:
TypicalLinuxrunlevels
IDNameDescription
1Single-UserModeDoesnot:configurenetworkinterfaces,startdaemons,orallownon-rootlogins.[2]
2Multi-UserModeDoesnot:configurenetworkinterfacesorstartdaemons.[3]
3Multi-UserModewithNetworkingStartsthesystemnormally.[4]
4Unused/Userdefinedforspecialpurposes
5X11Asrunlevel3+displaymanager.
^=Theadditionalbehaviorofthisrunlevelvariesgreatly.Alldistributionsprovideatleastonevirtualterminal.Somedistributionsstartaloginshellasthesuperuser;somerequirecorrectlyenteringthesuperuser'spasswordfirst;othersprovidealoginprompt,allowinganyuseraccess.
^=Insomecases,runlevels2and3functionidentically;offeringaMulti-UserModewithNetworking.
?DebianLinux
Debian,aswellasmostofthedistributionsbasedonit,likeearlyUbuntu,doesnotmakeanydistinctionbetweenrunlevels2to5.
DebianLinuxrunlevels
IDDescription
0Halt
1Singleusermode
2-5Fullmulti-userwithconsoleloginsanddisplaymanagerifinstalled
6Reboot
?sidux
sidux,aDebianSidbaseddistribution(current20081110).Thisisthelistforsiduxoperatingsystemrunlevels,pleasenotethatitdoesdifferfromdebianstablerunlevels.
siduxLinuxrunlevels
IDDescription
0init0powersoffthePC,halt
1init1singleusermode
2init2Multi-Usermodewithoutnetwork,and/ortostopornotenterX,
3init3Multi-UsermodewithnetworknotrunningtheXWindowSystem,and/ortostopornotenterX
4init4tostopornotenterX
5init5Multi-UsermodewithnetworkrunningtheXWindowSystem,and/ortostartX
6init6Reboot
?Ubuntu
Ubuntu6.10(EdgyEft)andlatercontainUpstartasareplacementforthetraditionalinit-process,buttheystillusethetraditionalinitscriptsandUpstart'sSysV-rccompatibilitytoolstostartmostservicesandemulaterunlevels.
?RedHatLinuxandFedora
RedHataswellasmostofitsderivatives(suchasCentOS)usesrunlevelslikethis:
RedHatLinux/Fedorarunlevels
IDDescription
0Halt
1Singleuser
2Fullmulti-userwithnetworkenabledbutmostnetworkservicesdisabled
3Fullmulti-user,consoleloginsonly
4Notused/Userdefinable
5Fullmulti-user,withdisplaymanageraswellasconsolelogins
6Reboot
Whichservicesarestartedinwhichrunlevelscanbemanagedwiththechkconfigtool,whichkeepsitsconfigurationsettingsunder/etc/rc.d/./sbin/chkconfig--listlistsalltheservicescontrolledbychkconfigandwhethertheyareon/offforeachrunlevel.SettingaserviceAcontrolledbychkconfig,forlevelsX,YandZisassimpleas/sbin/chkconfig--levelXYZA
?SUSELinux
SUSEusesasimilarsetuptoRedHat:
SUSELinuxrunlevels
IDDescription
0Halt
1Single-user
2Fullmulti-userwithnonetworking
3Fullmulti-userwithoutdisplaymanager
4Notused/Userdefinable
5Fullmulti-userwithdisplaymanager
6Reboot
TheservicesthatrununderaspecificrunlevelcanbemodifiedwithYaST|SystemServices(runlevel)orwithchkconfigcommandliketheRedHatbaseddistributions.
?SlackwareLinux
SlackwareLinuxusesrunlevel1formaintenance,asonotherLinuxdistributions;runlevels2,3and5identicallyconfiguredforaconsole(withallservicesactive);andrunlevel4addstheXWindowSystem.
SlackwareLinuxrunlevels
IDDescription
0Halt
1Single-user
2Fullmulti-userNOdisplaymanager
3Fullmulti-userNOdisplaymanager
4Fullmulti-userwithdisplaymanager
5Notused/Userdefinable
6Reboot
?GentooLinux
GentooLinuxrunlevels
IDDescription
0Halt
1Single-user
2Multi-user,nonetwork
3Fullmulti-userwithdisplaymanager
4Aliasedforrunlevel3(Fullmulti-userwithdisplaymanager)
6Reboot
?SystemVReleases3and4
SystemVrunlevels
IDDescription
0Shutdownsystem,power-offifhardwaresupportsit(onlyavailablefromtheconsole)
1Single-usermode,allfilesystemsunmountedbutroot,allprocessesexceptconsoleprocesseskilled
2Multi-usermode
3Multi-usermodewithRFS(andNFSinrelease4)filesystemsexported
4Multi-user,user-defined
5Halttheoperatingsystem,gotofirmware
6Haltthesystem,reboottodefaultrunlevel
s,SIdenticalto1(Single-usermode,allfilesystemsunmountedbutroot,allprocessesexceptconsoleprocesseskilled)exceptcurrentterminalactsasthesystemconsole
?Solaris
Solarisrunlevels
IDDescription
0Operatingsystemhalted;(SPARConly)droptoOpenBootprompt
SSingle-userwithonlyrootfilesystemmounted(asread-only)
1Single-usermodewithalllocalfilesystemsmounted(read-write)
2Multi-userwithmostdaemonsstarted.
3multi-user,identicalto2(runlevel3runsboth/sbin/rc2and/sbin/rc3),withfilesystemsexported,plussomeothernetworkservicesstarted.
4Alternativemulti-user,user-defined
5Shutdown,power-offifhardwaresupportsit
6Reboot
?HP-UX
HP-UXrunlevels
IDDescription
0Systemhalted
SSingle-user,bootedtosystemconsoleonly,withonlyrootfilesystemmounted(asread-only)
sSingleuser,identicaltoSexceptthecurrentterminalactsasthesystemconsole
1Single-userwithlocalfilesystemsmounted(read-write)
2Multi-userwithmostdaemonsstartedandCommonDesktopEnvironmentlaunched
3Multi-user,nearlyidenticaltorunlevel2withNFSexported
4Multi-userwithVUEstartedinsteadofCDE
5,6user-defined
?AIX
AIXdoesnotfollowtheSystemVR4(SVR4)runlevelspecification,withrunlevelsfrom0to9available,aswellasfromatoc.0and1arereserved,2isthedefaultnormalmulti-usermodeandrunlevelsfrom3to9arefreetobedefinedbytheadministrator.Runlevelsfromatocallowtheexecutionofprocessesinthatrunlevelwithoutkillingprocessesstartedinanother.
AIXrunlevels
IDNameDescription
0reserved
1reserved
2Normalmultiusermodedefaultmode
第三章配置和管理
§3.1配置单向SSL认证
WebLogic启用SSL连接需部署服务器证书、CA证书链、信任证书链。WebLogic安装完成后,在\wlserver_10.3\server\lib目录下会自动创建DemoIdentity.jks(密码DemoIdentityKeyStorePassPhrase)、DemoTrust.jks(密码DemoTrustKeyStorePassPhrase)、cacerts三个文件,分别存放服务器证书、信任证书和CA证书链。前两个文件是非安全的,只能用于测试,不能用于生产;后一个文件是Java的默认cacerts文件。对生产系统,必须部署独有的服务器证书、信任证书和CA证书链。本节描述部署生产系统Server证书的操作过程。
§3.1.1创建Server存储库
§3.1.1.1创建Server私钥
使用JDK自带的keytool工具创建Server私钥。命令如下:
keytool-genkey-aliasAdminServer-keyalgRSA-keysize1024-keystoreAdminServer.jks
该命令会询问存储库的密码和证书信息以及私钥保护密码。大致内容如下:
输入keystore密码:
再次输入新密码:
您的名字与姓氏是什么?
[Unknown]:AdminServer
您的组织单位名称是什么?
[Unknown]:Enterprise
您的组织名称是什么?
[Unknown]:WJZhiFu
您所在的城市或区域名称是什么?
[Unknown]:BeiJing
您所在的州或省份名称是什么?
[Unknown]:BJ
该单位的两字母国家代码是什么
[Unknown]:CN
CN=AdminServer,OU=Enterprice,O=WJZhiFu,L=BeiJing,ST=BJ,C=CN正确吗?
[否]:y
输入的主密码
(如果和keystore密码相同,按回车):
再次输入新密码:
填写时应注意:
?CN域应和Server域名一致,不应使用Server的ip地址;
?OU域应按颁发的证书类型划分为多个单元;如:Server、Enterprise、Person,可以使用编码;
?O域应为公司的英文名称;
?L域应为城市的英文名称;
?ST域应为省的英文名称;
?C域应为国家代码CN;
?存储库的密码和私钥密码应不同。
§3.1.1.2生成Server的证书申请文件
keytool-certreq-aliasAdminServer-sigalg"MD5withRSA"-fileAdminServer.csr-keystoreAdminServer.jks
§3.1.1.3认证证书申请
提交上步生成的AdminServer.csr证书申请文件提交给证书颁发机构进行认证。本例中使用openssl认证该证书申请,命令如下:
opensslca-inAdminServer.csr-outAdminServer.crt-configopenssl.cfg
§3.1.1.4导入证书文件
从CA获取到认证的证书文件后,使用keytool将该证书文件导入到存储库。Keytool导入证书时,会自动检查证书的合法性,确认该证书是信任的CA签署的。默认情况下,我们的CA证书没有包含在Java信任的CA清单中,因此先需要将我们的CA添加到Java的信任CA清单中。命令如下:
keytool-import-fileca.crt-keystoreD:\bea\jdk160_05\jre\lib\security\cacerts
注意:请确认您使用的keytool的JDK位置,Java信任CA清单存储库即为该JDK的jre/lib/security/cacerts文件。
添加CA证书完成后,将该文件复制到WebLogic的server/lib目录,覆盖当前的cacerts文件,然后执行如下命令导入Server的证书文件。
keytool-import-trustcacerts-aliasAdminServer-fileAdminServer.crt-keystoreAdminServer.jks
导入完成后,复制AdminServer.jks存储库到WebLogic的server/lib。至此,Server证书存储库准备就绪。
§3.1.2创建CA证书存储库
从CA处下载CA证书文件。CA证书文件一般有两种形式,一是单独的CA证书文件,二是.p7b证书链文件。
§3.1.2.1导入独立的CA证书文件
keytool可以导入DER格式(二进制)和PEM格式(BASE64编码格式,-----BEGINCERTIFICATE-----打头,-----ENDCERTIFICATE-----结束)。命令如下:
keytool-importcert-fileca.crt-trustcacerts-alias"WJZHIFUCA"-
keystoreWJZhiFuCA.jks
导入完成后,复制CA证书存储库到WebLogic的server/lib。
§3.1.2.2导入p7b的CA证书文件
P7b文件不能直接导入到存储库,应使用openssl工具将p7b文件转换为每证书一个der文件,然后参考上节导入各个文件。
转换p7b文件的命令如下:
opensslpkcs7-inca.p7b-outca.txt-outformPEM-informDEA-print_certs
编辑ca.txt文件,将每个-----BEGINCERTIFICATE-----打头,-----ENDCERTIFICATE-----结束的证书内容分别复制到一个文件中,然后顺序导入各个文件。导入完成后,导入完成后,复制CA证书存储库到WebLogic的server/lib。
§3.1.3部署证书文件
(1)启动WebLogic服务器,使用管理员登录到控制台;
(2)编辑Environment?Server的配置。本例编辑AdminServer;
(3)编辑Server的Keystore属性;
?Keystore选择为:CustomIdentityandCustomTrust;
?CustomIdentityKeystore:添加Server证书存储库全路径名;
?CustomIdentityKeystoreType:JKS
?填写该Server存储库的密码;
?CustomTrustKeystore:填写CA证书存储库的全路径名;
?CustomTrustKeystoreType:JKS
?填写该CA存储库的密码;
?Save
(4)编辑Server的SSL配置;
?IdentityandTrustLocations:KeyStores
?PrivateKeyAlias:填写为Server存储库私钥的别名,即AdminServer;
?填写Server存储库私钥的密码;
?Save。
至此,单向认证(客户端认证服务器)的SSL配置完成。
§3.2配置双向SSL认证
比照WebLogic服务器单向SSL认证的配置,完成服务器端的SSL配置,然后编辑Server?SSL?Advance配置。
?TwoWayClientCert:ClientCertsRequestedandEnforced;
?InboundCertificateValidation:BuiltinSSLValidationAndCertPathValidators;
?OutboundCertificateValidation:BuiltinSSLValidationAndCertPathValidators;
?Save
启用Server双向认证后,如果客户端没有相应的证书,则无法连接服务器。
§3.3WebLogic集群配置
本集群由三台计算机组成,AdminServer、Server1、Server2。AdminServer负责集群管理与部署,Server1和Server2组成集群提供对外服务。
§3.3.1准备证书文件
为AdminServer、Server1、Server2、Server1NodeManager、Server2NodeManager各准备一张Server证书,并参考“WebLogicServer双向SSL认证的配置”节,将这些证书和CA证书制作成如下文件:
文件名证书组成说明
ServerAdmin.jksAdminServer私钥
AdminServer证书CN=AdminServer
Server1.jksServer1私钥
Server1证书CN=server1.wjzhifu.com
Machine1.jksMachine1节点管理器私钥
Machine1节点管理器证书CN=machine1
Server2.jksServer2私钥
Server2证书
Server2节点私钥
Server2节点证书CN=server2.wjzhifu.com
Machine2.jksMachine2节点管理器私钥
Machine2节点管理器证书CN=machine2
ServerCA.jksCA证书CN=CA
注意:各证书的私钥密码应各不相同以提高安全性。
创建上述文件完成后,将ServerAdmin+ServerCA复制到管理服务器的wlserver_10.3\server\lib目录,Server1+Machine1+ServerCA复制到Server1的wlserver_10.3\server\lib目录,Server2+Machine2+ServerCA复制到Server2的wlserver_10.3\server\lib目录。
§3.3.2创建管理服务器和受管服务器的域
参考“创建管理服务器的域”和“创建受管服务器的域”章节,分别为管理服务器和每个Server创建域,并为AdminServer配置双向的SSL。创建域时应注意各机器域名、管理账号、密码均应相同。
创建各服务器的域完成后,启动管理服务器,并按下列步骤添加机器、Server、配置集群。
§3.3.2.1启动管理服务器
§3.3.2.2启动管理员终端,并登录
§3.3.2.3添加受管计算机
(1)创建计算机;
(2)编辑新建计算机的NodeManager属性;
