How to install OpenAM Policy agent in websphere 8.5.

5
This document assumes, that user is selecting Oracle JDK and not IBM JDK for
installing OpenAM agent on Websphere. If the user selects IBM JDK, then there will
be some extra steps as well.
OpenAM agent can be downloaded from
https://backstage.forgerock.com/downloads/enterprise/openam/j2eeagents/stable/3.
3.0/WebSphere-v7-8.5-Agent-3.3.0.zip
For installation, either refer http://openam.forgerock.org/doc/webhelp/jee-usersguide/install-websphere-agent.html or http://docs.forgerock.org/en/openampa/3.1.0-Xpress/agent-install-guide/index/chap-websphere.html or follow the steps
as mentioned below
PreRequisites on machine where OpenAM policy agent is to be setup
1) WAS instance should not be running, where user has planned to setup and
deploy policy agent. If it is running, it can be stopped by clicking Stop the
server as shown below

2) Write Access needed for these folders and make sure that these folders are
not in readonly mode. If this is so, then this can be due to person being
installing the WAS 8.5.5 is not having admin level privileges.

a. C:\Program Files (x86)\IBM\WebSphere\AppServer\lib\ext

b. C:\Program Files
(x86)\IBM\WebSphere\AppServer\profiles\AppSrv01\config\cells\engage
4-winNode01Cell\nodes\engage4-winNode01\servers\server1
c. C:\Program Files (x86)\IBM\WebSphere\AppServer
3) From command prompt, goto the downloaded websphere_v61_agent. Its
location is somewhat like this C:\PBBI_CCM\EngageOne\server\OpenAM_Agent
C:\PBBI_CCM\EngageOne\server\OpenAM_Agent \bin>agentadmin.bat --install
--acceptLicense
************************************************************************
Welcome to the OpenAM Policy Agent for IBM WebSphere Application Server
6.1
************************************************************************
a) Enter the fully qualified path to the configuration directory of the Server
Instance for the WebSphere node.[ ? : Help, ! : Exit ]
i. Enter the Instance Config Directory [C:\Program
Files\IBM\WebSphere\AppServer\profiles\AppSrv01\config\cells\<
hostname>Node01Cell\nodes\<hostname>Node01\servers\serv
er1]: C:\Program Files
(x86)\IBM\WebSphere\AppServer\profiles\AppSrv01\config\cells\e
ngage4-winNode01Cell\nodes\engage4winNode01\servers\server1
b) Enter the Server Instance name. [ ? : Help, < : Back, ! : Exit ]
i. Enter the Server Instance name [server1]: server1
c) Enter the WebSphere Install Root directory.[ ? : Help, < : Back, ! : Exit ]
i. Enter the WebSphere Install Root directory
[C:\ProgramFiles\IBM\WebSphere\AppServer]: C:\Program
Files (x86)\IBM\WebSphere\AppServer
d) Enter the URL where the OpenAM server is running. Please include the
deployment URI also as shown below:
(http://openam.sample.com:58080/openam) [ ? : Help, < : Back, ! : Exit ]
i. OpenAM server URL: http://tro-eocs-openamstable.eo.local:8080/OpenAM
e) Enter the Agent URL. Please include the deployment URI also as shown
below: (http://agent1.sample.com:1234/agentapp) [ ? : Help, < : Back, ! :
Exit ]
i. Agent URL: http://openam.eo.local:9080/agentapp
f) Enter the Agent profile name [ ? : Help, < : Back, ! : Exit ]
i. Enter the Agent Profile name: j2eeAgent
g) Enter the path to a file that contains the password to be used for
identifying the Agent. [ ? : Help, < : Back, ! : Exit ]
i. Enter the path to the password file: c:\password.txt

Verify your settings above and decide from the choices below.
1. Continue with Installation
2. Back to the last interaction
3. Start Over
4. Exit
Please make your selection [1]: 1
4) Make sure the Installer completes successfully
Install log file location:
C:/websphere_v61_agent/installer-logs/audit/install.log
Thank you for using OpenAM Policy Agent
5) Start the Websphere 8.5.5 instance

6) Open the WAS console by accessing https://engage4win.eo.local:9043/ibm/console/login.do?action=secure

7) On left side, expand Applications, then click New Application and click
New Enterprise Application
8) Choose agentapp.war in Local File frame. Location of this file is
C:\PBBI_CCM\EngageOne\server\OpenAM_Agent\etc\agentapp.war. Click Next
9) Make sure the Fast Path radio button is selected. Click Next
10)
On the next screen on Step 1 screen, make sure that Allow EJB reference
targets to resolve automatically check box is checked. Click Next
11)
On Step 2, click Next by selecting defaults.

12)
On Step 3, click Next by selecting defaults.
13)
On Step 4, add Context Root as /agentapp and click Next
14)
Finally click Finish on Step 5, after reviewing the entire summary
15) When the deployment finishes, make sure to click the link that says
Save directly to the master configuration.
16)
On left side, expand Applications, then expand Application Types,
then click Websphere Enterprise Applications
17)
Select agentapp_war checkbox and click Start button above
18)
Try accessing the URL http://engage4-win.eo.local:9080/agentapp/ and
it should redirect to OpenAM server for authenticating