Installing IBM Security Guardium Key Lifecycle Manager on Linux systems as a non-root user
You can install IBM Security Guardium Key Lifecycle Manager as a non-root user on Linux® operating system. Non-root installation of IBM Security Guardium Key Lifecycle Manager installs both Db2 and WebSphere Application Server Liberty as a non-root user.
Before you begin
- Configure WebSphere Liberty, and other ports to be greater than 1024. For example, 1180. You cannot use privileged ports (ports < 1024).
- Ensure that the non-root user belongs to a non-root primary group. The non-root user must have a primary group other than guests, admins, users, and local.
- See Non-root Db2® installation.
About this task
Before you install IBM Security Guardium Key Lifecycle Manager on Linux systems as a non-root user, review the best practices information in the Non-root installation of IBM Security Guardium Key Lifecycle Manager on Linux systems topic.
Procedure
What to do next
- In the SKLM_HOME/config/SKLMConfig.properties file,
update the TLS port number to be greater than 1024 by using the graphical user interface or the REST
interface. For
example,
TransportListener.ssl.port=1441
- Restart the IBM Security Guardium Key Lifecycle Manager server.
After the installation, you must log in as a non-root user to start or stop IBM Security Guardium Key Lifecycle Manager server and Db2 server.