Installing PowerSC on IBM i systems

The IBM® i package includes the Security and Compliance Automation and the PowerSC GUI agent features of PowerSC.

You may find IBM i quick start to be useful if you are primarily an IBM i administrator and are not deeply familiar with AIX or Linux system administration.

The PowerSC QIBMPSC.SAVF save file must be installed on IBM i systems that require the Security and Compliance Automation and the PowerSC GUI agent features.

To install PowerSC on IBM i systems, complete the following steps:

  1. Ensure that your account has sufficient privileges to perform the installation.
  2. Create the /QSYS.LIB/QGPL.LIB/QIBMPSC.SAVF save file on the IBM i system.
    CRTSAVF FILE(QGPL/QIBMPSC)

    The create save file (CRTSAVF) command creates a save file that can be used with save and restore commands to store data. The QSYS.LIB library supports stream input and output operations to user space objects.

  3. Use a method of your choice to copy the QIBMPSC.SAVF save file from the distribution into the /QSYS.LIB/QGPL.LIB/QIBMPSC.SAVF save file you created. For example:
    CPY OBJ(’distribution-location/QIBMPSC.SAVF’) TOOBJ(’/QSYS.lib/QGPL.lib/QIBMPSC.file’) 
    TOCODEPAGE(*CALC) REPLACE(*YES)
    If you use FTP to copy the save file, consider the following guidelines:
    • Copy the save file in binary mode.
    • Specify site NAMEFMT 1. NAMEFMT 1 must be used to work with all IBM i file systems other than the library file system.
    • Specify site LISTFMT 1. The FTP server returns information for the LIST subcommand in the UNIX style list format. The name of the file is the last item of each line returned.
  4. Accept the license agreement:
    RSTLICPGM LICPGM(0G060PS) DEV(*SAVF) SAVF(QGPL/QIBMPSC)
    The PowerSC GUI agent is started automatically.
  5. Copy the endpoint truststore /etc/security/powersc/uiServer/endpointTruststore.jks file to the /etc/security/powersc/uiAgent/endpointTruststore.jks file on each IBM i endpoint. This step is described in detail in Distributing the truststore security certificate to endpoints.