Configuring an appliance reverse proxy instance from an external machine

Edit online

Use the isamcfg tool to configure an appliance reverse proxy instance from a remote machine.

Before you begin

Your appliance server and Advanced Access Control servers must be listening for connections on the appropriate management IP addresses and port numbers.

To use the isamcfg tool, you must meet the following conditions:

  • Obtain an IBM® JRE v6.0 Update 10 or later.
  • At least one reverse proxy instance exists on the appliance.
  • Configure the com.ibm.security.cmskeystore.CMSProvider in the java.security file, which is in $JAVA_HOME/lib/security, of the IBM® JRE. The isamcfg tool uses the ikeycmd command to manipulate key database files. This requires the JRE to have the CMS provider that is configured in the java.security file.
  • Ensure that the ikeycmd tool in the $JAVA_HOME/bin is on the system path.
  • The reverse proxy instance that you are configuring cannot be on an appliance that is a restricted node in a cluster. See Configuring an appliance reverse proxy instance from the appliance.

About this task

Use this procedure if you want to configure an appliance that is on a machine that is separate from the Advanced Access Control appliance. Once you download the tool from the Advanced Access Control appliance, you can then use the command shell to configure an existing remote appliance.

The appliance you configure can be one of the following product versions:

  • Verify Identity Access 9.*
  • Verify Identity Access for Web 8.*
  • Security Web Gateway 7.*

Procedure

  1. Download the isamcfg.jar from the IBM Verify Identity Access appliance with Advanced Access Control activated.
  2. From the command line, type: 
    java -jar isamcfg -action config -cfgurl http://isam-appliance-host-url/

    The isam-appliance-host-url/ refers to the URL of the activated Verify Identity Access appliance base.

  3. Use the isamcfg tool to complete the configuration. For configuration details, see isamcfg Verify Identity Access appliance configuration worksheet.

Results

When you complete the configuration, a summary screen displays indicating that the configuration is complete.