How to rename an Identity Manager server or hostname?
Article ID: 52400
Updated On:
Products
Issue/Introduction
Description
The purpose of this document is to explain the steps needed in order for IM to run properly after changing the server name or after switching hosts.
This document refers to changing the server name. If the IP address was used in the configuration files, it too might need to be changed.
Solution
Changing the Identity Manager Server Name
Environment
This example assumes the following system configuration is installed (your configuration may vary):
Application Server: Jboss SiteMinder Policy Server User Interface on IIS 6.0 WebAgent (if installed) on IIS 6.0
Procedure:
Changing the WebAgent or Servet Filter Agent smhost configuration files
- Open smhost.conf file located in:
For WebAgent: <install_dir>\netegrity\webagent\config
For Servlet: <install_dir>\\CA\eTrust SiteMinder\agentframework\config - Change the server name in "policy server" field.
- Run iisreset (or restart Apache Web Server, SunOne Web Server, etc.)
Modify the Agent objects (if SiteMinder server name was changed)
- open SiteMinder UI
- go to System tab
- choose Agents
- open the agent object properties (for sample agent: imsagent)
- change the server name in "IP address or host name" field to the SiteMinder server name
- Modify the Host Configuration object
- open SiteMinder UI
- go to System tab
- choose Host Conf objects
- open the host conf object (for servlet agent : <your-machine> - hostConfig)
- change the server name in "PolicyServer" attribute to the SiteMinder server name
- Modify the file workers.properties, located in Plugin folder (for example: c:\ISAPI).
- Change the field worker.jboss.host to the IM server name
- Verify correct appserver(s) IP address(es) and port(s) are specified iisproxy.ini.
- Verify the correct application server is specified in the httpd.conf file, located in APACHE_HOME\conf\httpd.conf
- Modify the Policy Server name in IM ear:
- go to <app server deployment folder>\IdentityMinder.ear\policyserver_rar\META-INF
- edit ra.xml
- change the server name in ConnectionURL property to the SiteMinder server name
- Modify the URL in the Identity Manager Environment:
- go to IM management console (for example: http://<server_name>/idmmanage)
- select Environments
- select <your env> (for sample environment select neteauto)
- change the server name in the field "Base Url" to the IM server name
- Modify Password Policy re-direct URL:
- open SiteMinder UI
- go to System tab
- go to Password Policies
- open the password policy matching your environment (for sample environment: "neteauto password policy")
- go to General tab
- change the server name in "redirection URL" field to the IM server name
Modify the Application Server Plugin
JBOSS - Modify the Jakarta Plugin for IIS
WebLogic - Modify WLS Plugin on IIS
WebLogic - Modify WLS plugin on Apache
Modify the server name in Identity Manager
Restart JBoss (or WebLogic) server.
Configuration change testing:
Login to the environment and create a new user.Run the public task Forgotten Password. Try to login to the environment with the temporary password.
Then change the password, and make sure you're redirected to the environment.
Modify the server name in eTrust Admin
If provisioning is configured in the IM environment, the IM server name should be modified in the IM extensions for eTrust Admin:
- open eTrust Admin UI
- go to Namespaces
- change the object type to 'common program exit" and press the search button.
- open IMeTACallbackExit properties
- go to Authentication tab
- change IM server name in the "other ID" field.
Test this change by creating a user in CA Admin and making sure it was created in IM.
Environment
Component: IDMGR
Feedback
