7.1. Before You Install

You need to setup your container and OpenAM before installing the web agent.

  • Install the server.

  • Create and delegating an agent profile.

  • Download and prepare the policy agent for installation.

Procedure 7.1. Installing the server

  1. Make sure OpenAM is installed and running.

  2. Contact OpenAM from the system running the policy agent.

  3. Install the Varnish HTTP Accelerator.

Procedure 7.2. Creating a Policy Agent Profile

To create a new web agent profile, you need a name and password, and the URLs to OpenAM and the application to protect. The agent requires a profile so that it can connect to and communicate with OpenAM.

  1. In the OpenAM console, browse to Access Control > Realm Name> Agents > Web, and then click the New... button in the Agent table.

  2. Complete the web form.

    Diagram of web policy agent use

    [D]

    Use the following information to help you with the form.

    Name

    The name for the agent profile used when you install the agent

    Password

    Password the agent uses to authenticate to OpenAM

    Configuration

    Centralized configurations are stored in the OpenAM configuration store. You can manage the centralized configuration through the OpenAM console. Local configurations are stored in a file alongside the agent.

    Server URL

    The full URL to an OpenAM instance, or if OpenAM is deployed in a site configuration (behind a load balancer) then the site URL

    In centralized configuration mode, the Server URL is used to populate the agent profile for services such as Login, Logout, Naming, and Cross Domain SSO.

    Agent URL

    The web server URL that the agent protects

    In centralized configuration mode, the Agent URL is used to populate the Agent Profile for services such as notifications.

  3. After creating the agent profile, you can click the link to the new profile to adjust and export the configuration.

Procedure 7.3. To Create the Password File for Customized Installations

  1. Create a text file containing only the password.

    $ echo password > /tmp/pwd.txt

  2. Protect the password file you create as appropriate for your operating system. 

    $ chmod 400 /tmp/pwd.txt

Procedure 7.4. Preparing the Agent for Installation

  1. Go to Obtaining OpenAM Software to determine which version of the agent to download and download the agent.

  2. Verify the checksum of the file you download against the checksum posted on the download page.

  3. Unzip the file in the directory where you plan to install the policy agent. The agent you install stores its configuration and logs under this directory.