Manuals / IBM / Home Audio / Speaker System

IBM SG24-7645-00 Internet and Firewall Security, Secure Socket Layer SSL Overview, 7645install.fm

Models: SG24-7645-00

1 152

Download 152 pages 51.51 Kb

Page 109

Draft Document for Review May 23, 2008 10:14 am

7645install.fm

5.6.12 Internet and Firewall Security

For security purposes Maximo can also be configured to take advantage of the more secure protocol, Hypertext Transfer Protocol Secure (HTTPS). If Maximo clients exist outside the corporate network, you can add a firewall or other security measure.

Firewalls are configured to allow communication over HTTP (typically Port 80) or HTTPS (typically Port 443). The following information is generic and does not reflect any particular firewall brand.

Secure Socket Layer (SSL) Overview

Secure socket layer provides secure connections over a network connection by doing the following:

–allowing two applications to authenticate each other’s identity

–encrypting the data exchanged between the two applications

Authentication allows a server and optionally a client to verify the identity of the application on the other end of a network connection. Encryption makes data transmitted over the network intelligible only to the intended recipient. IBM WebSphere and BEA WebLogic support SSL, and IBM Corporation has certified the SSL implementation with the Maximo-WebSphere and Maximo-BEA WebLogic integration.

Configuring Secure Socket Layer To implement SSL

A Web server must have an associated certificate for each external interface (IP address) that accepts secure connections. After you install the certificate on the Web server, replacing the .http with .https encrypts a session between the browser and server.

For example:

http://MaximoAppServer will be entered as https://MaximoApp Server

The standard port for HTTPS is 443.

If a Proxy server or Firewall controls network traffic, this port and protocol must be opened. SSL comes with some additional overhead for encryption and decryption of data. Encryption and decryption can affect performance.

Internet Explorer Settings

It is advisable that you enable your browser to automatically check for newer versions of stored pages when you login to Maximo, to ensure this perform the following steps:

Chapter 5. Installation

95

Image 109

IBM SG24-7645-00 manual Internet and Firewall Security, Secure Socket Layer SSL Overview, Internet Explorer Settings

Contents

Learn about configuring the environment ibm.com/redbooksMaximo Asset Management Essentials Implementer’s GuidePage 7645edno.fm International Technical Support OrganizationMaximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10 14 amThis document created or updated on May 23, First Edition May7645edno.fm 7645TOC.fm ContentsivMaximo Essentials V7.1 - Implementer’s Guide 7645TOC.fm7645TOC.fm ContentsviMaximo Essentials V7.1 - Implementer’s Guide 7645TOC.fmDraft Document for Review May 23, 2008 10:14 am 7645spec.fm NoticesDraft Document for Review May 23, 2008 10:14 am 7645spec.fm TrademarksThe team that wrote this book Preface7645pref.fm xMaximo Essentials V7.1 - Implementer’s Guide 7645pref.fmDon Busiek, IBM Dave Calvert, IBM Tom Davis, IBM 7645pref.fmComments welcome Become a published author7645pref.fm 1.1 Enterprise asset management overview Chapter 1. Introduction7645introduction.fm 7645introduction.fm 1.2Maximo Asset Management Essentials7645introduction.fm 1.2.1 General Functional OverviewChapter 1. Introduction Asset Management 1.2.2 Modules7645introduction.fm 7645introduction.fm Work ManagementMaterials Management Service ManagementProcurement Management 7645introduction.fm7645introduction.fm Contract Management8Maximo Essentials V7.1 - Implementer’s Guide 7645introduction.fmDraft Document for Review May 23, 2008 10:14 am 7645New.fm Chapter 2. Maximo Asset Management EssentialsHas straight-forwardlicensing 7645New.fm7645New.fm Draft Document for Review May 23, 2008 10:14 amMaximo Asset Management Maximo Asset Management 7645New.fmDraft Document for Review May 23, 2008 10:14 am 7645New.fmMaximo Asset Management LogicalMaximo Asset Management 7645New.fmPurchase Orders 7645New.fm Draft Document for Review May 23, 2008 10:14 amMaximo Asset Management 7645New.fm Service RequestsMaximo Asset Management 16Maximo Essentials V7.1 - Implementer’s Guide7645ProjPlan.fm Chapter 3. Project PlanningProject Manager 3.1 Required SkillsBusiness Analyst 7645ProjPlan.fmDatabase Administrators Solution ArchitectMaximo Developer TestersApplication Server Specialist 3.2 Solution Description and AssumptionsIntegration Specialist 7645ProjPlan.fm7645ProjPlan.fm Figure 3-1Solution architecturePhase 2: Solution Design Phase 1: Requirement Gathering and Analysis3.3Task Break Down 7645ProjPlan.fm7645ProjPlan.fm Phase 3: Deployment7645ProjPlan.fm Phase 4: Testing and Go-Live7645ProjPlan.fm Phase 5: SupportExpectations from the Customer Phase7645SolEnv.fm Chapter 4. Solution EnvironmentBrowser 4.1 Hardware and Software RequirementsDatabase 7645SolEnv.fm7645SolEnv.fm Directory serverDraft Document for Review May 23, 2008 10:14 am SoftwareJ2EE Application Server Administrative system7645SolEnv.fm Hardware4.2.1 Single-server 4.2 Typical deployment environmentsClient system 7645SolEnv.fm7645SolEnv.fm 4.2.2 Multi-server32Maximo Essentials V7.1 - Implementer’s Guide 7645SolEnv.fm 4.3 Sizing ConsiderationsFigure 4-2 Multi-ServerDeployment Maximo 7645SolEnv.fmMaximo MaximoDraft Document for Review May 23, 2008 10:14 am 7645SolEnv.fmMaximo MaximoMaximo 7645SolEnv.fmMaximo Maximo7645install.fm Chapter 5. Installation5.1.2 Verifying the DVD Content 5.1 Pre-Installationchecklist5.1.1 Hardware/Software considerations Maximo Asset Management Essentials5.1.4 JDK/JRE 5.1.3 Backup/Snapshot Management5.1.5Internet Browser 5.1.6 Disabling the firewall7645install.fm 5.1.9Setting the ulimit5.1.10 Setting shared memory 5.2 Installation flowchart5.1.11Enabling remote configuration 7645install.fm1.Installing the required middleware 7645install.fmFigure 5-1Installation Flowchart 7645install.fmPrepare the Topology 5.3.1 Installing middleware overview 5.3 Middleware InstallationDatabase server J2EE server3.Tivoli Directory Server Using the Middleware Installer4.WebSphere V 7645install.fmchmod -R+755 launchpad.sh 7645install.fmFigure 5-2Middleware features selection 7645install.fm48Maximo Essentials V7.1 - Implementer’s Guide 7645install.fmDefault Value if any 7645install.fmParameter Default Value if any 7645install.fmParameter DB2 users group Windows onlyWebSphere Administration username 7645install.fmFigure 5-5Middleware Installer Image 7645install.fm52Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10 14 am 7645install.fmFigure 5-6Manage Middleware Deployment Plan Figure 5-7Middleware Deployment Plan 7645install.fm54Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 amUser interface logs 5.3.2 Tivoli middleware installer logs7645install.fm Deployment plan logs Logs for steps run by the user interfaceMachine plan logs 7645install.fmLogs for substeps 5.4 Installing Maximo corfe components TPAP7645install.fm 58Maximo Essentials V7.1 - Implementer’s Guide 7645install.fm5.From the Choose Deployment panel, select the Custom deployment topology, and then click Next 7645install.fm7645install.fm NextFigure 5-10DB2 Administration 7645install.fmDraft Document for Review May 23, 2008 10:14 am Figure 5-11DB2 Tablespace 7645install.fm62Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 amFigure 5-12Maximo Application Server Type 7645install.fmFigure 5-13WebSphere Connectivity 7645install.fm64Maximo Essentials V7.1 - Implementer’s Guide 11.From the Automate WebSphere configuration panel, select Automate WebSphere configuration, and then click Next. If you choose not to have the Maximo Asset Management Essentials installation program automatically configure the middleware, you will have had to configure WebSphere manually prior to the installation of Maximo. Configuration tasks include creating a profile, running WebSphere as a Windows service, copying the WebSphere keystore file from the machine where WebSphere is installed to the administrative workstation, setting up JMS queues, and so on 7645install.fmFigure 5-15Automate WebSphere configuration 7645install.fm66Maximo Essentials V7.1 - Implementer’s Guide 13.From the WebSphere Application Server Configuration panel, enter the following information, and then click Next 7645install.fm68Maximo Essentials V7.1 - Implementer’s Guide 7645install.fmFigure 5-18Security 7645install.fmFigure 5-19Integration Adapter JMS Configuration 7645install.fm70Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 amFigure 5-20Input Summary 7645install.fmFigure 5-21 Pre-InstallationSummary 7645install.fm72Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 amDraft Document for Review May 23, 2008 10:14 am 7645install.fmFigure 5-22Language Support –DB2 COPY Services –DB2 Governor 7645install.fmIBM Tivoli Directory Server Instance 7645install.fm7645install.fm 5.5 Process solution package installation76Maximo Essentials V7.1 - Implementer’s Guide Ensure Middleware Servers Are Started Have Middleware Login Information Available7645install.fm Draft Document for Review May 23, 2008 10:14 am2. Allow the package to be validated, click Next 7645install.fmDraft Document for Review May 23, 2008 10:14 am 7645install.fm–Defer Maximo Application Redeployment –Defer the update of the Maximo Database7645install.fm Figure 5-28Package Options 7645install.fmFigure 5-29Deployment Progress 7645install.fm82Maximo Essentials V7.1 - Implementer’s Guide 7645install.fm 5.6 Post Installation TasksFigure 5-30Package Successfully Deployed 7645install.fm Password maxadmin5.6.4 Ensure Client Connectivity 5.6.5 Report AdministrationGenerate Request pages 7645install.fmFigure 5-31Reporting Administration 7645install.fmFigure 5-32Generate Request pages success 86Maximo Essentials V7.1 - Implementer’s Guide7645install.fm Generating report outputFigure 5-34Run Reports 7645install.fmFigure 5-35Labor List 88Maximo Essentials V7.1 - Implementer’s Guide5.Click Submit 7645install.fmDraft Document for Review May 23, 2008 10:14 am Figure 5-36Request Page7645install.fm 5.6.6 Attached Documents Configuration7645install.fm Tip: Search on the word “DocumentRoot”7645install.fm Client MachineFigure 5-38Example Single Machine Configuration 7645install.fm Platform ConfigurationSubmitAttached Document ClientMachine Machine5.6.9Automate the Backup Procedure 5.6.8 Create Backup/Image of the environment5.6.11 Client Local/Regional Settings Properties 5.6.10 Assess the server workloadInternet Explorer Settings Configuring Secure Socket Layer To implement SSL5.6.12 Internet and Firewall Security Secure Socket Layer SSL OverviewSettings 5.6.13 SMTP mail exchange server setup7645install.fm 5.7.1 System Properties Application 5.7 Setting the System and Logging properties7645install.fm 7645install.fm 5.7.2 Logging Application–DEBUG –INFO –WARN –ERROR –FATAL 7645install.fm100Maximo Essentials V7.1 - Implementer’s Guide 7645install.fmDraft Document for Review May 23, 2008 10:14 am 7645config.fm Chapter 6. Configuration6.1 Getting started Changing the user password Signing in using a default user ID6.1.1 User Management 7645config.fm7645config.fm 6.1.2 Organization and Site setupCreate currency codes Disable validation optionsCreate item and company sets 2.Go to Select Actions7645config.fm Create a general ledger account componentCreate an organization C:\ibm\SMP\maximo\tools\maximo\configdb.bat7645config.fm 7.Click New Row on the GL Accounts for tab Create a general ledger account7645config.fm Creating a site Create default insert siteSigning out and signing in 7645config.fmDraft Document for Review May 23, 2008 10:14 am 7645config.fmSub Application Nature of work performed in thisSub Application 7645config.fmNature of work performed in this Suggested6.2 Reporting 6.2.1Report Administration7645config.fm 7645config.fm 6.2.2 BIRT Configure Reportsasterisk are required parameters Draft Document for Review May 23, 2008 10:14 amThe following options are available 7645config.fm–Click Save Report to apply the changes 7645config.fm7645config.fm 6.2.3 BIRT Run ReportsFigure 6-4Report Menu Figure 6-5Selecting a Report to Run 7645config.fm116Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 amDraft Document for Review May 23, 2008 10:14 am 7645config.fmFigure 6-6Run Request Figure 6-7Incident Report 7645config.fm118Maximo Essentials V7.1 - Implementer’s Guide Draft Document for Review May 23, 2008 10:14 am 7645config.fmFigure 6-8Report Scheduler 120Maximo Essentials V7.1 - Implementer’s Guide 7645config.fmDraft Document for Review May 23, 2008 10:14 am Management Essentials modules and applications Appendix A. Summary of Maximo Asset7645ax01.fm MODULE/SUB-MODULE 7645ax01.fmAPPLICATION DESCRIPTIONDraft Document for Review May 23, 2008 10:14 am 7645ax01.fmMODULE/SUB-MODULE APPLICATIONMODULE/SUB-MODULE 7645ax01.fmAPPLICATION DESCRIPTIONDraft Document for Review May 23, 2008 10:14 am 7645ax01.fmMODULE/SUB-MODULE APPLICATIONMODULE/SUB-MODULE 7645ax01.fmAPPLICATION DESCRIPTIONDraft Document for Review May 23, 2008 10:14 am 7645ax01.fmMODULE/SUB-MODULE APPLICATIONMODULE/SUB-MODULE 7645ax01.fmAPPLICATION DESCRIPTIONDraft Document for Review May 23, 2008 10:14 am 7645ax01.fmMODULE/SUB-MODULE APPLICATION130Maximo Essentials V7.1 - Implementer’s Guide 7645ax01.fmDraft Document for Review May 23, 2008 10:14 am IBM Redbooks Related publicationsOther publications Online resourcesHelp from IBM How to get RedbooksIBM Global Services 7645bibl.fmIndex Draft Document for Review May 23, 2008 10:14 am 7645IX.fmMaximo Essentials Implementer’s Guide Maximo Essentials Implementer’s GuideMaximo Essentials V7.1 - Implementer’s Guide Maximo Essentials V7.1 - Implementer’s GuideMaximo Essentials Implementer’s Guide Maximo Essentials Implementer’s GuideDraft Document for Review May 23, 2008 10:14 am 7645spine.fmPage Start planning a deployment Offering targeted for general business clientsMaximo Essentials Implementer’s Guide INTERNATIONAL TECHNICAL SUPPORT ORGANIZATION