1.- We change the profile.sh file located in /etc/profile.d for all Operating System Users have LD_LIBRARY_PATH and SECUDIR environment variables.
JohnD-Server1:/usr/sap # vi /etc/profile.d/profile.sh |
We add these lines just after the description text file:
LD_LIBRARY_PATH=/usr/sap/hostctrl/exe export LD_LIBRARY_PATH SECUDIR=/usr/sap/hostctrl/exe/sec export SECUDIR |
This is my profile.sh file
# # profile.sh: Set interactive profile environment # # Used configuration files: # # /etc/sysconfig/windowmanager # /etc/sysconfig/suseconfig # /etc/sysconfig/mail # /etc/sysconfig/proxy # /etc/sysconfig/console # /etc/sysconfig/news # LD_LIBRARY_PATH=/usr/sap/hostctrl/exe export LD_LIBRARY_PATH SECUDIR=/usr/sap/hostctrl/exe/sec export SECUDIR for sys in /etc/sysconfig/windowmanager \ /etc/sysconfig/suseconfig \ /etc/sysconfig/mail \ /etc/sysconfig/proxy \ /etc/sysconfig/console \ /etc/sysconfig/news do test -s $sys || continue while read line ; do case "$line" in \#*|"") continue ;; esac eval val=${line#*=} case "$line" in CWD_IN_ROOT_PATH=*) test "$val" = "yes" || continue test $UID -lt 100 && PATH=$PATH:. ;; CWD_IN_USER_PATH=*) test "$val" = "yes" || continue test $UID -ge 100 && PATH=$PATH:. ;; FROM_HEADER=*) FROM_HEADER="${val}" export FROM_HEADER ;; SCANNER_TYPE=*) SCANNER_TYPE="${val}" export SCANNER_TYPE ;; PROXY_ENABLED=*) PROXY_ENABLED="${val}" ;; HTTP_PROXY=*) test -n "$val" || continue http_proxy="${val}" export http_proxy ;; HTTPS_PROXY=*) test -n "$val" || continue https_proxy="${val}" export https_proxy ;; FTP_PROXY=*) test -n "$val" || continue ftp_proxy="${val}" export ftp_proxy ;; GOPHER_PROXY=*) test -n "$val" || continue gopher_proxy="${val}" export gopher_proxy ;; NO_PROXY=*) test -n "$val" || continue no_proxy="${val}" export no_proxy ;; DEFAULT_WM=*) DEFAULT_WM="${val}" ;; CONSOLE_MAGIC=*) CONSOLE_MAGIC="${val}" ;; ORGANIZATION=*) test -n "$val" || continue ORGANIZATION="${val}" export ORGANIZATION ;; NNTPSERVER=*) NNTPSERVER="${val}" test -z "$NNTPSERVER" && NNTPSERVER=news export NNTPSERVER esac done < $sys done unset sys line val
if test -d /usr/lib/dvgt_help ; then DV_IMMED_HELP=/usr/lib/dvgt_help export DV_IMMED_HELP fi
if test -d /usr/lib/rasmol ; then RASMOLPATH=/usr/lib/rasmol export RASMOLPATH fi
if test "$PROXY_ENABLED" != "yes" ; then unset http_proxy https_proxy ftp_proxy gopher_proxy no_proxy fi unset PROXY_ENABLED
if test -n "$DEFAULT_WM" -a -z "$WINDOWMANAGER" ; then SAVEPATH=$PATH PATH=$PATH:/usr/X11R6/bin:/usr/openwin/bin WINDOWMANAGER="`type -p ${DEFAULT_WM##*/}`" PATH=$SAVEPATH export WINDOWMANAGER unset SAVEPATH fi unset DEFAULT_WM
if test -n "$CONSOLE_MAGIC" ; then case "$(tty 2> /dev/null)" in /dev/tty*) if test "$TERM" = "linux" -a -t ; then # Use /bin/echo due ksh can not do that /bin/echo -en "\033$CONSOLE_MAGIC" fi esac fi # # end of profile.sh |
Unzip the SAPHostAgent
JohnD-Server1:/usr/sap/ # /sapmnt/BIP/exe/uc/linuxx86_64/SAPCAR -xvf SAPHOSTAGENT09_9-20009394.SAR -R SAPHOSTAGENT SAPCAR: processing archive SAPHOSTAGENT09_9-20009394.SAR (version 2.01) x SAPCAR x hostagent.lst x hostagent.mf x hostagent_acknowledgements.txt x hostexecstart x installsapinit.sh x ldappasswd x ldapreg x librfccm.so x libsapacosprep.so x libsapcrypto.so x libsapdbadactrl.so x libsapdbdb6ctrl.so x libsapdbhdbctrl.so x libsapdboractrl.so x libsapdbsiqctrl.so x libsapdbsybctrl.so x libslcryptokernel.so x libslcryptokernel.so.sha256 x lssap x sapacosprep x sapcimb x sapcimc x sapcontrol x sapcpp47.so x sapdbctrl x sapdsigner x sapgenpse x saphostctrl x saphostexec x sapinit x saposcol x sapstartsrv x sapuxuserchk x sldreg x sldreglib.so x xml71d.so SAPCAR: 37 file(s) extracted |
Install the SAPHostAgent
JohnD-Server1:/usr/sap/SAPHOSTAGENT # ./saphostexec -install Install service Check Installation Path ... ok Copy Executable ... ok Generate Profile ... ok Install SYS-V service ... ok -> Start /usr/sap/hostctrl/exe/saphostexec pf=/usr/sap/hostctrl/exe/host_profile <- start hostcontrol using profile /usr/sap/hostctrl/exe/host_profile ok [OK] SAPHostExec / SAPHostControl succesfully installed |
Create the sec directory and set the appropriate permissions
JohnD-Server1:/usr/sap/hostctrl/exe # mkdir sec JohnD-Server1:/usr/sap/hostctrl/exe # chown sapadm:sapsys sec |
Unzip the SAPCommon Crypto Lib
JohnD-Server1:/usr/sap # /sapmnt/BIP/exe/uc/linuxx86_64/SAPCAR -xvf SAPCRYPTOLIBP_8449-20011697.SAR -R /usr/sap/hostctrl/exe/ SAPCAR: processing archive SAPCRYPTOLIBP_8449-20011697.SAR (version 2.01) x sapcrypto.mf x libslcryptokernel.so x libsapcrypto.so x sapgenpse x libslcryptokernel.so.sha256 x sapcrypto.lst SAPCAR: 6 file(s) extracted |
Create the PSE
JohnD-Server1:/usr/sap # sudo -u sapadm LD_LIBRARY_PATH=/usr/sap/hostctrl/exe SECUDIR=/usr/sap/hostctrl/exe/sec /usr/sap/hostctrl/exe/sapgenpse gen_pse -p SAPSSLS.pse -x Saposi01. -r /tmp/JohnD-Server1-csr.p10 "CN=JohnD-Server1.12CODE.es, O=12CODE, C=ES" Certificate Request Signed Part Subject :CN=JohnD-Server1.12CODE.es, O=12CODE, C=ES Key Key type :rsaEncryption (1.2.840.113549.1.1.1) Key size :2048 Attributes Signature Signature algorithm :sha256WithRsaEncryption (1.2.840.113549.1.1.11) Signature (size="2048") :<Not displayed> |
Add the PSE to SSO
JohnD-Server1:/usr/sap # sudo -u sapadm LD_LIBRARY_PATH=/usr/sap/hostctrl/exe SECUDIR=/usr/sap/hostctrl/exe/sec /usr/sap/hostctrl/exe/sapgenpse seclogin -p SAPSSLS.pse -x Saposi01. -O sapadm running seclogin with USER="sapadm" creating credentials for yourself (USER="sapadm")... Added SSO-credentials for PSE "/usr/sap/hostctrl/exe/sec/SAPSSLS.pse" |
Start SUM
JohnD-Server1:/usr/sap/SUM # ./STARTUP confighostagent BIP **** The root dir to SUM is /usr/sap/SUM **** The passed SID parameter is: BIP, based on it SUM is not extracted under SID directory. SUM is under /usr/sap/SUM **** The saphostagent command would be /usr/sap/SUM/sdt/exe/SLProtocol.sh **** root user and sapsys group set as owner of /usr/sap/hostctrl/exe/operations.d and /usr/sap/hostctrl/exe/descriptors.d **** root user and root group set as owner of /usr/sap/hostctrl/exe/operations.d/sumjava.conf and /usr/sap/hostctrl/exe/descriptors.d/sumjava.lmsldesc **** Restarting SAP Host Agent ****
saphostexec is already running (pid=15069). Stopping...-> Start /usr/sap/hostctrl/exe/saphostexec pf=/usr/sap/hostctrl/exe/host_profile <- start hostcontrol using profile /usr/sap/hostctrl/exe/host_profile **** SAP Host Agent has been restarted **** **** HOST detected as JohnD-Server1 **** SAP Host Agent configured, start the UI from the browser now **** **** SUM Java: https://JohnD-Server1:1129/lmsl/sumjava/<SID>/index.html **** **** SUM Abap: https://JohnD-Server1:1129/lmsl/sumabap/<SID>/doc/sluigui **** **** SUM Observer: https://JohnD-Server1:1129/lmsl/sumobserver/<SID>/monitor/index.html **** **** SUM Dual stack: https://JohnD-Server1:1129/lmsl/sumjava/<SID>/dual.html **** **** SUM benchmark tool: https://JohnD-Server1:1129/lmsl/migtool/<SID>/doc/sluigui **** **** You are using SAP Host Agent version: **** **** hostagent release: 7.21 **** **** hostagent patch number: 9 **** **** Please check the central SUM note whether this SAP Host Agent version is sufficient for SUM operation **** |
To update Java use this url
https://JohnD-Server1:1129/lmsl/sumjava/BIP/index.html
To update ABAP use this url
https://JohnD-Server1:1129/lmsl/sumabap/BIP/doc/sluigui
TIPS:
- To log-on in SUM without SSL the HTTP port is 1128
- SUM decompression is done with <sid>adm user
- SUM execution with root user
- When logon in the WebInterface, you need to use <sid>adm