De-Militarized Zone Setup and Configuration in R12.2
Operation System and User setup
1. Verify all the required rpms and O.S level packages are installed in the secondary application tier node as similar to the Primary node.
2. Create Application user in the new server (secondary node) as same as the Primary.
3. The user/group should be identical across the primary and secondary nodes.
4. The uid and the gid should be identical for application user on both primary and secondary application tier nodes.
5. Enable user equivalence across the primary and secondary application tier nodes. First log into the primary application tier node as application owner and perform the below steps.
[apdbatst@apdbasrv02 ~]$ ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/apdbatst/.ssh/id_rsa):
/home/apdbatst/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/apdbatst/.ssh/id_rsa.
Your public key has been saved in /home/apdbatst/.ssh/id_rsa.pub.
The key fingerprint is:
1f:e6:91:84:80:f9:53:b2:73:7d:ab:ca:2f:f3:19:22 apdbatst@apdbasrv02
The key's randomart image is:
+--[ RSA 2048]----+
| o. |
| o .... |
| . +... |
| = ..... |
| +S =. . |
| + o. |
| E . +. |
| oo..o |
| o*+ |
+-----------------+
6. Repeat the step 5 in the secondary application tier node.
7. Copy the id_rsa.pub as authorized_keys to the secondary application tier node for the application user for which user equivalence is created.
[apdbatst@apdbadmz01 ~]$ scp -pr apdbatst@apdbasrv02:/home/apdbatst/.ssh/id_rsa.pub authorized_keys
The authenticity of host 'apdbasrv02 (192.168.100.130)' can't be established.
RSA key fingerprint is 92:97:c5:71:4a:16:d1:2d:a0:2c:67:7c:aa:9e:1c:f5.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'apdbasrv02,192.168.100.130' (RSA) to the list of known hosts.
apdbatst@apdbasrv02's password:
id_rsa.pub 100% 401 0.4KB/s 00:00
[apdbatst@apdbadmz01 .ssh]$ ls -lrt
total 16
-rw-r--r--. 1 apdbatst dba 425 Aug 19 10:18 id_rsa.pub
-rw-------. 1 apdbatst dba 1675 Aug 19 10:18 id_rsa
-rw-r--r--. 1 apdbatst dba 408 Aug 19 10:22 known_hosts
-rw-r--r--. 1 apdbatst dba 401 Aug 19 2014 authorized_keys
8. Repeat the step 7 in the primary node too.
9. Verify if user equivalence is enabled and working by performing ssh from application user from primary node to secondary and vice-versa. This operation should not request for password.
[apdbatst@apdbadmz01 ~]$ ssh apdbasrv02
Last login: Fri Aug 22 12:23:32 2014 from 192.168.126.90
1. Run File System
2. Patch File System
[apdbatst@apdbasrv02 ~]$ ssh apdbadmz01
Last login: Thu Aug 21 16:53:30 2014 from apdbasrv02.apdbakconstruction.com
1. Run File System
2. Patch File System
10. Create identical Application file system structure in the secondary application tier to that of primary.
Directory structure in Primary application tier of APDBATST was /d02/app/APDBA22/fs1(2) and the same structure was created in the secondary (DMZ) application tier node.
Preparing Source (Primary) Application Tier
1. Login to the Primary node (apdbasrv02) as application user and source the run file system.
2. Navigate to $ADMIN_SCRIPTS_HOME and execute adpreclone.pl.
[apdbatst@apdbasrv02 ~]$ perl adpreclone.pl appsTier
3. Once the pre-clone is completed in run FS, source the patch FS of the Primary node and navigate to $ADMIN_SCRIPTS_HOME.
4. Start the AdminServer of the patch file system by executing the below command.
[apdbatst@apdbasrv02 ~]$ adadminsrvctl.sh start forcepatchfs
5. Execute adpreclone.pl for the patch file system and validate the log files.
[apdbatst@apdbasrv02 ~]$ perl adpreclone.pl appsTier
6. Upon completion of the pre-clone script the following application tier file system need to be copied from the primary node to the secondary application tier node.
Run File System (FS1) : /d02/app/APDBA22/fs1/EBSapps
Patch File System (FS2) : /d02/app/APDBA22/fs2/EBSapps
Non-Editioned File System(fs_ne) : /d02/app/APDBA22/fs_ne
The run file system (fs1) and patch file system (fs2) may vary based on the environment. The run/patch FS while performing this setup was fs1/fs2 respectively.
7. Take backup of the EBSapps directory under fs1 and fs2 using the command below.
nohup tar -cvpf - ./EBSapps 2>appl.log | gzip -c >appl_fs1.tar.gz &
nohup tar -cvpf - ./EBSapps 2>appl.log | gzip -c >appl_fs2.tar.gz &
Preparing Target (Secondary) Application Tier
1. Login to secondary node (bosmvdmz02) as application user.
2. The run and patch file system backup taken above should be copied to the run and patch file system respectively.
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs1/
[apdbatst@apdbadmz01 fs1]$ scp -pr apdbatst@apdbasrv02:/d02/app/APDBA22/fs1/appl_fs1.tar.gz .
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs2/
[apdbatst@apdbadmz01 fs2]$ scp -pr apdbatst@apdbasrv02:/d02/app/APDBA22/fs2/appl_fs2.tar.gz .
3. Extract the back in fs1 and fs2 using the below command.
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs1/
[apdbatst@apdbadmz01 fs1]$ nohup cat appl_fs1.tar.gz | gunzip| tar xf - &
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs2/
[apdbatst@apdbadmz01 fs2]$ nohup cat appl_fs2.tar.gz | gunzip| tar xf - &
4. Execute the post clone script and configure the run file system of secondary application tier.
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs1/EBSapps/comn/clone/bin
[apdbatst@apdbadmz01 bin]$ perl adcfgclone.pl appsTier
Enter the APPS password :
Enter the Weblogic AdminServer password :
Do you want to add a node (yes/no) [no] : yes
Running:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/../jre/bin/java -Xmx256M -classpath
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/wljmxclient.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/wlclient.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/java oracle.apps.ad.clone.util.CloneUtil -option
checkWLSAdminServerStatus -wlsAdminHost apdbasrv02.apdbakconstruction.com -wlsAdminPort 7001 -wlsAdminUser weblogic -promptmsg hide
Running:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/../jre/bin/java -Xmx600M -cp
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/java:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/xmlparserv2.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/ojdbc5.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/obfuscatepassword.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/ojmisc.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/java:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/emCfg.jar oracle.apps.ad.context.CloneContext -e
/d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/../context/apps/CTXORIG.xml -validate -pairsfile
/tmp/adpairsfile_13765.lst -stage /d02/app/APDBA22/fs1/EBSapps/comn/clone
-addappsnode 2> /tmp/adcfgclone_13765.err; echo $? > /tmp/adcfgclone_13765.res
Log file located at /d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/CloneContext_0819120049.log
Target System File Edition type [run] : run
Provide the values required for creation of the new APPL_TOP Context file.
Target System Hostname (virtual or normal) [apdbadmz01] :
Target System Base Directory set to /d02/app/APDBA22
Target System Current File System Base set to /d02/app/APDBA22/fs1
Target System Other File System Base set to /d02/app/APDBA22/fs2
Target System Fusion Middleware Home set to /d02/app/APDBA22/fs1/FMW_Home
Target System Web Oracle Home set to /d02/app/APDBA22/fs1/FMW_Home/webtier
Target System Appl TOP set to /d02/app/APDBA22/fs1/EBSapps/appl
Target System COMMON TOP set to /d02/app/APDBA22/fs1/EBSapps/comn
Target System Instance Home Directory [/d02/app/APDBA22] :
Target System Instance Top set to /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01
Do you want to preserve the Display [apdbasrv02:0.0] (y/n) : n
Target System Display [apdbadmz01:0.0] :
Target System Root Service [enabled] : enabled
Target System Web Entry Point Services [enabled] : enabled
Target System Web Application Services [enabled] : enabled
Target System Batch Processing Services [enabled] : disabled
Target System Other Services [disabled] : disabled
Do you want the target system to have the same port values as the source system (y/n) [y] ? : n
Target System Port Pool [0-99] : 2
Checking the port pool 2
done: Port Pool 2 is free
Report file located at /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/admin/out/portpool.lst
Complete port information available at /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/admin/out/portpool.lst
UTL_FILE_DIR on database tier consists of the following directories.
1. /d02/app/APDBA22/fs_ne/inst/APDBATST_apdbasrv02/temp
2. /usr/tmp
3. /usr/tmp/APDBA22
4. /d02/app/APDBA22/CUSTOM/xxsuf/out
5. /usr/tmp
6. /d01/app/oracle/APDBATST122/product/11.2.0/appsutil/outbound/APDBATST_bosmvsrv01
7. /usr/tmp
8. /usr/tmp
Choose a value which will be set as APPLPTMP value on the target node [1] :
Backing up /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
to /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml1.bak
Creating the new APPL_TOP Context file from :
/d02/app/APDBA22/fs1/EBSapps/comn/clone/context/apps/adxmlctx.tmp
The new APPL_TOP context file has been created :
/d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
Log file located at /d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/CloneContext_0819120049.log
Check Clone Context logfile /d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/CloneContext_0819120049.log for details.
Running Rapid Clone with command:
Running:
perl /d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/adclone.pl java=/d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/../jre mode=apply
stage=/d02/app/APDBA22/fs1/EBSapps/comn/clone component=appsTier method=CUSTOM
appctxtg=/d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml showProgress contextValidated=true
FMW Pre-requisite check log file location : /d02/app/APDBA22/fs1/EBSapps/comn/clone/FMW/logs/prereqcheck.log
Running: /d02/app/APDBA22/fs1/EBSapps/comn/clone/FMW/t2pjdk/bin/java -classpath
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/engine.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraPrereq.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraPrereqChecks.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraInstaller.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraInstallerNet.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/srvm.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl2.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl-log4j.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/xmlparserv2.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/prereq/webtier/oui/jlib/share.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/java oracle.apps.ad.clone.util.FMWOracleHomePreReqCheck
-prereqCheckFMW -e /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
-stage /d02/app/APDBA22/fs1/EBSapps/comn/clone -log /d02/app/APDBA22/fs1/EBSapps/comn/clone/FMW/logs/prereqcheck.log
Beginning application tier Apply - Tue Aug 19 12:01:23 2014
/d02/app/APDBA22/fs1/EBSapps/comn/clone/bin/../jre/bin/java -Xmx600M -DCONTEXT_VALIDATED=true -Doracle.installer.oui_loc=/oui -classpath
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/xmlparserv2.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/ojdbc6.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/java:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/oui/OraInstaller.jar:
/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/oui/ewt3.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/oui/share.jar:
/d02/app/APDBA22/fs1/FMW_Home/webtier/../Oracle_EBS-app1/oui/jlib/srvm.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/ojmisc.jar:
/d02/app/APDBA22/fs1/FMW_Home/wlserver_10.3/server/lib/weblogic.jar:/d02/app/APDBA22/fs1/EBSapps/comn/clone/jlib/obfuscatepassword.jar
oracle.apps.ad.clone.ApplyAppsTier -e /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml -stage
/d02/app/APDBA22/fs1/EBSapps/comn/clone -showProgress -nopromptmsg
Log file located at /d02/app/APDBA22/fs1/inst/apps/APDBATST_apdbadmz01/admin/log/clone/ApplyAppsTier_08191201.log
| 50% completed
Completed Apply...
Tue Aug 19 12:18:47 2014
5. Execute the post clone script and configure the run file system of secondary application tier.
[apdbatst@apdbadmz01 ~]$ cd /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin
[apdbatst@apdbadmz01 bin]$ perl adcfgclone.pl appsTier
Enter the APPS password :
Enter the Weblogic AdminServer password :
Do you want to add a node (yes/no) [no] : yes
Running:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/../jre/bin/java -Xmx256M
-classpath /d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/wljmxclient.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/wlclient.jar:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/java
oracle.apps.ad.clone.util.CloneUtil -option checkWLSAdminServerStatus
-wlsAdminHost apdbasrv02.apdbakconstruction.com -wlsAdminPort 7002 -wlsAdminUser weblogic -promptmsg hide
Running:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/../jre/bin/java -Xmx600M
-cp /d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/java:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/xmlparserv2.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/ojdbc5.jar:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/obfuscatepassword.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/ojmisc.jar:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/java:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/emCfg.jar oracle.apps.ad.context.CloneContext
-e /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/../context/apps/CTXORIG.xml -validate
-pairsfile /tmp/adpairsfile_29168.lst -stage /d02/app/APDBA22/fs2/EBSapps/comn/clone
-addappsnode 2> /tmp/adcfgclone_29168.err; echo $? > /tmp/adcfgclone_29168.res
Log file located at /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/CloneContext_0819124737.log
Target System File Edition type [patch] : patch
Provide the values required for creation of the new APPL_TOP Context file.
Target System Hostname (virtual or normal) [apdbadmz01] :
Target System Base Directory set to /d02/app/APDBA22
Target System Current File System Base set to /d02/app/APDBA22/fs2
Target System Other File System Base set to /d02/app/APDBA22/fs1
Target System Fusion Middleware Home set to /d02/app/APDBA22/fs2/FMW_Home
Target System Web Oracle Home set to /d02/app/APDBA22/fs2/FMW_Home/webtier
Target System Appl TOP set to /d02/app/APDBA22/fs2/EBSapps/appl
Target System COMMON TOP set to /d02/app/APDBA22/fs2/EBSapps/comn
Target System Instance Home Directory [/d02/app/APDBA22] :
Target System Instance Top set to /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01
Do you want to preserve the Display [apdbasrv02:0.0] (y/n) : n
Target System Display [apdbadmz01:0.0] :
Target System Root Service [enabled] : enabled
Target System Web Entry Point Services [enabled] : enabled
Target System Web Application Services [enabled] : enabled
Target System Batch Processing Services [enabled] : disabled
Target System Other Services [disabled] : disabled
Do you want the target system to have the same port values as the source system (y/n) [y] ? : n
Target System Port Pool [0-99] : 3
Checking the port pool 3
done: Port Pool 3 is free
Report file located at /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/admin/out/portpool.lst
Complete port information available at /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/admin/out/portpool.lst
UTL_FILE_DIR on database tier consists of the following directories.
1. /d02/app/APDBA22/fs_ne/inst/APDBATST_apdbasrv02/temp
2. /usr/tmp
3. /usr/tmp/APDBA22
4. /d02/app/APDBA22/CUSTOM/xxsuf/out
5. /usr/tmp
6. /d01/app/oracle/APDBATST122/product/11.2.0/appsutil/outbound/APDBATST_bosmvsrv01
7. /usr/tmp
8. /usr/tmp
Choose a value which will be set as APPLPTMP value on the target node [1] :
Creating the new APPL_TOP Context file from :
/d02/app/APDBA22/fs2/EBSapps/comn/clone/context/apps/adxmlctx.tmp
The new APPL_TOP context file has been created :
/d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
Log file located at /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/CloneContext_0819124737.log
Check Clone Context logfile /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/CloneContext_0819124737.log for details.
Running Rapid Clone with command:
Running:
perl /d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/adclone.pl java=/d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/../jre
mode=apply stage=/d02/app/APDBA22/fs2/EBSapps/comn/clone component=appsTier
method=CUSTOM appctxtg=/d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
showProgress contextValidated=true
FMW Pre-requisite check log file location : /d02/app/APDBA22/fs2/EBSapps/comn/clone/FMW/logs/prereqcheck.log
Running: /d02/app/APDBA22/fs2/EBSapps/comn/clone/FMW/t2pjdk/bin/java
-classpath /d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/engine.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraPrereq.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraPrereqChecks.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraInstaller.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/OraInstallerNet.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/srvm.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl2.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/Scripts/ext/jlib/ojdl-log4j.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/xmlparserv2.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/prereq/webtier/oui/jlib/share.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/java oracle.apps.ad.clone.util.FMWOracleHomePreReqCheck
-prereqCheckFMW -e /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml
-stage /d02/app/APDBA22/fs2/EBSapps/comn/clone -log /d02/app/APDBA22/fs2/EBSapps/comn/clone/FMW/logs/prereqcheck.log
Beginning application tier Apply - Tue Aug 19 12:48:30 2014
/d02/app/APDBA22/fs2/EBSapps/comn/clone/bin/../jre/bin/java -Xmx600M -DCONTEXT_VALIDATED=true
-Doracle.installer.oui_loc=/oui -classpath /d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/xmlparserv2.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/ojdbc6.jar:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/java:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/oui/OraInstaller.jar:/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/oui/ewt3.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/oui/share.jar:/d02/app/APDBA22/fs2/FMW_Home/webtier/../Oracle_EBS-app1/oui/jlib/srvm.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/ojmisc.jar:/d02/app/APDBA22/fs2/FMW_Home/wlserver_10.3/server/lib/weblogic.jar:
/d02/app/APDBA22/fs2/EBSapps/comn/clone/jlib/obfuscatepassword.jar oracle.apps.ad.clone.ApplyAppsTier
-e /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/appl/admin/APDBATST_apdbadmz01.xml -stage /d02/app/APDBA22/fs2/EBSapps/comn/clone
-showProgress -nopromptmsg
Log file located at /d02/app/APDBA22/fs2/inst/apps/APDBATST_apdbadmz01/admin/log/clone/ApplyAppsTier_08191248.log
\ 50% completed
Completed Apply...
Tue Aug 19 13:05:53 2014
Configuration Steps for DMZ deployment
1. Update Hierarchy Type
Several user profile options are used to construct various URLs in an E-Business Suite R12.2 environment.
2. The configuration of the E-Business Suite environment for DMZ requires these profile options hierarchy type to be set to SERVRESP.
Login to the run file system of the primary application tier node and execute txkChangeProfH.sql script as shown below.
[apdbatst@apdbasrv02 ~]$ sqlplus apps/<pwd>
SQL> @$FND_TOP/patch/115/sql/txkChangeProfH.sql SERVRESP
Changing the hierarchy type for the Profile APPS_WEB_AGENT
Profile APPS_WEB_AGENT hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile APPS_SERVLET_AGENT
Profile APPS_SERVLET_AGENT hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile APPS_JSP_AGENT
Profile APPS_JSP_AGENT hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile APPS_FRAMEWORK_AGENT
Profile APPS_FRAMEWORK_AGENT hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile ICX_FORMS_LAUNCHER
Profile ICX_FORMS_LAUNCHER hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile ICX_DISCOVERER_LAUNCHER
Profile ICX_DISCOVERER_LAUNCHER hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile ICX_DISCOVERER_VIEWER_LAUNCHER
Profile ICX_DISCOVERER_VIEWER_LAUNCHER hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile HELP_WEB_AGENT
Profile HELP_WEB_AGENT hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile APPS_PORTAL
Profile APPS_PORTAL hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile CZ_UIMGR_URL
Profile CZ_UIMGR_URL hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile QP_PRICING_ENGINE_URL
Profile QP_PRICING_ENGINE_URL hierarchy type has been
successfully changed to SERVRESP
Changing the hierarchy type for the Profile TCF:HOST
Profile TCF:HOST hierarchy type has been
successfully changed to SERVRESP
3. After the txkChangeProfH.sql script is executed successfully,
a. Shutdown the applications on all nodes.
b. Modify the HTTP port in the $CONTEXT_FILE of the external node to 8001 (port# varies based on environments) as below on both patch and run FS. Example as below:
<httplistenparameter oa_var="s_http_listen_parameter">8001</httplistenparameter>
<web_port oa_var="s_webport" oa_type="PORT" base="8000" step="1" range="-1" label="Web Listener Port">8001</web_port>
c. Execute autoconfig on all nodes (sourcing run FS) to set the profile option values at server level.
d. Startup the Application services in the primary application tier node alone to perform the below operations.
4. Update Node Trust Level and Responsibility trust level. Login as SYSADMIN user from the Primary (internal) application and set the node ad responsibility trust levels.
a. Navigation: System Administrator -> Profile -> System. Query for Node%Trust%Level for Site and Server level.
Choose the DMZ (secondary/external) application tier server and set the profile values as “External” as shown below. The Site level should be left as is to “Normal”
b. Navigation: System Administrator -> Profile -> System. Query for Resp%Trust%Level for Site and Responsibility level.
Choose the responsibility “apdbak Time Entry-Non-Exempt” and set the profile values as “External” as shown below. The Site level should be left as is to “Normal”.
Repeat the same step for all responsibilities that would be exposed to DMZ.
5. Disable cluster based web-entry points.
a. The internet and intranet traffic routing is configured at the load balancer and the Weblogic clustering should be disabled to rely the LB routing.
b. Login to the DMZ(secondary) application tier node as application user.
c. Navigate $FMW_HOME/webtier/instances/EBS_web_APDBATST_OHS2/config/OHS/EBS_web_APDBATST/
d. Backup the apps.conf, mod_wl_ohs.conf and remove the node/configuration entries that are not participating in the cluster configuration from these files.
e. Ensure DynamicServerList OFF parameter is included in the mod_wl_ohs.conf.
f. Repeat the same set of steps in the Primary node as well. Example as below:
[apdbatst@apdbadmz01 EBS_web_APDBATST]$ diff mod_wl_ohs.conf mod_wl_ohs.conf.08192014
33c33
< WebLogicCluster apdbadmz01.apdbablog.com:7203
---
> WebLogicCluster apdbadmz01.apdbablog.com:7203,apdbasrv02.apdbablog.com:7201
39c39
< WebLogicCluster apdbadmz01.apdbablog.com:7403
---
> WebLogicCluster apdbasrv02.apdbablog.com:7401,apdbadmz01.apdbablog.com:7403
45c45
< WebLogicCluster apdbadmz01.apdbablog.com:7603
---
> WebLogicCluster apdbadmz01.apdbablog.com:7603,apdbasrv02.apdbablog.com:7601
51c51
< WebLogicCluster apdbadmz01.apdbablog.com:7803
---
> WebLogicCluster apdbadmz01.apdbablog.com:7803,apdbasrv02.apdbablog.com:7801
[apdbatst@apdbadmz01 EBS_web_APDBATST]$ diff apps.conf apps.conf.08192014
64a65
> BalancerMember http://apdbasrv02.apdbablog.com:7201/OA_HTML/media
73a75
> BalancerMember http://apdbasrv02.apdbablog.com:7201/OA_HTML/classes
82a85
> BalancerMember http://apdbasrv02.apdbablog.com:7201
92a96
> BalancerMember http://apdbasrv02.apdbablog.com:7401/OA_HTML/media
101a106
> BalancerMember http://apdbasrv02.apdbablog.com:7401/OA_HTML/classes
g. After performing these changes, bounce the Primary node application services and start the DMZ (secondary) node application services.
6. Login to WebLogic console to validate the machine, managed servers and their status.
7. Verify the SSL setup is identical in the DMZ node to that of its Primary application tier.
8. Validate logins of both the internal and external applications and ensure the responsibilities.
a. Internal Login Home Page for SYSADMIN user.
b. External Login Home Page for SYSADMIN user.
Subscribe to:
Post Comments
(
Atom
)
No comments :
Post a Comment
Note: only a member of this blog may post a comment.