This introduces the Domain Administration Console (DAC) Tool, modifying the encryption domain configuration to add at least two (2) users to the SAKA internal database.
-
In Window1, execute the
DACTool.shscript.shell> ./DACTool.sh
-
Using the yellow flash drive, set the preferences for the Domain Administrator and then connect to
saka01. -
Under the Users section, create at least two users:
- Username: encryptdecrypt Privileges: encrypt, decrypt
- Username: pinguser Privilege; decrypt
-
The encryptdecrypt user will be the calling application's main credential to consume the SAKA web service. The name of this user can be modified if another name is preferred, but it is important that the name of the pinguser stays as pinguser.
-
Additional users beyond these two may be created with whatever privilege desired.
-
In Window1, import the self-signed certificate from the Secondary SAKA with
certimport.sh:shell> ./certimport.sh saka02.<domain-name> -
In Window1, change directory to the
/usr/local/strongauth/topazdirectory:shell> cd ~/topaz
-
In Window1, execute
sakamlient.jaras follows to “ping” both appliances simultaneously.shell> java -jar sakamclient.jar https://saka01.<domain-name>:8181, https://saka02.<domain-name>:8181 <domain-id> <password> P
-
Two threads call the appliance “ping” web service. If both servers are “alive”, the installation was successful.