Professional Documents
Culture Documents
BSM L2, L3 - HPSM9 21 Implementation Document - V - 1.0
BSM L2, L3 - HPSM9 21 Implementation Document - V - 1.0
BSM L2, L3 - HPSM9 21 Implementation Document - V - 1.0
BSM
Submitted to
By
April, 2015
Project Details
HP Service Manager
Implementation Document
Draft Document
Version 1.0
Prepared by:
Prashant Bijamwar
Yamin ali
Contributors:
Padmapriya Ravishekhar
Vinny Grover
Modified By:
Padmapriya Ravishekhar
Reviewers
4 Page 4 of 43
Table of Contents
5 Page 5 of 43
1. Installation of Java Framework
Java 1.5.0.22 needs to be installed on both the Application Server and Web Application server to allow
access to Service Manager Forms through a web browser. The web server handles incoming HTTP requests
while the web application server runs the Java and JSP necessary for connecting to Service Manager.
Follow the below mentioned steps to install Sun J2SE Java Development Kit (JDK) on both the server.
1. Required version of Sun J2SE Java Development Kit (JDK) for Java framework is jdk 1.5.0.22.
2. Double click on the setup exe icon
6 Page 6 of 43
Note: This step might take a time for next action.
7 Page 7 of 43
9. The Installation of JDK is completed Click on ‘Finish’ button.
Following are the steps for setting the environment variable for jdk 1.5.0.22
8 Page 8 of 43
6. In the variable name field type JAVA_HOME
9 Page 9 of 43
2. Database Instance Creation
Import the entire attached database dump to new empty database with the help of DBA. For a Perfect as-is
environment care should be taken that db is case insensitive.
Note: Make sure username and password remains same as database dump.
10 Page 10 of 43
3. Installation of HP Service Manager 9.21 Server
Make sure that your system meets the following requirements before installing Service Manager
Note: This recommendation is for normal environment where load balancing has not been considered
and it is not recommended for production environment.
1. Double click on the setup exe icon to install HP Service Manager 9.21. The Install
Shield Wizard for the HP service Manger 9.21 server window will get opened.
11 Page 11 of 43
3. Accept the terms of the license agreement & Click on Next button to proceed.
4. Browse the directory where you want to install the Service Manager Server.
12 Page 12 of 43
7. Wait till the Installation is getting 100 % complete.
8. Check the ‘Run the configuration program after install’ check box.
9. Click on ‘Finish’
As in the end of HP Service manager 9.21 Server Installation we had checked the ‘Run the
configuration program after install’ check box as per section 3.1 step 8 above, HP Service manager 9.21
Server configuration wizard will get opened.
13 Page 13 of 43
2. Enter HTTP Port No. as 13080
3. Check the checkbox for “Enable HTTPS Port?”
4. Enter HTTP Port No. as 13443.
5. Click ‘Next’ button to proceed further.
14 Page 14 of 43
8. Type the Oracle username & Password.
9. Click ‘Next’ button to proceed further.
15 Page 15 of 43
12. Click ‘Next’ button on below screen. (Note: Do not click on “Upload Data” button.
16 Page 16 of 43
3.4. HP Service Manager Licensing:
17 Page 17 of 43
4. Installation of Service Manager Client 9.21
Refer below table for the installation requirement specification for the HP SM Client Machines.
18 Page 18 of 43
4. Accept the terms of the license agreement and Click ‘Next’ button.
5. Browse the directory name where you want to install the client and Click ‘Next’ button.
20 Page 20 of 43
5. Installing Service Manager Help Server 9.20
The Service Manager Help Server provides a centralized location to access and store all online
help files. The Service Manager Help Server includes an integrated web server that allows end users to
access documentation from either the Windows or web clients as well as directly from a web browser.
• Deploy tailored versions of Service Manager Documentation. You can edit the online help
stored on the Help Server and deploy it with the integrated web server. All clients
that connect to the Help Server automatically see the customized online help files.
To access the Service Manger Help, we need to install the SM Help Server 9.20.
21 Page 21 of 43
2. The install shield wizard open up. And Click on ‘Next’ button.
3. Accept the terms of the license agreement and click on Click ‘Next’ button.
4. Browse to the directory where you want to install the help server and Click ‘Next’ button.
22 Page 22 of 43
5. Click on ‘Install’ Button.
1. Navigate to SM Help Server installation directory and run the configure.bat file
2. Click ‘Next’ button
23 Page 23 of 43
3. Put Service port as 8083 and Windows service name as HP Service Manger 9.20 Help Server and
then Click on ‘Next’ button.
4. Check “Install Windows Service” check box and then Click on ‘Finish’ button.
24 Page 24 of 43
6. Installation of Apache Tomcat 6 and Setting up the WEB Tier
The Service Manager Web tier contains a J2EE-compliant web application that runs on the web application
server. Each web application server has its own method of deploying web applications. Steps to upload the SM
application war in the installed Apache Tomcat 6 server is mentioned in section 6.2 below.
Apache Tomcat 6 server needs to be installed on the Web Application Server only.
1. Double click on the setup exe icon, Apache Tomcat Setup Window will opened
2. Click ‘Next’ to continue.
25 Page 25 of 43
4. Select Full installation type and Click ‘Next’ button.
5. Enter the username and password you want to set up for tomcat.
6. Select the Java path installed in the system and Click ‘Next’ button.
27 Page 27 of 43
• Now Open Internet explorer and provide url as http://localhost:8080/<<serverHost>>/index.do
SM login page should be opened up.
This patch will update Windows Server component of SM 9.21. Please follow the steps below to
apply this patch in your server. Back up your server before applying patch.
• The server update for your operating system (OS) consists of a compressed file,
HPSM_00265.zip, which contains the Service Manager Server zip file sm9.21.157-
P3_Windows_Server.zip and SM921.157_p3_ReleaseNotes.pdf.
• Extract the files from HPSM_00265.zip to a temp directory and follow the Installation Steps in
the SM921.157_p3_ReleaseNotes.pdf for the Service Manager Windows server.
The server update for your operating system (OS) consists of a compressed file, sm9.21.157-P3_<OS>.zip
(or .tar), which contains the Service Manager server files. These files add to or replace the files in the
[SM Root]\ ([SM Root]/) RUN, irlang, legacyintegration, and platform_unloads directories.
• saaj-impl-2.1.jar
• saaj-api-2.1.jar
• jgroups-all-2.5.0.jar
28 Page 28 of 43
7. Remove the following files from the "\RUN\lib\endorsed" directory:
• xercesImpl-jaxp-1.3.2.jar
• xalan-jaxp-1.3.2.jar
• jaxp-api-1.3.2.jar
• dom-jaxp-1.3.2.jar
• sax-jaxp-1.3.2.jar
This patch contains the SM 9.21 client installable. At the time of client installation this patch has already
been given. This patch is not required to install on client machine.
• Just check the version in Help > About Service Manager Client.
The client should be release: 9.21.157
This patch contains the SM 9.21 web tier file to upgrade web server environment. At the time of
configuring web server this file has already been used in SMweb folder. This patch is not required to
install on environment.
This patch enables Change calendar integration with HP SM 9.21 and as change calendar is not part
of HP SM 9.21.
29 Page 29 of 43
8. HP Connect It 9.20 (en) Installation
30 Page 30 of 43
5. Select Typical option and click on Next.
6. Click on “Change” button and select a folder where you would like to install Connect IT.
31 Page 31 of 43
8. Wait till installation completes.
9. Click on Finish.
Please follow below steps to Implement License for Connect IT for <Customer>.
1. Navigate to <Connect IT installable folder>\AutoPass\data
2. Rename file LicFile.txt to LicFile_orig.txt
3. Copy attached file LicFile_ForConnectIT.txt and paste it in data folder.
32 Page 32 of 43
4. Rename file to LicFile.txt
For Connect IT 9.20 we need to install JRE 6 on machine where you have installed HP connect IT.
33 Page 33 of 43
9. LDAP Authentication
This step will be covered in database dump. Still, Steps have been made available for reference.
6. Verify “name” field is mapped to “sAMAccountname” field. All other fields should be blank.
#ldapnostrictlogin:1
#ldapdisable:1
34 Page 34 of 43
ldapserver1:<<ldap ip>>
ldapbinddn: <<customerspecific>>
Managed,DC=<<Customerspecific>>
ldapbindpass:<Customerpwd>
#ldapdisable:1
ldapauthenticateonly
ldapnostrictlogin:1
#ldapstats:1
#ldapsearchscope:1
You can now connect to SM server using AD username and Password. (Note: Operator and contact
record should be available
35 Page 35 of 43
10. SSL Installation and Configuration with SM 9.21
1. Navigate to <SM installation folder>\Server\Run folder and take back up of Sm.ini and
sm.cfg file.
2. Paste the attached sm.ini and sm.cfg file to this location.
commonName_default= <fill in the fully qualified domain name of the machine that is
running the SC/SM app server>
5. Run the tso_srv_svlt.bat file (Make sure you run the file as Run as administrator after right
click on file), when prompted to fill in:
Country Name, hit enter,
State, hit enter,
Locality Name, hit enter,
Organizational Name, hit enter,
Organizational Unit Name, hit enter,
Common Name, hit enter,
Email Address, hit enter
Trust this certificate? , type yes, hit enter,
What is your first and last name? , type <the fully qualified domain name of this
machine>, hit enter,
What is the name of your organizational unit? , type <the name of the organizational
unit>, hit enter,
What is the name of your organization? , type <the name of the organization>, hit enter,
What is the name of your City or Locality? , type <the name of the organization's city>, hit
enter,
36 Page 36 of 43
What is the name of your State or Province? , type <the name of the organization's
state/province>, hit enter,
What is the two-letter country code for this unit? , type <fill in the 2-letter country code
for the organization>, hit enter,
7. From the command line in the \ssl directory (Make sure you open command prompt as Run
as administrator, type in below command and press enter
You will be prompted below question and provide answers as what you have set and hit enter
What is your first and last name?, type <the fully qualified domain name of this machine>,
hit enter,
What is the name of your organizational unit? , type <the name of the organizational
unit>, hit enter,
What is the name of your organization? , type <the name of the organization>, hit enter,
What is the name of your City or Locality? , type <the name of the organization's city>, hit
enter,
What is the name of your State or Province? , type <the name of the organization's
state/province>, hit enter,
What is the two-letter country code for this unit? , type <fill in the 2-letter country code
for the organization>, hit enter,
8. verify that in the 3 folders in the \ssl directory, the following files exist
\certs
cacerts
clientpubkey.cert
mycacert.pem
mycacert.srl
scclientcert.pem
scservercert.pem
trustedclients.keystore
\crs
clientcert_request.crs
servercert_request.crs
\key
cakey.pem
server.keystore
37 Page 37 of 43
<the fully qualified domain name of the machine that is running the SC/SM app
server>.keystore
If all these files exist and no errors were reported during the creation of these files, the
certificates are ready to be used
1. Go to \RUN directory of the Service Manager 9.21 server installation and rename the cacerts file
to cacerts.orig
2. Copy the following files from the \ssl\certs directory to the \RUN directory of the Service
Manager 9.21 server installation :
cacerts,
trustedclients.keystore,
3. Copy the following files from the \ssl\key directory to the \RUN directory of the Service Manager
9.21 server installation:
server.keystore
4. Restart HP SM service.
cacerts.orig
Cacerts
4. Open the Eclipse client, and create a new connection (give it a meaningful name to indicate it uses
SSL encryption), that connects to port 13081, on the Connection tab enable the Use
Login/Password checkbox, and on the Advanced tab, enable the Use SSL Encryption checkbox,
save the connection, and close the connections windows.
5. From the Eclipse client click on the Window option in the menu bar, and select the Preferences...
option.
6. In the Preferences window, expand the HP Service Manager tree, and select the security section.
7. Set the following parameters in the security section of the Eclipse client :
38 Page 38 of 43
▪ Client keystore file: <full path of the Service Manager 9.21 client
install>\plugins\com.hp.ov.sm.client.common_9.21\<the fully qualified domain name of this
machine>.keystore
9. Open the Eclipse client and start the newly created SSL connection that connects to port 13081 and
verify that it works. Check the sm.log to verify that you see the message:
10. You now have enabled SSL encryption for the Eclipse client of Service manager 9.21
For each client to connect on server, certificate needs to be generated from same ssl folder. This step
will also be required to generate certificate for Web application server. In Fully qualified domain name
you have to mention the fully qualified domain name of the machine where you are going to install
client. For web server as well, these certificates need to be created.
1. From the command line in the \ssl directory (Make sure you open command prompt as Run
as administrator, type in below command and press enter
You will be prompted below question and provide answers as what you have set and hit enter
What is your first and last name?, type <the fully qualified domain name of this machine>,
hit enter,
What is the name of your organizational unit? , type <the name of the organizational
unit>, hit enter,
What is the name of your organization? , type <the name of the organization>, hit enter,
What is the name of your City or Locality? , type <the name of the organization's city>, hit
enter,
What is the name of your State or Province? , type <the name of the organization's
state/province>, hit enter,
What is the two-letter country code for this unit? , type <fill in the 2-letter country code
for the organization>, hit enter,
2. verify that in the 3 folders in the \ssl directory, the following files exist
\certs
cacerts
clientpubkey.cert
mycacert.pem
mycacert.srl
scclientcert.pem
39 Page 39 of 43
scservercert.pem
trustedclients.keystore
\crs
clientcert_request.crs
servercert_request.crs
\key
cakey.pem
server.keystore
<the fully qualified domain name of the machine that is running the SC/SM app
server>.keystore
cacerts
5. Copy the following files from the \ssl\certs directory to the \RUN directory of the Service
Manager 9.21 server (Application Server) installation :
trustedclients.keystore (Before replacing this file take backup of original file)
6. Then follow the steps mentioned in sec. 10.4 Configuring SM 9.21 Eclipse client for SSL
encryption from step 4.
1. Stop Tomcat.
isCustomAuthenticationUsed false,
serverHost <Fully Qualified Domain Name of Application server machine>
serverPort <The SSL port the Service Manager 7.0x server is listening on> It should be
13081.
ssl true,
cacerts /WEB-INF/cacerts,
keystore /WEB-INF/<Fully Qualified Domain Name of Web server
machine>.keystore,
keystorePassword clientkeystore,
7. Copy the following files from the \ssl\certs directory to the \webapps\SMwebssl\WEB-INF
directory:
cacerts
40 Page 40 of 43
8. Copy the following files from the \ssl\keys directory to the \webapps\SMwebssl\WEB-INF directory
:
9. Restart tomcat server and Create a web page shortcut that points to:
http://<Fully Qualified Domain Name of this machine>:8080/ SMwebssl /index.do and test
to see that the SSL web client is running.
1. Install Apache 2.2 on web server from attached set up file with default parameters. No
password for admin. Provide the JDK and JRE path if prompted. Keep the default port
80.
2. Type http://servername . If the “It works” page opens this means the installation has
been successful.
3. Make sure your Win 2003 server does not have IIS running, or Apache will not start up..!!.
include conf/mod_jk.conf
10. Go to the \bin directory of the Apache http server installation and start the ApacheMonitor.exe
program, this opens the Apache Service Monitor.
Click on the Start, ad verify that the Apache2.2 service is starting correctly, at the bottom of the
window you should see all the loaded modules.
If the Apache Service Monitor is green, then Apache is correctly configured.
1. Start the Internet Explorer browser on the machine, on the menu bar click on Tools, and select
Internet Options.
2. Select the Security tab, and select the Trusted Sites content zone, and click on the Sites... button.
5. Make sure that the "Require server verification (https:) for all sites in this zone" option is not
selected.
41 Page 41 of 43
6. On the Security tab page, click on the Custom Level... button.
7. At the bottom, on the User Authentication, Logon section, select the following option:
42 Page 42 of 43
11. Create Separate URL for <CUSTOMER2>
To Integrate Separate URL with e-care for <CUSTOMER2> users, please follow below steps on Web server.
These Steps are already covered in file mod_jk.conf file for SMwebssl2 folder.
12. Attachments
Please find below all the list of attachments which will need to be available separately with this document.
43 Page 43 of 43