7.5 Installing Identity Reporting

This procedure describes how to install Identity Reporting for Identity Governance on a server without Identity Governance using the guided method or the console method. To perform a silent, unattended installation, see Section 7.6, Silently Installing Identity Reporting.

To prepare for the installation, review the prerequisites and system requirements listed in Section 2.4.3, Identity Reporting Server System Requirements. Also see the Release Notes accompanying the release.

  1. Ensure that you review the prerequisites and system requirements as well as the current Release Notes for this release. For more information, see Section 2.4.3, Identity Reporting Server System Requirements.

  2. Ensure that you have completed the Identity Reporting Installation Worksheet and have all of the information to complete the installation. For more information, see Table 7-1, Identity Reporting Installation Worksheet.

  3. Log in as root on Linux server or an administrator on Windows server where you want to install Identity Reporting.

    NOTE:Identity Reporting requires you to log in as root on the Linux server or an administrator on the Windows server to complete the installation successfully.

  4. Ensure that you have a copy of the installer on this server. For more information, see Section 2.2, Obtaining Identity Governance, Identity Reporting, Workflow Engine, and OSP.

  5. If you are in a clustered environment, proceed to Step 6, otherwise, stop Apache Tomcat. For more information, see Section 3.4.3, Starting and Stopping Apache Tomcat.

  6. From the directory that contains the installation files, complete one of the following actions:

    NOTE:To execute the file, you might need to use the chmod +x or sh command for Linux or use Run as administrator if you did not log in to your Windows server as an administrator.

    • Linux: Enter one of the following commands from a command prompt:

      • Console: ./identity-governance-install-linux.bin -i console

      • Guided: ./identity-governance-install-linux.bin

    • Windows: Enter the following from a command prompt:

      • Console: identity-governance-install-win.exe -i console

      • Guided: identity-governance-install-win.exe

  7. Read and accept the License Agreement.

  8. Select Identity Reporting for the install set.

  9. Use the information you gathered in Table 7-1, Identity Reporting Installation Worksheet to complete the installation.

  10. Review the pre-installation summary.

  11. (Conditional) If prompted, accept the certificates you trust, reject any certificates you do not trust, and acknowledge any errors.

    The installer checks to see if you selected SSL/TLS or https for communication to the connected systems. The installer attempts to retrieve those certificates and add them to the trust store. If you used a self-signed certificate for any of the connected systems, the installer prompts you to accept or reject the certificates because self-signed certificates are untrusted certificates. The installer adds the accepted certificates to the trust store. For more information, see Section 3.8, Securing Connections with TLS/SSL.

    NOTE:If you are in a distributed environment, and if you are using a later version of Java Zulu OpenJDK (such as 8u312), the installer could present each certificate for acceptance only once. The installer compares certificates in a specific order. If the certificates you accepted are from a certificate authority (CA), then any subsequent certificates signed by the same CA are automatically trusted.

  12. (Conditional) In a clustered environment, stop Apache Tomcat. For more information, see Section 3.4.3, Starting and Stopping Apache Tomcat.

  13. Start the installation process.

  14. When the installation process completes, review the Identity Reporting installation logs. The default location of the logs is here:

    • Linux: /opt/netiq/idm/apps/idrpt/logs

    • Windows: C:\netiq\idm\apps\idrpt\logs

  15. Before starting Apache Tomcat again, delete the contents of the following two directories from Apache Tomcat that contain cached files. The directories are:

    • Linux: Default installation location:

      • /opt/netiq/idm/apps/tomcat/temp

      • /opt/netiq/idm/apps/tomcat/work/Catalina/localhost

    • Windows: Default installation location:

      • C:\netiq\idm\apps\tomcat\temp

      • C:\netiq\idm\apps\tomcat\work\Catalina\localhost

  16. Proceed to Section 9.0, Completing the Installation Process.

    NOTE:If you installed Identity Reporting on a server that does note have Internet access, see Section 9.4.4, Configuring a Proxy Server for the Identity Reporting Server