Sailpoint Installation - Part 1

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

so what we are discussing over here discussing over here we are discussing same point and same point as having a tool called identity IQ on which we are doing this particular training on what is that interior IQ so this is one same point offering an identity and access management and this is their own demise identity governance - so they this is their own demise governance tool that we will be discussing sale point is having couple of other tools as well point operates a site called compass if you go there who this particular website these are the three solutions sale point provides identity I know the one that we are learning what is identity IQ on premise identity governance solution they have a cloud solution as well identity now and this is evening to access governance solution so we are learning identity IQ which is compromise identity governance the major focus of this is dealing with applications that are on device must have some cloud capabilities as well which we'll be discussing during our sessions but major need is focused around compromise so as part of our codes so I will quickly briefly describe you what is going to be our course all about so this is a implementation course that you have opted for and as part of this course you will be implementing this particular architecture so this is going to be our exercise environment this is the different applications you will be connecting with a same point environment so we are assuming that we have a fresh organization that has approached us and for that organization we have to implement sale point and s part of that we will be onboarding all these different applications on to our cell phone environment so this is a brief architecture of the applications you will be connecting further I have divided we have divided our exercises into four different more first module will be focused around installation identity cubes and onboarding applications this will be the first module the second module will revolve around analytics policies risk in certifications the third module will be around roles rules tasks in reports and fourth module will be around else in workflow and provisioning it's part of our installation or implementation of sale point we will be doing installation on both that is windows as well as Linux machine let us quickly go ahead and start our sale point implementation so what is the very first step that we are going to learn the very first step that you are going to learn is about sane point installation watching what are the different components involved what house sale bond architecture what are the different components installing the base software and then patching that particular software so these are the two things that we are going to learn as we join any organization one of the first tasks that is assigned to us is installing your sale point software that is developing your developer environment and also patching your identity idea software and that is what we are going to learn so if I talk about sale point installation now so there are four major components to any installation any saying for installation what are the four components the first component is java second component is application server the third component over here is your database server and fourth component over here is sale point software so these are the four components in any sale on installation java application server your database server and sale points okay so let us see why these are required so first of all my job Isaac sale point is java-based so sale point leverages java api so what sale point does sale point identity IQ leverages java api java api so when I say API API is application programming interface what is an API so it is application programming interface so if I talk about say English language what is the AP of English language API of English language is a to Z the verbs announce the rules of writing English language similarly Java has its API so Java has its classes its packages so what sale point does same point as a software leave latest Java API so because of that we'll have to install two major components one is JDK the discharge of element kit the second component that we will have to install is GRE that is Java Runtime environment so these are the two components required JDK and JRE why because sale point is Java based sale point leave latest Java I here now we have the second component the second component is application server so my application server is required your sale point software is nothing but our web-based application so same point is nothing but of web-based application now this web-based application should be deployed on an application server so wise application server used application server is used because so this will be used to host my identity i q-- application that is my same point application so my cell point application will be deployed on this particular application server so it will be used to host and deploy my identity i queue up education now there are many application servers that are available in the market ranging from JBoss Apache Tomcat so far our application server we will be using Apache Tomcat now Apache Tomcat is not a pure application server one of the many things it can accomplish is act as an application server so this will be our choice for application server apart from that if you want to use you can also use JBoss as your application server so that can also be alternatively used but this is the most popular choice that you will find in many major implementations Apache Tomcat so this is going to be our choice of application server then the third component over here is our database server installation so my database server is required to host sale point database so sale point objects are further stored in on n objects and sale point database over here and so database is required over here for hosting myself on database now as part of that there are four major databases supported by sale point what are the four major databases so we have my sequel we have sequel server we have Oracle and we have BB 2 so these are the four major databases that are supported by sale point so when I stopped when I say supported by sale point and what do I mean over here is that sale point will give automated scripts that can be leveraged to automatically create sane point on these target databases so I will get automated scripts that will help me create same point databases on these target databases over here the same point will give automated scripts for all the 4 major databases over here out of these we are going to use to be precise my sequel community server so this is going to be my choice of database where I will be hosting all my same point objects I will be having my same point database the fourth component over here is my same point software the last component in cell phone installation is same point software now for sale point software we will be leveraging a particular file and that file is called our bar file now what is the wall file over here war file over here is compressed file that is called web application archive file so this is nothing but a compressed file which contains my same point software what I will be doing I will be taking this particular wall file and I will be deploying it on my application server which will be used to host my same point applications so these are the four components that are required in any simple installation what are the four components first is Java as part of Java we will be installing JDK and JRE the second component is our application server which is used to host and deploy identity idea application the third component over here is my database server which will be hosting my sale point database for mature databases are supported by sale point my sequel sequel server oracle and db2 and then we have the fourth component that the same point software where we will be getting a war file which will be deployed on my application server so let us go ahead and start this installation the first thing that I will be focusing on is installing Java and as part of that we will be dealing with JDK and JRE so for installing Java I will go to my search engine over here and over here I will say download JDK so I will be routed to the Oracle website over here and from here I will be able to install JDK and JRE so you will have to make an account on this particular website recently they start download without making an account so what you can do you can make an account over here on this particular website which is free we can say accept the License Agreement and you will be able to download JDK and JRE one thing that we have to make sure of downloading JDK and JRE is that the version of JDK and JRE should be same so currently the version of JDK that I am installing is 80211 and over here I would be focusing on Exe files so windows x86 dot exe file or Windows xyx t4 depending on which version of Windows you are having you will be either downloading this Exe file windows x86 or Windows x64 so to save time I have already downloaded that so the version of JDK is 8 you know 1 1 similarly what you will be doing is you would be downloading JRE as well and you will make sure that the version of JRE is same as your JDK so again you can see version over here is a 2 2 1 1 and again you will go ahead and say accept the License Agreement and focus on your exe files spider you can download Windows x64 dot exe or windows x86 offline so since they are Exe files since what you're downloading are exe files it will be an X next installation so you will you know you will be getting a UI and you will be going ahead and implementing it so this is how your exe files will look so this is how your exe files are going to look and what they're going to do you're going to do installation over here so once you do installation you will see if you are choosing the default path if you go to C Drive you will be able to see it either in program files or Program Files x86 depending on whether where you have installed so for me it is Program Files x86 and I'm able to see these folders look at JDK and JRE they are of the same version the next thing over here is now if you open your command prompt and right over here Java the system is going to throw you an error saying Java is not recognized as an internal or external come up so what I'm doing an opening command prompt and if I write Java over there plus a system Java is not recognized as an internal or external command so what you need to do is you need to define your environment variables so we will be defining our environment variables for Java so we will be defining to environment variables so when you go to environment variables you will see two kind of environment variables one is we use a variable and you will see system variables so these are the two variables you will see now we have a simple rule over here whatever variable will point to bin that variable needs to be defined in both a user as well as system variables so whichever variable will be pointing to bin path we'll needs needs to be defined in user as well as system variable so we will be defining two environment variables one will be Java underscore home and these are case sensitive so you should define it in the same way so you should name it in the same way job underscore home and over here I will be giving my JDK path and this will be pointing to bin so since it is pointing to bin it means to be defined in both the user as well as system variable so how I can go to environment variables so first of all why we are defining environment variables so that our system is able to recognize our Java installation path so once I do that from command prompt itself I will be able to execute my Java commands so I'm making sure that my system is aware of my installation parts for Java so that is why I am defining my environment variables so what I will be doing is I will be going to PC I'll be going to properties I've been going to advanced system settings and I will go to environment variables over here so here you can see there are two variables a user variable and system variable so right now I will go to use a variable and define a new variable and I will call it Java underscore home and over here I will be giving my JDK path some to go to PC c drive program files x86 java wing inside jdk and i'm pointing it to bin so i am pointing it to Ben because JDK requires all my binaries over here so these are all binaries that it requires so I will copy this path copy the address and paste it over here in Java underscore whoo so this is my environment variable that I'm pointing to Ben so this is the variable that I've created Java underscore home pointing to bin and since it is pointing to bin I need to define it in my system variables as well so system variables are the ones that directly impact your registry so we have a registry in Windows the system variables directly impact your registry what we will do we will have a pre-existing variable over here called path so we will go to path variable and add our path and our JDK but just see what I'm doing over here so for example I go to advanced system settings I have already defined Java underscore home in system variable I will look for a predefined variable called path so here is my predefined variable called path I will click on edit I will click on new and copy the same path over here for JDK I'm copying the same path over here for JDK in my path variable so this is what I've done so what I've done for Java underscore home I have defined it in user variable a new variable in system variable I had a pre-existing variable called path I've clicked on path variable after linked on edit click on new and I've pasted my JDK path that is for Java on the school home now similarly we need to define another variable and this time for JRE so I will go ahead and define a new variable called JRE in the school home and this time I will not be pointing it to Ben so it only needs to be defined in user variable so let us do that Samuel again go to advanced system settings in government variables new variable this time in user variables and I will say JRE underscore home and I will go to PC and I will copy my JRE path so I'm not pointing to bend this time because it also needs access to these libraries some not pointing to Ben and I will copy this particular address for my runtime environment and I will paste it over here so since it is not pointing to vein there is no need to define it in system variables so these are the two variables we have defined Java underscore home and JRE underscore home so once you have defined that the next step over here is to test where the system is now able to recognize your Java path or not so for testing what we can do I will open my command prompt again and I will write Java over here and you can see system is able to recognize my Java command it is giving me all the flags that are available for Java arguments so now I will write Java version command to see whether I am able to get the version over here or not so I'm able to see my Java version so verifying the system is now able to recognize my Java installation and I'm able to see the Java version that is installed the for testing we'll open a command prompt CMD and we'll execute the commands Java and Java version to see the version of Java that we have installed the second component over here is our application server so our first component is complete the second component over here is application server what we talked about the application server it will be used to host and deploy my identity IQ application a choice of application server s Apache Tomcat so let us go ahead and download Apache Tomcat so we'll again go to my search engine and I will say download Apache Tomcat now you can see Apache Tomcat 9 is also released but I will go for a tad lower version of Apache Tomcat so as to maintain compatibility with Java with my database and with sale point so I'm going for a tad lower version I'm not going for the recent version a tad lower version to maintain compatibility now once I click over here I will be routed to Apache Tomcat website and from here I will be able to download my application server now you have to go to binary this illusions under your section you will be able to find the application server over here so now there are two things you can either download your application server as a zip file or you can download it as an installer and run it as a Windows service now what I want to do I don't want to run it as a Windows service I want to download the zip file so if you have to run your application server as a Windows service you can download this 32-bit 64-bit windows service installer if you want to implement it straight forward you want to download this zip file you can go ahead and download the zip file I don't I'm not interested in running it as a Windows service so I'm not going for a Windows service installer and I'm downloading the zip file under core so once you download it this is how it will look like so I will go to PC I will go to C Drive here I'm making a new folder called IAQ where I would be implementing all my sale point installation so I'm making a new folder over here called iock you know where I would be implementing sale point sin IQ what I've done this is the zip file that you will be getting apache tomcat compressed zipped file now since it is not a Exe file how you would install it by simply clicking on extract all and this will implement your application server so now if you go inside this application server you would be able to see the complete structure over here so this is a solution installation is very simple download the zip file and make a new folder in C Drive called riq and click on external and you will see your application server in place now you have the most important folder over here called configuration corn folder so if you go inside this configuration folder you will see a property called Catalina now this is the property we would be leveraging to instantiate our application server so this would be leverage this particular property would be leveraged in starting our application server so like Java what we will do is we will go ahead and define environment variables for our application server as well so we'll go ahead and define it for application server as well and this time our variable name will be catalina underscore home and this will contain my apache tomcat path so under configuration folder we were able to see this particular property so now what I will do again I will define environment variable so I will go to properties advanced system settings in warmint variables and under user very well we will define a new variable this time and I will call it catalina underscore home remember the names and all of the variables should remain same and in the variable value I will give my Apache Tomcat path over here so remember to point it to the internal Apache Tomcat folder copy the address and paste it over there in your environment variables and over here you can give your Apache Tomcat path over here so once you have given this particular part see it is not pointing to bank so there is no need to define it in system variable so this is my catalina underscore whole and this is containing my a budget on Ganpat that will go ahead and click on ok and save my environment variable over here the next step over here after defining Catalina underscore home is to test whether your system is able to recognize your environment variables or not so for this what we will do is the start our application server so for this what we will do we will go to a patchy Tomcat and earlier we were going to configuration folder this time we'll go to binaries bin folder and over here we have a batch file called startup dot bat so I will go ahead and click on startup dot bat and this will start my application server remember the log window that comes up over here do not close this log window because if you close this log window your application server will stop so remember to minimize this particular unlock screen so here you will be able to see all the logs that are getting generated what is happening if any error is happening in startup of application server you will be able to see this now sometimes what you will see over here you will see an error that your screen comes up and it automatically closes if screen comes and automatically closes or if it is not running your application server is not starting it means that the variables that you have defined are not correct so check your environment variables for Java and Apache Tomcat the disk at lean on the score home again if they are defined correctly be your application server will definitely run so once it has done I will be able to once it is started I will be able to see a message on this particular log screen and that message will be server startup n some random value over here milliseconds so this is a message I will be able to start further for testing I can check my local host as well so I can test my local host HTTP local host port 8080 so this is the default mode on which my application server runs so what is the default mode on which my application server runs it is port 8080 now say that you have a requirement to change this default port now say port 8080 is already in news and you want to change the default port on which your application server runs so how you do that by modifying your server dot X signal so you will be able to modify this particular configuration file and you will be able to change the default port on which your application server is running so I will show you how that can be done so I will go to apache tomcat apache tomcat I will go to configuration over here and here is a file called server dot XML so if you modified this particular file you will be able to change the default port on which your application server runs so I will go ahead and click on edit with notepad plus plus and over here you have the port information that you will be able to modify so under this connector tag you have the default mode on which your application server runs let's say if I want to run it on board so say 80 81 now so I can change the default port over here I can also change the redirect boat f1 dead all these I will be able to change so right now I will make it the default port that is port 8080 but now we know is how we can change the default mode on which our application server is running by modifying sulfer dot xml which is kept under apache tomcat configuration folder so now what we will do is we will test whether our application server is starting or not so we'll write HTTP localhost port 8080 and I'm able to see that my application server is coming up I'm able to see this particular page so my server status is up and running I'm able to see that my application server is starting so we have tested that our environment variables are defined correctly and using server startup dot back we are able to test there are application server starting she went into bin then we clicked on startup thought bad to start my application server similarly shut down that bad can be used to shut down your application server as I as I mentioned earlier if you closed this log window your application server will stop so we have successfully installed two components till now and we have tested them as well that is my Java and application server moving on to the next component that is a database server sale point database and for that we will be using my sequel community server so let us go ahead and see that download that so I will again go to my search engine and I will say download my sequel community server so I will go to this particular link my sequel community server now like Apache Tomcat you will again focus on a tad lower version so this is the site and over here if you go down you can see this is the latest version so just to maintain compatibility so that later on I do not encounter any errors I will say look for previously versions and this is the penultimate version five point seven point two six that we will be installing now if you go down you are able to see over here different zip files now what we want to do we want to implement over here my sequel not using zip file but using a file called MSI what is MSI file over here MSI file is like your Exe file only difference being over here is that it is specifically made for Microsoft environments over here so Microsoft based systems so I will be focusing on downloading your MSI file so that I am able to see a UI interface while implementing my sequel so over here I will not click on any of these downloads I will say go to downloads page and over here I will see my MSI's 4 so these are my MSI's available and these are for installing my sequel so here I can see 2 MSI finds the first MSI file is 20 point 0 M and the second MSI file is for 14 point 8 n so what is the difference between these two MSI files the first file if you download it will only download the referential in real time it will connect to internet and if you are trying to install it in real time it will try to download and implement it the second MSF file will download everything onto your environment and then attend the installation so I will recommend downloading the second MSI file now to save time I have already went ahead and downloaded the MSI file and I will show you how it looks so this is how your MSI file is going to look like and what you're going to do is you are going to go ahead and run this MSI file so now what we are implementing with implementing my sequel when trolling my sequel database and this will be used to host my sale point database we have already installed Java that is JDK and JRE and we also downloaded Apache Tomcat that is going to be our application server so I have already installed my sequel server but I will walk you through the configuration again while you are installing my sequel server you will get options over here what kind of installation you want you want developer default or you want my sequel server only so select my sequel server only because if you go for a developer default apart from my sequel server it will go ahead and implement other components as well which is not required as per our installation so these components will also be installed like my sequel connectors workbench in simple models notifier so all these we do not want we are majorly focused on my sequel server so you can go for my sequel server only installation that is what you can go for so over here I will say reconfigure and you can see over here I am going for standalone my sequel server installation that is the one that you have to go through as well so once you choose you can go ahead and click on next over here by default it runs on a port 3 3:06 tcp/ip this is the default port number it runs on so do not change any out of the box configuration do not modify any out of the box configuration go ahead and click on next over here and over here it is going to ask you for username and password for me it is only asking password but for you it will ask you for username as well as password so do not put in any complex username or password over here put your user name as root and password also as root why is that because we will be using these usernames and password on a regular basis to connect to a database so we don't want it to be a complex username and password so set it to simple root and root over here that is what I have done as well and you can see that I am able to connect to my database using the root password further click on next so this is the service name by which you will be able to pack my sequel the service name in my case is my sequel 57 so by default if ex Protocol is enabled leave it if it is not enabled in limit because this is not going to impact and it is majorly X protocol is mange immediately used for relational or hybrid databases so it does not matter if it is any disabled by default go to the next screen so these are the configuration steps that needs to be executed in order for your successful my sequel installation in real time you will be able to see logs over here so we have one is configuration steps the second in blocks so you will be able to see in real time logs over here if any if any error is coming while configuration steps you will be able to see that over here so what I will do is I will start these configuration steps by clicking on the execute button so these configuration steps will run and now you can see these configuration steps are completed in real time I was able to monitor these locks and what is happening if anything is not working you will be able to see in real time these logs as well so once you have once your configuration steps are completed you can go ahead and finish it your sequel configuration successful and now like all our other installation what define we need to define environment variable now so will be defining environment variable and like your JDK installation this variable will also point to bin so will be defining an environment variable called my sequel underscore home and this will again be pointing to bin and over here we need to define in user as well as system variable in system to existing variable called path needs to be modified so now once you sense nation is done you will be able to go to PCC Drive and wherever you have kept your part you will be able to see that a my sequel folder is created and you will be able to see that server so here for me it is in Program Files my sequel and I'm able to see my my sequel server over here so I will go to bin and here are my my sequel binary is located I will copy this particular path and I will go ahead and define my environment variables properties advanced system settings environment variables and under user variable define a new variable called my sequel underscore o and copy your environment variable of my sequel pointing to bring now a game series pointing to Benz so we need to define it in system variable called path open your path variable click on edit click on new over here and paste your my sequel path over here and click on OK so this is what we have done we have defined it in both that is user as well as system variable and now we need to test it whether system is able to recognize our my sequel path or not if you would have done the same thing say return my sequel command on command prompt before defining your environment variable system would have thrown an error that my sequel is not recognized as a internal or external command now after defining your environment variable if you open your command prompt and write my sequel over here it is saying access denied meaning which it is able to recognize the binaries related to my sequel so to login to my sequel whatever user ID and password we have set during configuration that is rude and rude we will be leveraging that now so I will write a command my sequel - you wrote - P I will provide my password that is rude to log into my sequel so I will say my sequel - you root minus P and provide the password that is root and you can see I am able to enter my my sequel control over here so my environment variables are configured correctly next thing what you can do to display the databases that are there in my sequel you can write the command show databases so by default leaving these two that I have installed that I have created the other two the other four would be available by default so you will see information schema my sequel performance schema insists by default these two I have created so you will not see these two by default but the other four you will be able to see to go inside a particular database write the command use and the database name say my sequel and then you will be able to write a command say show tables will look at the different tables inside a particular database to see the content of these tables so these are the different tables inside that particular database to view the contents of these tables you can use the Select command select star from table name now say I'm saying select star from servers and right now it is giving me a empty set so this command can be used to look at the contents of a particular table star over here stands for select everything so I will exit my sequel console now so my sequel configuration is done other major errors that people see while doing this installation is now this is one use case that your my sequel is already installed on your machine so you have already a previous installation of my sequel but you forgot the password of my sequel now you do not remember what was the password that you said during my sequel installation in that case what can be done say forgotten the the root user password in this case of what can be done so if you try to uninstall my sequel from your machine so this is what you're trying to do you are trying to go to control panel and saying uninstall my sequel so what it will do your my sequel will not be completely removed from your system why is that because some of the services of my sequel runs in stealth mode or hidden mode in your system so trance has stealth mode now because it is running in stealth mode all the files related to my sequel will not be deleted if you're going for a normal uninstall so if you try to say reinstall again after installing you know old files are going to interfere the old files are going to interfere with your installation and you will still not be able to go ahead so what is the what is the what we can do to solve this particular problem so for addressing this particular ratio you can use free beers that are available in the market and these free where's what it can do they can completely remove my sequel from your machine so completely remove my sequel so one minute I will tell you about the flavor that you can use so you would be able to use previous like law hunters and there are other figures available that will be able to completely remove your softwares from your machine so they can what they can do they can do force uninstall of my sequel so they will delete all the files that are running in stealth mode as well as normal mode so all the files will be deleted and what you will be able to do is so once the complete uninstallation is performed all the files are deleted you will be able to go ahead and re install my sequel from scratch so you will be able to use these free ways so there are multiple freeways available in the market like lock country you will be able to use them to completely uninstall my sequel from your machine and re-implement it again so you will be able to use these freeways now we will move on to our fourth component and that fourth component is sale point software so where we can get the sale point software so first of all I will go to Google my search engine as I said that this sale one software you will find on a site called compass sale point so you can go to compass over here and on this this as a site that is hosted by same point itself so go to this particular website and login to this particular website over here so these are the products the catch with this particular website is that you will be able to make an account on this particular website so the site name is compass sale point you will be a only be able to make an account on this particular website if your partner organization the organization that you're working for is a partner of sale point or as implementing sale point so access to this particular portal depends on but your organization has bought license or what are the different license of the products that they have won so these are the three offerings again to this particular portal now since all of you will not have access to this particular portal what I will do is I will be providing you the sale point software so what I meant by this is say if I go to the Spotted called security IQ so my current organization is not implementing security IQ so if I go to security IQ if I go to download section and the same access is denied because my current organization has not bought license for security IQ so it is not letting me download so we are interested in iron to the IQ so they'll go to identity IQ we'll go to download section and we will be able to see the different versions of sale point that are there in the market so these are the different versions 6.4 7.0 seven point one point two point three so seven series is the latest and the leaders in the series is seven point three and what we will be doing is we'll be downloading the seven point three version and this is what we'll be implementing one or Windows machine further what you're able to see that on each version so look at the base version 7.0 and if you look at the base version 7.0 you can see that I'm having multiple patches over here so what are these P 1 P 2 P 3 P 4 these are patches so whenever any organization is on a base version it is very easy for the organization to implement a patch rather than changing a version what these patches will contain say if I go to this particular patch 7.3 P 2 it will contain security updates so it will contain it will contain upgrades on security vulnerabilities so touching security vulnerabilities plus it will have feature updates so some features are changing some new connectors are coming up all this will be part of patch so we can catch a current base version so this is another important thing that we will be learning the dispatching or current environment so from here you will be able to download your sale points and you will be able to do installation in patching so this is the complaint we will be picking up in our next class but just to show you from where we can download so if I go to 7.3 I can click on 7.3 identity I to 7.3 over here and these are the different features at 7.3 now provides so all the important features are listed over here and I will be able to go ahead and download this zip file identity IQ 7.3 zip file so this is a zip file I haven't been able to download for implementing my base version so this is the component we will pick up tomorrow and on ask

Info

Channel: IAM Trainer

Views: 13,817

Rating: 4.9205298 out of 5

Keywords:

Id: 6GdDQ00eTUs

Channel Id: undefined

Length: 52min 27sec (3147 seconds)

Published: Fri Dec 06 2019