How to install RedHat 6.7 with packages needed for RSA Via Lifecycle and Governance 7.0
2 years ago
Originally Published: 2016-07-15
Article Number
000067154
Applies To
RSA Product Set: RSA Via Lifecycle and Governance 7.0 (L&G)
RSA Version/Condition: 7.0
Platform: RSA Software Appliance
O/S Version: RedHat Enterprise Linux 6 update 7
Tasks
This article gives step by step instructions on how to install the RedHat 6.7 Operating system to closely match our Appliance configuration so that all known dependencies are met and additional steps of post OS installation are also included.
Resolution
The below is step by step what was done for a given customer to create a RedHat 6 Update 7 environment that closely matches RSA's appliance packages:


skip media check (optional)
On hostname screen type FQDN
                hit configure network
                                enable connect automatically
                                Choose interface and hit edit
                                                IPv4 settings
                                                method manual

Create Custom Layout
                /boot    2GB physical
                swap     32GB physical
                /              all physical
Select Base Profile
                Customize packages
Base system
Checked                                Base
Checked                                Compatibility Libraries
Checked                                Console internet tools
Checked                                debugging tools
Checked                                directory client
Added                                                certmonger
Checked                                Hardware Monitoring utilities
Unchecked                            Java platform
Checked                                Large Systems Performance
Checked                                Legacy UNIX compatibility
Checked                                Network file system client
Checked                                Performance Tools
Checked                                Perl Support

Servers
Checked                                Server Platform

Desktops
Checked                                Desktop
Checked                                Desktop Debugging and Performance
Added                                               abrt-gui
Checked                                Desktop Platform
Checked                                Fonts
Checked                                General Purpose Desktop
Checked                                Graphical Administration Tools
Checked                                 Input Methods
Checked                                KDE Desktop
Checked                                Legacy X Window System compatibility
Added                                                libXp
Checked                                Remote Desktop Clients
Checked                                X Window System

Development
Checked                                Additional Development
Added                                               libaio-devel
Checked                                Server Platform Development
 
Order matters due to dependencies:
Mount the DVD and cd to the Packages folder:

rpm -ivh syslinux*64*.rpm syslinux-nonlinux*
rpm -ivh mpfr-2*64*.rpm
rpm -ivh cpp*64.rpm
rpm -ivh ppl-0*64.rpm
rpm -ivh cloog-ppl*64.rpm
rpm -ivh gcc-4*64*.rpm
rpm -ivh gcc-c*.rpm
rpm -ivh ksh*.rpm
 
Under System / Administration / Date and Time
choose Synchronize date and time over the network

Use your local time server or add these servers if you have internet access:
time-a.nist.gov
time-b.nist.gov

Edit hosts file and have this servers entry:
<ip address>      <fqdn>                 <shortname>

Add Oracle user and oinstall group:
groupadd -g 500 oinstall
useradd -u 500 -g 500 -d /home/oracle -s /bin/bash oracle

*NOTE* if the OS user was created with the userid and groupid of 500, login as root then perform
Example if OS was installed with userid jsmith
userdel jsmith
rmdir /home/jsmith
groupadd -g 2000 jsmith
useradd -u 2000 -g 2000 -d /home/jsmith -s /bin/bash jsmith
Login as the user to test:
su - jsmith

Login as Oracle to have profile created:
su - oracle
exit

vi /etc/security/limits.conf          (just above EOF)
                oracle soft nproc 2047
                oracle hard nproc 16384
                oracle soft nofile 1024
                oracle hard nofile 65536
 
add line to /etc/sudoers:              (can be removed after install, I do not have a detailed list of all binaries oracle needs for sudo, service command is known)
                oracle ALL=(ALL) NOPASSWD: ALL

Update iptables to allow 443 / 8443 traffic (/etc/sysconfig/iptables)
-A INPUT -p tcp -m state --state NEW -m tcp --dport 8443 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 8444 -j ACCEPT
*nat
:PREROUTING ACCEPT
:POSTROUTING ACCEPT
:OUTPUT ACCEPT
-A PREROUTING -i eth0 -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 8443
-A PREROUTING -i eth0 -p tcp -m tcp --dport 444 -j REDIRECT --to-ports 8444

disable selinux:
vi /etc/selinux/config
                change enforcing to disabled, requires reboot.

reboot

After the steps above are completed the RSA Via Lifecycle and Governance software can be copied to the host and the installation can be performed.

Related Articles

Trending Articles

Don't see what you're looking for?