Step 3. Deploy AM
Deploying AM creates a default configuration you can access as AM’s administrative user, amAdmin
.
Deploy AM into Apache Tomcat and configure it for use:
-
Copy the AM
.war
file to deploy in Apache Tomcat asam.war
:$ cp AM-8.0.1.war /path/to/tomcat/webapps/am.war
It can take Apache Tomcat several seconds to deploy AM.
-
Go to the deployed AM application. For example,
http://am.example.com:8080/am
. -
On the initial configuration page, click Create New Configuration.
-
Review the software license agreement. If you agree to the license, click I accept the license agreement, and click Continue.
-
Set the Default User [amAdmin] password to
changeit
, and click Next.Don’t use this password when configuring AM for real-world use. It is only to get started with AM. The amAdmin
user is the default AM administrator, who has full control over the AM configuration. -
On the Server Settings page, enter the following details and click Next:
- Server URL
-
http://am.example.com:8080
- Cookie Domain
-
am.example.com
- Platform Locale
-
en_US
- Configuration Directory
-
<$HOME>/am
making sure you replace<$HOME>
with the full path to your$HOME
directory.
-
On the Configuration Data Store Settings page, enter the following details and click Next:
- SSL/TLS Enabled
-
Select this option to use LDAPS to communicate with the configuration store. DS is configured for LDAPS by default.
- Host Name
-
ds.example.com
- Port
-
1636
- Encryption Key
-
Keep the randomly generated key.
- Root Suffix
-
ou=am-config
- Login ID
-
uid=am-config,ou=admins,ou=am-config
- Password
-
5up35tr0ng
- Server configuration
-
Leave the
New deployment
option selected.
-
On the User Data Store page, enter the following details and click Next:
- User Data Store Type
-
Leave the
ForgeRock Directory Services (DS)
option selected. - SSL/TLS Enabled
-
Select this option to use a secure connection.
- Directory Name
-
ds.example.com
- Port
-
1636
- Root Suffix
-
ou=identities
- Login ID
-
uid=am-identity-bind-account,ou=admins,ou=identities
- Password
-
5up35tr0ng
-
On the Site Configuration page, leave the
No
option selected and click Next. -
Check the details on the Configurator Summary page.
-
If anything needs changing, click Previous to return to earlier pages and update as needed.
-
If everything is correct, click Create Configuration to proceed. The configuration progress is shown in the browser and also output to the installation log.
If your installation fails, find troubleshooting advice in Troubleshoot installations. -
-
When the configuration process completes, click Proceed to Login, and log in as the
amAdmin
administrator with the password you configured in a previous step,changeit
.After logging in, the Realms page is displayed.
AM stores its configuration in a directory named after the deployment URI. For example, if AM is deployed under
/am
, it saves its configuration under$HOME/am/
.AM is now configured, and ready for use.
-
After successfully logging in to the AM admin UI, proceed to Step 4. Configure AM.