Skip navigation
All People > Patrick-Dussault > Patrick Dussault's Blog
1 2 3 4 Previous Next

Patrick Dussault's Blog

57 posts

To be able to read a .mdmp file (Mini Dump), you need to have
installed the dumpchk.exe command. This one can be accessible after
installing "Windows 10 SDK" if your Laptop runs Windows 10.

You will be able to get the winsdksetup.exe from here :

 

Windows 10 SDK
https://developer.microsoft.com/en-US/windows/downloads/windows-10-sdk

 

After installing the package, you'll be able to produce a report
(report.txt) by running dumpchk.exe against the .mdmp file.

 

C:\> "C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\dumpchk.exe" "C:\Users\myname\hs_err.mdmp" > c:\report.txt


Loading dump file C:\Users\maname\hs_err.mdmp

c:\report.txt is an ASCII file with details of the
dump.

How to know the exact Windows version from command line and put it in
a file :

 

c:\> systeminfo | findstr /B /C:"OS Name" /C:"OS Version" > version.txt

Fast Tracks to install and configure Web Agent 12.52SP1CR07 64bit on Apache 2.4.25-9 64bit on CentOS 7

 

Installing these files on CentOS 7

 

ca-wa-12.52-sp01-cr07-linux-x86-64.bin

 

on

 

httpd24-httpd-2.4.25-9.el7.x86_64.rpm

 

Install the following rpm (you might have to change the order !)

 

# rpm -Uvh policycoreutils-python-2.5-17.1.el7.x86_64.rpm
# rpm -Uvh audit-libs-python-2.7.6-3.el7.x86_64.rpm
# rpm -Uvh checkpolicy-2.5-4.el7.x86_64.rpm
# rpm -Uvh python-IPy-0.75-6.el7.noarch.rpm
# rpm -Uvh setools-libs-3.3.8-1.1.el7.x86_64.rpm
# rpm -Uvh libcgroup-0.41-13.el7.x86_64.rpm
# rpm -Uvh libsemanage-python-2.5-8.el7.x86_64.rpm
# rpm -Uvh httpd24-runtime-1.1-18.el7.x86_64.rpm
# rpm -Uvh scl-utils-20130529-17.el7_1.x86_64.rpm
# rpm -Uvh httpd24-runtime-1.1-18.el7.x86_64.rpm
# rpm -Uvh httpd24-libnghttp2-1.7.1-6.el7.x86_64.rpm
# rpm -Uvh httpd24-httpd-tools-2.4.25-9.el7.x86_64.rpm
# rpm -Uvh httpd24-httpd-2.4.25-9.el7.x86_64.rpm
# rpm -Uvh httpd24-httpd-manual-2.4.25-9.el7.noarch.rpm

 

Apache will be installed by default here :

/opt/rh/httpd24/root/etc/httpd/

 

Test that the Apache server runs fine

# service httpd24-httpd configtest
# service httpd24-httpd start
# ps auxww | grep httpd

root 7211 0.0 0.3 264764 6656 ? Ss 10:49 0:00 /opt/rh/httpd24/root/usr/sbin/httpd -DFOREGROUND
apache 7212 0.0 0.2 281156 3856 ? Sl 10:49 0:00 /opt/rh/httpd24/root/usr/sbin/httpd -DFOREGROUND

[...]

 

Then run the Web Agent installer as root :

 

# ./ca-wa-12.52-sp01-cr07-linux-x86-64.bin -i console

 

Pre-Installation Summary
------------------------

Please Review the Following Before Continuing:

Product Name:
CA SiteMinder Web Agent

Install Folder:
/opt/CA/webagent

Disk Space Information (for Installation Target):
Required: 416,008,316 Bytes
Available: 2,834,628,608 Bytes

Congratulations. CA SiteMinder Web Agent has been successfully installed to:

/opt/CA/webagent


To configure the web agent, run the command

/opt/CA/webagent/install_config_info/ca-wa-config.bin

 

And I run the configurator that way :

 

# source /opt/CA/webagent/ca_wa_env.sh
# /opt/CA/webagent/install_config_info/ca-wa-config.bin -i console


===============================================================================
Select Web Server(s)
--------------------

Select which Web Server(s) you want to configure as a Web Agent.

You will have to enter a path for each selected web server.

Note: If you have an Apache-based Web server, please select the Apache Web
Server option.

1- Apache Web Server
2- Domino Web Server
->3- iPlanet or Sun ONE Web Server

ENTER A COMMA-SEPARATED LIST OF NUMBERS REPRESENTING THE DESIRED CHOICES, OR
PRESS <ENTER> TO ACCEPT THE DEFAULT: 1

===============================================================================
Apache Web Server path
----------------------

Enter the root path of where Apache Web server installed.

Please enter path (Default: ): /opt/rh/httpd24/root/etc/httpd/

===============================================================================
Apache Version
--------------

Please select a choice for the Apache version.

1- Apache version 1.x
2- Apache version 2.x
3- Apache version 2.2.x
4- Apache version 2.4.x

ENTER THE NUMBER OF THE DESIRED CHOICE: 4

===============================================================================
Apache Server Type
------------------

Please select one of the following appropriately match your previous selection

1- Oracle HTTP Server
2- IBM HTTP Server
3- HP Apache
4- ASF/RedHat Apache
5- RedHat JWS HTTP Server

ENTER THE NUMBER OF THE DESIRED CHOICE: 4

===============================================================================
Select Web Server(s)
--------------------

1- [] Apache 2.4.6

Select the web server(s) you wish to preserve or configure/reconfigure as
Web Agent(s). Enter a comma-separated list of numbers representing the
desired choices. Already configured web servers are marked as [x] in the
above list, you can un-configure or skip these web servers in next steps by
not listing them in comma-separated list here.: 1

 

Congratulations! CA SiteMinder Web Agent Configuration has been successfully
configured.

 

Check that Web Agent is configured on the right Apache server

 

Check that the httpd.conf has been configured :

 

# less /opt/rh/httpd24/root/etc/httpd/conf/httpd.conf

 

# LoadModule foo_module modules/mod_foo.so
LoadModule sm_module "/opt/CA/webagent/bin/libmod_sm24.so"
SmInitFile "/opt/rh/httpd24/root/etc/httpd//conf/WebAgent.conf"

 

Check that the WebAgent.conf file is correctly set :

# less /opt/rh/httpd24/root/etc/httpd/conf/

 

# WebAgent.conf - configuration file for SiteMinder Web Agent
# Web Agent Version = 12.52, Build = 2259, Update = 1.7

LOCALE=en-US

#agentname="<AgentName>, <IPAddress>"
HostConfigFile="/opt/CA/webagent/config/SmHost.conf"
AgentConfigObject="casino"
EnableWebAgent="NO"
ServerPath="/opt/rh/httpd24/root/etc/httpd//conf"
#localconfigfile="/opt/rh/httpd24/root/etc/httpd//conf/LocalConfig.conf"
LoadPlugin="/opt/CA/webagent/bin/libHttpPlugin.so"

 

Add the env variables to the httpd config file to get the
apache with the Web Agent running

 

# nano -w /opt/rh/httpd24/root/etc/sysconfig/httpd

 

NETE_WA_ROOT=/opt/CA/webagent
NETE_WA_PATH=/opt/CA/webagent/bin
CAPKIHOME=/opt/CA/webagent/CAPKI
LD_LIBRARY_PATH=/usr/lib64:/opt/CA/webagent/bin:/opt/CA/webagent/bin/thirdparty
PATH=/opt/CA/webagent/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin

 

ref. : https://comm.support.ca.com/kb/systemctl-and-web-agent-startup-settings-for-red-hat-apache-web-server-24x/kb000004165

 

Start the Apache server with the Web Agent :

 

# service httpd24-httpd stop
# service httpd24-httpd start

# ps auxww

 

root 20155 0.0 0.5 303772 9840 ? Ss 12:26 0:00 /opt/rh/httpd24/root/usr/sbin/httpd -DFOREGROUND
apache 20167 0.4 0.9 316052 17896 ? Ssl 12:26 0:01 LLAWP /opt/rh/httpd24/root/etc/httpd//conf/WebAgent.conf -APACHE24
apache 20187 0.0 0.2 320300 4284 ? Sl 12:26 0:00 /opt/rh/httpd24/root/usr/sbin/httpd -DFOREGROUND

 

[...]

 

Here are fast tracks to configure on Linux a Session Store ODBC :

 

# unzip oracle-xe-11.2.0-1.0.x86_64.rpm.zip
# rpm -Uvh Disk1/oracle-xe-11.2.0-1.0.x86_64.rpm
# Specify the HTTP port that will be used for Oracle Application Express [8080]: 8181
# Specify a port that will be used for the database listener [1521]:
# Specify a password to be used for database accounts. Note that the same
password will be used for SYS and SYSTEM. Oracle recommends the use of
different passwords for each database account. This can be done after
initial configuration:password
Confirm the password:password
# Do you want Oracle Database 11g Express Edition to be started on boot (y/n) [y]:y

Starting Oracle Net Listener...Done
Configuring database...Done
Starting Oracle Database 11g Express Edition instance...Done
Installation completed successfully.

 

# source /u01/app/oracle/product/11.2.0/xe/bin/oracle_env.sh
# sqlplus system

 

Create the SMUSER, which will be used in the Policy Server
configuration in order to connect to the database, give to this user
all needed permissions, and verify that everything has been set :

 

SQL> create user SMUSER identified by CAdemo123;
SQL > CREATE SMALLFILE TABLESPACE "SESSIONSTORE" DATAFILE '/u01/app/oracle/oradata/XE/sessionstore.dbf' SIZE 100M AUTOEXTEND ON NEXT 100M MAXSIZE 8G LOGGING DEFAULT NOCOMPRESS ONLINE EXTENT MANAGEMENT LOCAL AUTOALLOCATE SEGMENT SPACE MANAGEMENT AUTO;
SQL> alter user SMUSER default tablespace SESSIONSTORE temporary tablespace temp;
SQL> GRANT CREATE SESSION TO SMUSER WITH ADMIN OPTION;
SQL> GRANT CONNECT TO SMUSER;
SQL> GRANT CONNECT, RESOURCE, DBA TO SMUSER;
SQL> GRANT UNLIMITED TABLESPACE TO SMUSER;

 

Check that the user SMUSER as been correctly configured with the
expected tablespace :

 

SQL> select USERNAME, DEFAULT_TABLESPACE from DBA_USERS;

USERNAME DEFAULT_TABLESPACE
------------------------------ ------------------------------
SMUSER SESSIONSTORE

 

Check that the database has charset AL32UTF8 configured :

 

SQL> SELECT * FROM nls_database_parameters;
PARAMETER
------------------------------
VALUE
--------------------------------------------------------------------------------
NLS_ISO_CURRENCY
AMERICA

NLS_NUMERIC_CHARACTERS
.,

NLS_CHARACTERSET
AL32UTF8

 

Then, import the Session Store data structure into the tablespace. Run

the command as root :

 

# sqlplus SMUSER/CAdemo123@XE @/opt/CA/siteminder/db/SQL/sm_oracle_ss.sql

 

Then configure the Policy Server system_odbc.ini as per this sample :

 

[My Session Data Source]
Driver=/opt/CA/siteminder/odbc/lib/NSora27.so
Description=DataDirect 7.1 Oracle Wire Protocol
HostName=duspa01-u161157.ca.com
PortNumber=1521
LoginID=SMUSER
Password=mypassword
ServiceName=XE
#SID=XE
CatalogOptions=0
ProcedureRetResults=0
EnableDescribeParam=0
EnableStaticCursorsForLongData=0
ApplicationUsingThreads=1
DMCleanup=2

How to compile and run php module with Apache 2.4.16 compiled on RedHat 7.

 

We assume Apache is compiled and installed in /opt/apache2416

 

As root :

 

# cd /root/download
# wget http://at2.php.net/distributions/php-7.2.10.tar.bz2.asc
# wget http://at2.php.net/distributions/php-7.2.10.tar.bz2
# bunzip2 php-7.2.10.tar.bz2
# tar -xvf php-7.2.10.tar
# cd php-7.2.10
# ./configure --with-apxs2=/opt/apache2416/bin/apxs --prefix=/opt/php
# make
# make install

 

php module for apache will be installed here :

 

/opt/apache2416/modules/libphp7.so

 

and added to httpd.conf as

LoadModule php7_module modules/libphp7.so

 

# nano -w /opt/apache2416/conf/httpd.conf

 

and add in section

 

<IfModule mime_module>

 

the following line :

 

AddType application/x-httpd-php .php

 

Now to start apache to execute php 7 as module, modify the environment variable as :

 

# export PATH=/opt/php/bin:${PATH}

 

Then start Apache and all .php file should be interpreted before the
result is sent to the browser !

 

# /opt/apache2416/bin/apachectl start

If you want to get the right version of the IIS installed on Windows, look at the value of :

 

HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \InetStp\ VersionString value

 

REF.: http://forums.iis.net/p/1171695/2014083.aspx

// Go to the Oracle Directory Server installation binary directory :

 

# cd /opt/dsee7/bin

 

// Check the cache configuration, in this illustration, it is at 32Mb

# ./dsconf get-server-prop -h10.130.248.143 -p389 db-cache-size

Enter "cn=Directory Manager" password:

db-cache-size  :  32M

 

// Make the cache setting modifyable

# ./dsconf set-suffix-prop -h10.130.248.143 -p389 "ou=Netegrity,dc=training,dc=com"  entry-cache-mode:manual

 

// Increase the case object amount to 100000

# ./dsconf set-suffix-prop -h10.130.248.143 -p389 "ou=Netegrity,dc=training,dc=com" entry-cache-count:100000

 

// Increase the size of the cache to 1Gb

# ./dsconf set-suffix-prop -h10.130.248.143 -p389 "ou=Netegrity,dc=training,dc=com" entry-cache-size:1024M

 

// Check that the changes has been applied

# ./dsconf get-suffix-prop -h10.130.248.143 -p389 "ou=Netegrity,dc=training,dc=com"  entry-cache-count entry-cache-size

Enter "cn=Directory Manager" password:

entry-cache-count  :  100000

entry-cache-size   :  1G

 

// Modify the ids threashold to increase the number of entries matching the index key

# ./dsconf set-server-prop -h10.130.248.143 -p389 all-ids-threshold:40000

Enter "cn=Directory Manager" password:

Reindex all suffixes for changes to take effect.

 

// Re-index the Policy Store

./dsconf reindex -h 10.130.248.143 -p 389 -e "ou=Netegrity,dc=training,dc=com"

 

// Re-index the XPS Store (you will need to stop the Policy Store)

./dsadm reindex -bl -t "Sort xpsSortKey" /opt/dsee7/local/ps1252 PolicySvr4

./dsadm reindex -bl -t "Sort modifyTimestamp" /opt/dsee7/local/ps1252 PolicySvr4

If you like to export the Windows Policy Server Registry to an ascii file, here is the command :

c:\> reg export HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Netegrity\SiteMinder siteminder.txt

Remove the Wow6432Node if OS is 32bit or if the Policy Server is 64bit

 

All the Policy Server registry setting will be in siteminder.txt

 

On Unix / Linux :

 

All the Policy Server registry is already in the sm.registry file :

 

{policyserver_home}/registry/sm.registry

On my Linux box, I get the following error when I run the command

 

# rpm -qa

 

rpmdb: Thread/process 277623/140429100390144 failed: Thread died in Berkeley DB library
error: db3 error(-30974) from dbenv->failchk: DB_RUNRECOVERY: Fatal error, run database recovery
error: cannot open Packages index using db3 - (-30974)
error: cannot open Packages database in /var/lib/rpm
CRITICAL:yum.verbose.cli.yumcompletets:Yum Error: Error: rpmdb open failed

How can I fix this ?

 

According to this page, you can fix it like that :

 

# mkdir /var/lib/rpm/backup
# cp -a /var/lib/rpm/__db* /var/lib/rpm/backup/
# rm -f /var/lib/rpm/__db.[0-9][0-9]*
# rpm --quiet -qa
# rpm --rebuilddb
# yum clean all

 

Fix rpmdb: Thread died in Berkeley DB library
https://cloudlinux.zendesk.com/hc/en-us/articles/115004075294-Fix-rpmdb-Thread-died-in-Berkeley-DB-library

Here a single command to install all prereq for SiteMinder 12.52SP1 32bit on RedHat 6 :

 

for i in libstdc++ libXau libxcb compat-libtermcap libidn compat-db compat-db42 compat-db43 libX11 libXrender expat libfreetype libfontconfig libICE libuuid libSM libXext compat-libstdc++ compat-db libXi libXtst libXft libXt libXp; do yum -y install $i.i686 ; done;

Issue

 

I run the rpm command on Linux and the install stops because it's
missing some dependencies. How can I install it without any
consideration about the dependencies ?

 

I've got 2 packages that are needed one to the other :

 

[root@localhost Packages]# rpm -i nss-softokn-freebl-3.28.3-6.el7.i686.rpm --force
warning: nss-softokn-freebl-3.28.3-6.el7.i686.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY
error: Failed dependencies:
libc.so.6 is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.0) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.1) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.1.3) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.3) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.3.4) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libc.so.6(GLIBC_2.4) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libdl.so.2 is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libdl.so.2(GLIBC_2.0) is needed by nss-softokn-freebl-3.28.3-6.el7.i686
libdl.so.2(GLIBC_2.1) is needed by nss-softokn-freebl-3.28.3-6.el7.i686

 

[root@localhost Packages]# rpm -Uvh glibc-2.17-196.el7.i686.rpm
warning: glibc-2.17-196.el7.i686.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY
error: Failed dependencies:
libfreebl3.so is needed by glibc-2.17-196.el7.i686
libfreebl3.so(NSSRAWHASH_3.12.3) is needed by glibc-2.17-196.el7.i686

 

Solution :

 

Run the rpm command with the switches --force --nodeps on one of the
package, and then install the second one to solve this issue.

 

[root@localhost download]# rpm -fi nss-softokn-freebl-3.28.3-6.el7.i686.rpm --force --nodeps

Use the switch -x in order to have the bash script command line
included in ca-wa-12.51-cr08-sol.bin.

 

To illustrate when running Web Agent installer as root :

 

# bash -x ./ca-wa-12.51-cr08-sol.bin -i console > output.txt 2>&1

 

You'll find all script debug line in output.txt

[root@duspa01-I12261 debug]# /opt/apache2429/bin/ab -n 100000 -c 10 http://localhost/

 

This is ApacheBench, Version 2.3 <$Revision: 1807734 $>
Copyright 1996 Adam Twiss, Zeus Technology Ltd, http://www.zeustech.net/
Licensed to The Apache Software Foundation, http://www.apache.org/

Benchmarking localhost (be patient)
Completed 10000 requests
Completed 20000 requests
Completed 30000 requests
Completed 40000 requests
Completed 50000 requests
Completed 60000 requests
Completed 70000 requests
Completed 80000 requests
Completed 90000 requests
Completed 100000 requests
Finished 100000 requests


Server Software: Apache/2.4.29
Server Hostname: localhost
Server Port: 80

Document Path: /
Document Length: 45 bytes

Concurrency Level: 10
Time taken for tests: 98.186 seconds
Complete requests: 100000
Failed requests: 0
Total transferred: 28900000 bytes
HTML transferred: 4500000 bytes
Requests per second: 1018.47 [#/sec] (mean)
Time per request: 9.819 [ms] (mean)
Time per request: 0.982 [ms] (mean, across all concurrent requests)
Transfer rate: 287.44 [Kbytes/sec] received

Connection Times (ms)
min mean[+/-sd] median max
Connect: 0 0 0.1 0 2
Processing: 1 10 5.8 9 37
Waiting: 0 10 5.8 9 36
Total: 1 10 5.8 9 37

Percentage of the requests served within a certain time (ms)
50% 9
66% 10
75% 12
80% 13
90% 19
95% 20
98% 22
99% 23
100% 37 (longest request)

Here's a sample of ldapsearch command line to get all attributes from a specific user :

 

ldapsearch -h ldap_server_ip -p ldap_port -b "dc=training,dc=com" -D "administrator_dn_to_connect_to_ldap" -w administrator_password -x "(uid=the_uid_value)"