Sametime from the Administrator side Andy Higgins, IMCollaboration
Sametime Administration• Server Administration • Setup • Management• User Administration • Buddylist conversion • Stand-alone or Embedded – it makes a difference • Plugins
Server Administration - Setup• Check out “Sametime – zero to hero”• LDAP “mail” attribute• WAS properties and Wimconfig• LDAP with SSL• Ports used – e.g. SIP registration uses 5080/5081• Foreign characters in passwords• Windows 2008 IPv6 issues – make sure it’s turned off• Make sure the servers are all pingable• On Windows 2008 server “Run as Admin”
ST – server deployment and upgradesOrder of deployment• Upgrade to LDAP-based ST Community 8.5.2 server first (with mail attribute!) and convert buddylist• DB2 server• ST Console – register Community server with Console• ST Meeting server• ST proxy server can go on Console server• ST Media server should go on it’s own server• All servers at least dual proc with 4GB RAM – meeting (DB2) server needs disk space
Server Administration - Management• Policies – they’ve been moved• WAS management - similar to Domino • Deployment Manager, Nodes and Application servers – how do they work with Sametime? • Security – allows directory authentication, searching and SSL certificate management • Users and Groups • Debug • Media server is special • SPNEGO authentication
Websphere CELLA Cell is a virtual unit that is built of a Deployment Manager and one or more nodes.
WAS - explainedThe Deployment Manager is a process (in fact it is an special WebSphere instance) responsible for managing theinstallation and maintenance of Applications, Connection Pools and other resources related to a J2EE environment. Itis also responsible for centralizing user repositories for application and also for WebSphere authentication andauthorization.The Deployment Manager communicates with the Nodes through another special WebSphere process, the NodeAgent.The Node is another virtual unit that is built of a Node Agent and one or more Server instances.The Node Agent it the process responsible for spawning and killing server processes and also responsible forconfiguration synchronization between the Deployment Manager and the Node. Extra care must be taken whenchanging security configurations for the cell, since communication between Deployment Manager and Node Agent isciphered and secured when security is enabled, Node Agent needs to have configuration fully resynchronized whenimpacting changes are made to Cell security configuration.Servers are regular Java process responsible for serving J2EE requests (eg.: serving JSP/JSF pages, serving EJBcalls, consuming JMS queues, etc).And to finish, Clusters are also virtual units that groups Servers so resources added to the Cluster are propagated toevery Server that makes up the cluster, this will in fact affect usually more than a single Node instance.Thanks to Rafael Ribeiro from IT Developer World !!
User Administration - buddylistBuddylist conversion – ST convertBuddylist manipulation (www.epilio.com)Ensure you set PC.ini for: • Buddylists from server buddyListContactPref=replaceLocal • Don’t ask the user showBuddyListConflictDialog=false
User Administration client configurationRolling out users• Stand-alone client • Push methods: Plugin_Customization.ini & Managed_settings.xml• Embedded client • Notes 8.5.2 embeds ST 8.0.2 by default • Need additional embedded plugin for ST 852 • Push methods: Plugin_Customization.ini & Managed_settings.xml • Additional push options – Domino Policy & Eclipse advanced options
User administrationUser setup• Domino Policy (embedded only) – manages the ST community server and the SSO policy• Plugin_customization.ini • Case sensitive!! • Special for 126.96.36.199• Managed_settings.xml• Sametime policy – manages other ST parameters
Domino ST PolicySametime community server defined here
Domino ST IM policySametime server defined here with SSO options tooThe policies here were for older versions of the embedded client and today the wayto do it is using plugin_customization.ini
Resetting the community server This will work for both stand-alone and embedded users but is actually the only way you can force the change on the Stand-alone client without a re-install
Key change in V188.8.131.52 ST clientThere was a key change made in the latest Sametime184.108.40.206 client which allows the plugin_customization.inito be read during the Notes client startup vs only onetime when the client is reset. This allowsadministrators to push out the plugin_customization.inito the client and when the client restarts, itll read thefile.So in effect, the best way to manage these settings aswe move forwards is with the plugin_customization.inifile
Policy - EclipseI haven’t seen these work successfully yet
Plugin_Customization.iniFile found in “C:LotusNotesframeworkrcp” for embedded clientor “C:LotusSametime Connectrcp” for standalone clientcom.ibm.collaboration.realtime.community/savePassword=falsecom.ibm.collaboration.realtime.community/loginByToken=truecom.ibm.collaboration.realtime.community/loginAtStartup=truecom.ibm.collaboration.realtime.community/name=STCommunitycom.ibm.collaboration.realtime.meetings/hideLegacyMeetingUI=truecom.ibm.collaboration.realtime.community/host=community.server.comcom.ibm.rcp.managedsettings.provider.file/URL=http://community.server.com/sametime/managed-settings.xmlcom.ibm.collaboration.realtime.community/defaultAuthType=TAM_SPNEGOcom.ibm.collaboration.realtime.community/authServerUrl=http://auth.server.com/snoop/snoopcom.ibm.collaboration.realtime.community/useAuthServer=trueAdditional question to IBM – which managed-settings do we use when we have onehere in the PC.ini file and there is one in ST policies too?
Sametime policies• User must set this community as the default server community• Allow user to add multiple server communities• Allow user to add external users using Sametime Gateway communities• Allow user to save chat transcripts• Automatically save chat transcripts• Etc….
PluginsCheck out this link:Deploying Plug-ins and Widgets for Lotus Notes and Sametime
WAS install issuesCheck out this link to IBM documentation on WAS install errors
Using the ConsoleA good link to Console information