How do I deploy BMC Remedy Encryption Premium Security to an ADDM Appliance?

Version 5
    Share:|

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    BMC Discovery


    COMPONENT:

    BMC Atrium Discovery and Dependency Mapping


    APPLIES TO:

    BMC Atrium Discovery and Dependency Mapping



    QUESTION:

    Question:

    The doc at https://docs.bmc.com/docs/display/disco102/System+communications says:

    "The encryption that comes with the AR Server is the Standard Encryption 512-bit public key/56-bit DES encryption on the wire. If a customer acquired the higher levels of Remedy Encryption (a separate product), then the customer could obtain either 1024-bit public key/128-bit RC4 or 2048-bit public key/2048-bit RC4 encryption."

    The documentation at https://docs.bmc.com/docs/display/public/ars81/Installing+encryption+on+non-BMC+Remedy+applications explains that modified AR libraries have to be deployed to client applications, such as ADDM, to use BMC Remedy Encryption.

    How do I deploy BMC Remedy Encryption Premium Security to an ADDM Appliance?


    ANSWER:

     

    Legacy ID:KA391351

    Instructions for ADDM/Discovery 10.2 and Later:

      

    Note: Make sure that access is available to the AR server from mid-tier as well as from AR client without any error.
     
    To deploy the "BMC Remedy Encryption Client" libraries to the ADDM client, perform the following.
     
    1) From the EPD site, download "BMC Remedy Encryption Premium Security" (required version) for Linux. The file name is PremiumSecurityLinux[version].tar.gz.

    2) Upload the file to a temp directory on the ADDM appliance. Use gunzip and tar to extract the "PremiumSecurity" directory and its contents.

    3) Create the directory "/usr/tideway/PremiumSecurity". Inside that directory, create the file "options.txt" containing the following lines:

    -P installLocation=/usr/local/PremiumSecurity
    -J ENCRYPTION_SYSTEM_JRE_PATH=/usr/local/java/jre
    -J DATAIMPORTTOOL_FOR_ENCRYPTION=true
      
    4) su - root

    5) Stop the ADDM services from the command line as user root:

        /sbin/service tideway stop

    6) Make /tmp executable, as follows:
    cd /etc
    vi fstab  (edit fstab)
    remove "noexec" option from the /tmp entry
    Save fstab file and exit the editor

    ## Now, remount /tmp to make the change effective:
    mount -o remount,exec /tmp
     
    7) Still as root, navigate to the temp directory created in step 2. From here, cd to PremiumSecurity/Disk1 and run the installer as follows:
     
     ./PremiumSecurity.bin -i silent -DOPTIONS_FILE=/usr/tideway/PremiumSecurity/options.txt
     
    Note: You must specify the full path to the option file you created in step 3.
     
    The installation process populates files including the following in directory /usr/local/PremiumSecurity:
    Libraries: libarencrypt.so, libcrypto.so
    Java “JAR” files: jsafeJCEFIPS.jar, bcprov-jdk15-133.jar
    These files will be used copied to their correct locations in the following steps

    8) Still as root:
     cp /usr/local/PremiumSecurity/PremiumEncryption/*.jar /usr/local/java/jre/
     
    9) Exit the session created by su’ing to root and perform the following as user tideway: 
     
    As tideway user:
      cp /usr/local/PremiumSecurity/PremiumEncryption/lib*.so /usr/tideway/java/integrations/lib
      cp /usr/local/PremiumSecurity/PremiumEncryption/ldap/*.so /usr/tideway/java/integrations/lib
      sudo /sbin/service tideway start
     
    10) As tideway user, Restart ADDM services:
      sudo /sbin/service tideway restart


     

      

    Instructions for ADDM/Discovery 10.1 and Earlier:

      

    (This earlier version uses the "java32" directory instead of "java")

      

    Note: Make sure that access is available to the AR server from mid-tier as well as from AR client without any error.
     
    To deploy the "BMC Remedy Encryption Client" libraries to the ADDM client, perform the following.
     
    1) From the EPD site, download "BMC Remedy Encryption Premium Security" (required version) for Linux. The file name is PremiumSecurityLinux[version].tar.gz.

    2) Upload the file to a temp directory on the ADDM appliance. Use gunzip and tar to extract the "PremiumSecurity" directory and its contents.

    3) Create the directory "/usr/tideway/PremiumSecurity". Inside that directory, create the file "options.txt" containing the following lines:

    -P installLocation=/usr/local/PremiumSecurity
    -J ENCRYPTION_SYSTEM_JRE_PATH=/usr/local/java32/jre
    -J DATAIMPORTTOOL_FOR_ENCRYPTION=true
      
    4) su - root

    5) Stop the ADDM services from the command line as user root:

        /sbin/service tideway stop

    6) Omit / Nothing to do for this step
     
    7) still as root,  navigate to the temp directory created in step 2. From here, cd to PremiumSecurity/Disk1 run the installer as follows:
     
     ./PremiumSecurity.bin -i silent -DOPTIONS_FILE=/usr/tideway/PremiumSecurity/options.txt
     
    Note: You must specify the full path to the option file you created in step 3.
     
    The installation process populates files including the following in directory /usr/local/PremiumSecurity:
    Libraries: libarencrypt.so, libcrypto.so
    Java “JAR” files: jsafeJCEFIPS.jar, bcprov-jdk15-133.jar
    These files will be used copied to their correct locations in the following steps

    8) Still as root:
     cp /usr/local/PremiumSecurity/PremiumEncryption/*.jar /usr/local/java32/jre/
     
    9) Exit the session created by su’ing to root and perform the following as user tideway: 
     
    As tideway user:
      cp /usr/local/PremiumSecurity/PremiumEncryption/lib*.so /usr/tideway/java/integrations/lib
      cp /usr/local/PremiumSecurity/PremiumEncryption/ldap/*.so /usr/tideway/java/integrations/lib
      sudo /sbin/service tideway start
     
    10) As tideway user, Restart ADDM services:
      sudo /sbin/service tideway restart

     


    Article Number:

    000028313


    Article Type:

    FAQ/Procedural



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles