For an automated installation, run the PingDataGovernance Policy Administration GUI’s setup command in noninteractive, command-line mode.
You must run setup in noninteractive, command-line mode instead of interactive mode if you need to do any of the following:
- Configure the Policy Administration GUI with a policy configuration key.
- Configure a key store for a policy information provider.
- Configure a trust store for a policy information provider.
- Customize the Policy Administration GUI’s logging behavior.
For more information, see Specifying custom configuration with an options file.
Before you run setup, you must choose one of the two
following authentication modes for the PingDataGovernance Policy Administration
Configures the PingDataGovernance Policy Administration GUI to use form-based authentication with a fixed set of credentials. Unlike OIDC mode, this mode does not require an external authentication server. However, it is inherently insecure and is recommended only for demonstration purposes.
OpenID Connect (OIDC) mode
Configures the PingDataGovernance Policy Administration GUI to delegate authentication and sign-on services to an OpenID Connect provider, such as PingFederate.
If you choose OIDC mode, be prepared to provide the following additional
The host name and port of an OpenID Connect provider or its base URL
The location of a trust store for the OpenID Connect provider, if the OpenID Connect provider uses a server certificate not issued by a certificate authority not trusted by the JRE
If you do not use the setup tool to generate a self-signed
certificate, you must also provide the following:
Information related to the PingDataGovernance Policy Administration GUI’s connection security, including the location of a keystore that contains the server certificate and the nickname of that server certificate.
The setup tool’s
--helpoption displays the options available for a noninteractive installation.
Run the correct command based on your needs:
If you do not want to use the default database credentials, see Setting database credentials at initial setup.
- To see the general options for running
$ bin/setup --help
- To see the options for running setup in demo
$ bin/setup demo --help
- To see the options for running setup in OIDC
$ bin/setup oidc --help
- To see the general options for running setup:
Copy and record any generated values needed to configure external
The Shared Secret is used in PingDataGovernance, under .
To start the Policy Administration GUI, or policy administration point (PAP),
The Policy Administration GUI runs in the background, so you can close the terminal window in which it was started without interrupting it.
- After you complete setup, see Post-setup steps (manual installation).
- Consider additional configuration options in Specifying custom configuration with an options file.