Completing the installation - PingDirectory - 9.1


PingDirectory 9.1

Regardless of whether you are installing Delegated Admin in a Unix or Linux or Windows environment, perform the relevant steps in this section after you complete the previous OS-specific tasks.

PingDirectoryProxy Server


The following task assumes that when you ran the setup command, you answered y to the question Is Delegated Admin being installed in a topology containing PingDirectoryProxy?

If you are installing Delegated Admin on PingDirectoryProxy Server, you must configure the Proxy instance using the delegated-admin-for-proxy.dsconfig script as described in All locations except PingDirectoryProxy Server.

To configure all instances of PingDirectory Server:

  1. Apply the commands from the delegated-admin.dsconfig batch file to all instances of PingDirectory Server.
    $ ./bin/dsconfig \
      --bindDN "cn=Directory Manager" \
      --bindPassword <password>
      --no-prompt \
      --batch-file webapps/delegator/delegated-admin.dsconfig \
      --applyChangeTo server-group
  2. Apply the commands from the delegated-admin.dsconfig batch file to all instances of PingDirectory Server, as explained in Replicated instances of PingDirectory Server.

Replicated instances of PingDirectory Server

If you are installing Delegated Admin on one or more replicated instances of PingDirectory Server:

  • Apply the following commands in delegated-admin.dsconfig to each instance:
    $ ./bin/dsconfig \
      --bindDN "cn=Directory Manager" \
      --bindPassword <password>
      --no-prompt \
      --batch-file webapps/delegator/delegated-admin.dsconfig  \
      --applyChangeTo server-group

External web server


The following steps assume that when you ran the setup command, you answered n to the question Will the web app be hosted in PingDirectory?

To install Delegated Admin on an external web server:

  1. Open config.js in a text editor.
  2. Change the variable values to specify the location of PingDirectory Server.
    config.js Variable Value


    Host name of PingDirectory Server


    HTTPS port of PingDirectory Server

    To view an example outline that features these settings, see example.config.js.

  3. Save your changes to config.js.
  4. Create a CORS policy for the Delegated Admin HTTP servlet extension, where <origin> represents the public name of the host, proxy, or load balancer that presents the Delegated Admin web application:
    dsconfig create-http-servlet-cross-origin-policy 
      --policy-name "Delegated Admin Cross-Origin Policy" 
      --set "cors-allowed-methods: GET" 
      --set "cors-allowed-methods: OPTIONS" 
      --set "cors-allowed-methods: POST" 
      --set "cors-allowed-methods: DELETE" 
      --set "cors-allowed-methods: PATCH" 
      --set "cors-allowed-origins: <origin>"
    dsconfig set-http-servlet-extension-prop 
      --extension-name "Delegated Admin" 
      --set "cross-origin-policy:Delegated Admin Cross-Origin Policy"
  5. Optional: If you will be enabling admins to run Delegated Admin reports in your configuration, run dsconfig with the set-http-servlet-cross-origin-policy-prop option:
    dsconfig set-http-servlet-cross-origin-policy-prop \ 
      --policy-name "Delegated Admin Cross-Origin Policy" \ 
      --set cors-exposed-headers:Content-Disposition

All locations except PingDirectoryProxy Server

To continue installing Delegated Admin on a PingDirectory Server or an external web server:

  • Run the following command with delegated-admin.dsconfig on the appropriate server:
    $ ./bin/dsconfig \
      --bindDN "cn=Directory Manager" \
      --bindPassword <password>
      --no-prompt \
      --batch-file webapps/delegator/delegated-admin.dsconfig

Next steps


You cannot sign on to Delegated Admin until you configure the rights of the delegated administrators. For more information about configuring administrative rights, the REST resource type, session timeout values, and other properties, see Configuring Delegated Admin.

After you configure Delegated Admin, verify that the application is installed and working successfully.