192 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
WebSphere Application Server Performance Cookbook
Wed, Dec 7th 2016 31
Encrypting WebSphere Application Server system passwords
Tue, Dec 6th 2016 46
IBM BPM - Process Designer and the Mysterious Case of the Hostname
Mon, Dec 5th 2016 50
Troubleshooting Web Services Performance Problems In IBM WebSphere Application Server With Web Services Performance (WSPerf) Trace
Mon, Dec 5th 2016 47
IBM BPM and the Bootstrap Process - Sigh, one day I'll get this right
Mon, Dec 5th 2016 66
Note to self - monitoring User Limits in GNU Linux
Mon, Nov 28th 2016 60
Apple Calendar - Dealing with Spam invitations
Fri, Nov 25th 2016 69
Top 10
WebSphere Application Server - Managing Profiles and Server Names
Fri, Nov 25th 2016 73
Apple Calendar - Dealing with Spam invitations
Fri, Nov 25th 2016 69
IBM BPM and the Bootstrap Process - Sigh, one day I'll get this right
Mon, Dec 5th 2016 66
Note to self - monitoring User Limits in GNU Linux
Mon, Nov 28th 2016 60
Hmmm, macOS Sierra and XQuartz and X11
Thu, Oct 27th 2016 50
IBM BPM - Process Designer and the Mysterious Case of the Hostname
Mon, Dec 5th 2016 50
WebSphere Application Server - Using Java to manage WAS via SOAP over HTTPS
Tue, Nov 15th 2016 49
Executing external Python/Jython scripts from within WebSphere Application Server's wsadmin tool
Thu, Feb 27th 2014 47
Troubleshooting Web Services Performance Problems In IBM WebSphere Application Server With Web Services Performance (WSPerf) Trace
Mon, Dec 5th 2016 47
Encrypting WebSphere Application Server system passwords
Tue, Dec 6th 2016 46


Dave Hay
Blog Title A Portal to a Portal
Blog Description In the words of Dr Cathy Ryan, "If you don't write it down, it never happened". The postings on this site are my own and don’t necessarily represent IBM’s positions, strategies or opinions. My blog is PERSONAL, and is a repository of the stuff that I learn, play with, enjoy and want to share. If you follow one of my tips, your mileage MAY well vary - Here be dragons :-)
Blog URL http://portal2portal.blogspot.com
RSS Feed http://portal2portal.blogspot.com/feeds/posts/default?alt=rss
Validate Feed feedvalidator.org or validator.w3.org
Feed Last Checked Dec 07, 2016 7:30:16 AM EST. Realtime Update:
Location UK


Recent Blog Posts
31
WebSphere Application Server Performance Cookbook
Wed, Dec 7th 2016 7:25a   Dave Hay
I'm not sure if I've posted this before, but it's worth a read, either way: -The WebSphere Application Server Performance Cookbook covers performance tuning for WebSphere Application Server (WAS), although there is also a very strong focus on Java, Operating Systems, and theory which can be applied to other products and environments. The cookbook is designed to be read in a few different ways: • On the go: Readers short on time should skip to the Recipes chapter at the end of the book. In t
46
Encrypting WebSphere Application Server system passwords
Tue, Dec 6th 2016 7:51a   Dave Hay
This from one of my IBM colleagues, Martin Lansche: -...It seems that every day we are bombarded with stories in the technical and mainstream press of attacks of computer systems where passwords are stolen, after which these passwords are then available to attackers. The press frequently points out that one reason that this password data was retrievable is because "it was not encrypted." In this situation, it's important to recognize that the passwords in question are user passwords, those us
50
IBM BPM - Process Designer and the Mysterious Case of the Hostname
Mon, Dec 5th 2016 8:20p   Dave Hay
I saw this: -and this: -[05/12/16 19:29:23:233 GMT] 0000024b HttpProtocolH W com.ibm.bpm.endpoint.impl.strategies.HttpProtocolHostStrategy getEndpointUrl Unable to construct URL because servlet request argument was null[05/12/16 19:29:23:274 GMT] 0000024b HttpProtocolH W com.ibm.bpm.endpoint.impl.strategies.HttpProtocolHostStrategy getEndpointUrl Unable to construct URL because servlet request argument was null[05/12/16 19:29:23:335 GMT] 0000024b HttpProtocolH W com.ibm.bpm.endpoint.impl.strateg
47
Troubleshooting Web Services Performance Problems In IBM WebSphere Application Server With Web Services Performance (WSPerf) Trace
Mon, Dec 5th 2016 6:38p   Dave Hay
This is my current "think" as I'm digging into some BPM performance challenges: -Troubleshooting Web Services Performance Problems In IBM WebSphere Application Server With Web Services Performance (WSPerf) TraceThe WSPerf trace is a feature of IBM WebSphere Application Server. The WSPerf is a troubleshooting aid to assist analysts to resolve web services problems, especially performance problems. WSPerf trace can be used to analyze the speed of web services message traffic in IBM's WebSphere
66
IBM BPM and the Bootstrap Process - Sigh, one day I'll get this right
Mon, Dec 5th 2016 4:57p   Dave Hay
So, again, *IF* I ever see this again: -/opt/IBM/WebSphereProfiles/Dmgr01/bin/bootstrapProcessServerData.sh -clusterName AppClusterBootstraping data into cluster AppClusterWASX7357I: By request, this scripting client is not connected to any server process. Certain configuration and application operations will be available in local mode.java.lang.Exception: java.lang.reflect.InvocationTargetException at com.ibm.bpm.bootstrap.BootstrapProcessServerDataHelper.loadInstallationGuid(BootstrapProcessSe
60
Note to self - monitoring User Limits in GNU Linux
Mon, Nov 28th 2016 9:01a   Dave Hay
This came up last week, and is something that I need to keep an eye on.These are some of the commands that one can/should use to monitor ulimit use on a Linux box: -ps -eLfps -eTfps -Tp `pidof java`top -H -p `pidof java`pstree -p `pidof java`for pid in $(pgrep java); do ls /proc/$pid/fd | wc -l; done
69
Apple Calendar - Dealing with Spam invitations
Fri, Nov 25th 2016 2:56p   Dave Hay
So I keep receiving spam calendar invitations to my Apple Calendar, on iOS and macOS, which is a nuisance.Thankfully, I found this: -Log in to iCloud on the web, open your calendar, and go to ⚙ > Preferences. Under Advanced, you'll find an option to receive calendar invitations by email instead of straight into your calendar.Q: How do I block spam calendar invitation emails?Ok so this works. Create a new calendar (Calendar/File/New Calendar) then open the bogus invite, you should see a dro
73
WebSphere Application Server - Managing Profiles and Server Names
Fri, Nov 25th 2016 2:19p   Dave Hay
This is in the context of managing profiles in WebSphere Application Server, using the manageprofiles.sh command.A friend asked me how he could set the name of a specific server instance ( think JVM ) when he was creating a profile …This is what I told him: -/opt/ibm/WebSphere/AppServer/bin/manageprofiles.sh -profilePath /opt/ibm/WebSphere/AppServer/profiles/diesel -enableService false -nodeName chugger -serverName hst125 -profileName diesel -create -cellName trainsRcool -enableAdminSecurity f
44
Windows 7 - An Update on Updates
Fri, Nov 18th 2016 10:03a   Dave Hay
Acting in my role as my family's IT Crowd representative, I ran an errand of mercy yesterday to help recover a Windows 7 PC that was failing to properly run up.It was booting OK, but was tremendously slow, and it's owner was unable to access the internet ( aka Internet Explorer ).The PC hadn't been booted up for a month or so, and there were a series of overlapping issues, one of which was that the Norton Anti-Virus tool was (a) out-of-date and (b) expired.In parallel, Windows Update hadn't
33
Cool your hot entities in IBM ODM Decision Server Insights
Tue, Nov 15th 2016 4:23p   Dave Hay
This was authored by two of my IBM colleagues, Nigel Crowther and Jonathon CarrCool your hot entities in IBM ODM Decision Server InsightsIn any high-volume event processing system, such as Decision Server Insights in IBM® Operational Decision Manager (ODM), an entity instance referenced by thousands of events is a "hot entity." Hot entities slow down processing, becoming the sole consumer of events within the system. This situation effectively reduces an entire multi-processing grid to wait f
34
Book Review - OpenStack in Action by Cody Bumgardner
Tue, Nov 15th 2016 9:25a   Dave Hay
This is another of my semi-regular book reviews for the British Computer Society, who kindly provided me with a free copy of this book, in ePub format.OpenStack in Action by Cody BumgardnerWhether you call it serendipity or just-in-time, the timing of the offer to review this book was perfect, in that I was looking at OpenStack, in order to better understand and position it to my clients and peers.Therefore, this book ticked all the right boxes for me, in terms of allowing me to get a context an
49
WebSphere Application Server - Using Java to manage WAS via SOAP over HTTPS
Tue, Nov 15th 2016 7:38a   Dave Hay
This has come from a requirement to create a custom Java class to interact with the WAS Deployment Manager via SOAP over HTTPS. The wrinkle comes because the target WAS cell is secured using: -Transport Layer Security (TLS) 1.2Strong ECDHE/GCM ciphersMutual AuthenticationThis is the relevant portion of the security.xml file: - And this is the code that I'm using to prove the concept: -import java.util.*;import javax.management.ObjectName;import com.ibm.websphere.management.configservice.
30
Repost - Using "IBM Pattern Modeling and Analysis Tool for Java Garbage Collector" to Analyze IBM Business Process Manager JVM Memory Usage and Garbage Collections
Tue, Nov 15th 2016 6:38a   Dave Hay
I'm reposting this: -Using "IBM Pattern Modeling and Analysis Tool for Java Garbage Collector" to Analyze IBM Business Process Manager JVM Memory Usage and Garbage Collections…As you know IBM Business Process Manager is built upon Java technology whose performance is highly impacted by garbage collection. Usually IBM Business Process Manager would recommend to use generational concurrent garbage collection strategy (-Xgcpolicy:gencon) which is well suited to an application that creates many
27
Aide Memoire - Tinkering with WS-Security and IBM BPM Advanced 8.5.7
Fri, Nov 11th 2016 7:00a   Dave Hay
This is an ongoing Work-in-Progress, as I strive to understand how WS-Security works, specifically in terms of sending SOAP requests into IBM BPM Advanced 8.5.7.My server code is very very simple; merely a SCA Export, with a Web Service / SOAP Binding, connecting into a SCA/BPEL component. The BPEL code includes a Java snippet which then converts the incoming Business Object into UTF-8 and outputs it to the log.In order to set WS-Security headers on the SOAP request ( my client is SoapUI ), I'm
28
IBM Installation Manager - Files for Rollback
Thu, Nov 10th 2016 11:09a   Dave Hay
Purely as a matter of interest, I wanted to see where IBM Installation Manager (IIM) keeps the binary files that one might choose to use to rollback an installation.The amount of space being used can be inferred by driving IIM in command-line mode: -/opt/ibm/InstallationManager/eclipse/tools/imcl -C=====> IBM Installation ManagerSelect: 1. Install - Install software packages 2. Update - Find and install updates and fixes to installed software packages 3. Modify - Change installed
17
Synology NAS - From My Mac, Via SSH
Tue, Nov 8th 2016 10:49a   Dave Hay
I'm definitely NOT new to this party, but I was remarkably impressed with how easy it was to setup SSH between my Mac and my Synology NAS, avoiding the need for me to use my password each and every time I log in.I followed this: -Manually generating your SSH key in Mac OS Xand this: -Log in to a Synology DiskStation using SSH keys as a user other than rootThis is what I did on the Mac: -ssh-keygen -t rsato generate a public/private key pair.I then used this: -pbcopy < ~/.ssh/id_rsa.pubto cop
18
DB2 on Windows - Ready for the next time
Thu, Nov 3rd 2016 9:48a   Dave Hay
A few weeks back, I helped a friend resolve an issue with IBM Integration Designer (IID) on Windows, whereby he found that the DB2 component, intrinsic to the IID Integration Test Environment (ITE), was failing to start.Long story short, even though he'd installed IID and the ITE with a user ID that had administration privileges, the DB2 user - db2admin - wasn't able to start the required DB2 services.We proved this by attempting to start the DB2 services via the Services Control Panel ( servi
21
IBM Java 1.8 on Linux - Nice and Silent
Mon, Oct 31st 2016 7:32a   Dave Hay
I'm tinkering with IBM UrbanCode Deploy (UCD) 6.2.2 on a Linux box, and needed to get IBM Java installed before starting out.Following this: -Completing an unattended installationthis is what I did: -vi ~/installer.properties INSTALLER_UI=silent USER_INSTALL_DIR=/opt/IBM/JavaLICENSE_ACCEPTED=TRUEexport _JAVA_OPTIONS="-Dlax.debug.level=3 -Dlax.debug.all=true"export LAX_DEBUG=1./ibm-java-sdk-8.0-3.12-x86_64-archive.bin -i silent -f installer.properties 1>console.txt 2>&1which resulted
14
WebSphere Application Server 9 - Snooping About
Fri, Oct 28th 2016 2:38a   Dave Hay
I've blogged about SuperSnoop in the past: -WebSphere Application Server - Liberty Profile - Oh, what funso this is just an aide memoire in the context of WebSphere Application Server (WAS) 9.I've been tested scripted installations of WAS 9 on Linux, as per a previous post: -WebSphere Application Server 9 - More from the command-lineToday I'm switching between WAS Base and WAS ND, so this is part of my testing process.So here goes….Start WSAdmin Scripting Tool/opt/IBM/WebSphere/AppServer/pr
22
To unzip or not to unzip - Or the simplest solution is often the right solution
Thu, Oct 27th 2016 11:19a   Dave Hay
I was stressing as to why I couldn't expand a ZIP archive downloaded from IBM: --rw-r--r-- 1 hayd staff 1414823936 27 Oct 14:36 /Volumes/DaveHaySSD/Software/WAS9/Product/WAS_ND_V9.0_MP_ML.zipwhich contains the WebSphere Application Server (WAS) Network Deployment V9.0 media.This was what I was doing: -unzip WAS_ND_V9.0_MP_ML.zip -d /tmp/WAS9and this is what I was seeing: -Archive: WAS_ND_V9.0_MP_ML.zip End-of-central-directory signature not found. Either this file is not a zipfile, or it
19
WebSphere Application Server 9 - More from the command-line
Thu, Oct 27th 2016 9:22a   Dave Hay
Catching up with the latest version of WebSphere Application Server (WAS), namely version 9, on a Linux VM.I followed this: -V9.0: Download WebSphere Application Server Version 9 from Passport Advantage Online to download the product, plus the latest fixes from here: -IBM Fix Central - WebSphere, WebSphere Application Server (9.0.0.0, Linux 64-bit,x86_64)Specifically, I'm installing WAS 9 plus the latest fix pack, aka WAS 9.0.0.1.This is what I've have downloaded: -Product-rwxrwxrwx 1 admin us
50
Hmmm, macOS Sierra and XQuartz and X11
Thu, Oct 27th 2016 9:21a   Dave Hay
I've not dug too far into this, but something has changed in the world of X11 forwarding between macOS and Linux, since I upgraded my Macs to macOS Sierra.In the past, as long as I had XQuartz installed: -I was able to happily tunnel over X11 between macOS and Linux, using a command such as: -ssh -X wasadmin@was9001but, since the update to Sierra, I see this: -ssh -X wasadmin@was9001which returns: -wasadmin@192.168.1.109's password: Warning: untrusted X11 forwarding setup failed: xauth key dat
13
WebSphere Application Server and Network File System (NFS)
Tue, Oct 25th 2016 11:29a   Dave Hay
This came up in discussion today, so I thought I'd x-post some relevant links, as I know I'll need them again: -Network File System (NFS) Recommendations for WebSphere Application Server to AVOID DATA LOSS…NFS v4 is commonly used as a reliable storage for the following components of WebSphere Application Server:…The following table lists mount options that are required. They are not exclusive but other options should not negate these.Option Description-t nfs4 Forces NFS v4 to prevent any p
22
Redbook - Essentials of Cloud Application Development on IBM Bluemix
Tue, Oct 25th 2016 7:31a   Dave Hay
This newly published Redbook has been on my to-read list for a while now: -Essentials of Cloud Application Development on IBM BluemixThis IBM® Redbooks® publication is based on the Presentations Guide of the course "Essentials of Cloud Application Development on IBM Bluemix" that was developed by the IBM Redbooks team in partnership with IBM Middle East and Africa (MEA) University Program.This course is designed to teach university students the basic skills that are required to develop, depl
19
Redbook - Deliver Modern UI for IBM BPM with the Coach Framework and Other Approaches
Tue, Oct 25th 2016 7:30a   Dave Hay
One of my IBM colleagues shared this via Slack earlier: -Deliver Modern UI for IBM BPM with the Coach Framework and Other ApproachesIBM® Coach Framework is a key component of the IBM Business Process Manager (BPM) platform that enables custom user interfaces to be easily embedded within business process solutions. Developer tools enable process authors to rapidly create a compelling user experience (UI) that can be delivered to desktop and mobile devices. IBM Process Portal, used by business op
19
IBM SoftLayer - VPN Client showing "Incorrect username or password"
Mon, Oct 24th 2016 10:52a   Dave Hay
For context, I'm connecting to IBM SoftLayer using the ArraySSL VPN client, as per this: -SSL VPN for Mac OS X 10.10This is via a Mac running macOS Sierra 10.12.Having pumped in the target SoftLayer service, and my credentials, I saw this: -upon login.This baffled me for a time, especially as I couldn't find any reference to a Login Method called localdb.To debug it, I started the VPN client from a command line: -~/Downloads/ArraySSLVPN/ArraySSLVPN.app/Contents/MacOS/ArraySSLVPN specifically s
15
com.ibm.wsspi.runtime.variable.UndefinedVariableException: Undefined variable HOST
Tue, Oct 18th 2016 11:05a   Dave Hay
I saw this today on a newly built ODM Rules box ( using Red Hat Enterprise Linux 6.6 )SystemOut.log...[10/18/16 15:44:36:553 BST] 00000001 WsServerImpl E WSVR0100W: An error occurred initializing, Node1-DSServer [class com.ibm.ws.runtime.component.ServerImpl]com.ibm.ws.exception.ConfigurationError: com.ibm.wsspi.runtime.variable.UndefinedVariableException: Undefined variable HOST at com.ibm.ws.security.core.distSecurityComponentImpl.initialize(distSecurityComponentImpl.java:415) at com.ibm.ws
12
Increase logging with a custom policy for IBM DataPower in the API Connect assembly
Sat, Oct 15th 2016 12:12p   Dave Hay
This article has been written by two of my IBM colleagues, and is definitely worth a look: -Increase logging with a custom policy for IBM DataPower in the API Connect assemblyWhen you design and develop custom integration policies, you need to be alerted to any problems with your policies. By defining a custom logging policy to log the values of context variables, you can be quickly alerted to where policies might be malfunctioning so that you can correct any errors.This tutorial describes a use
6
Puppet - Encoding passwords
Sun, Oct 9th 2016 2:21a   Dave Hay
Following my earlier post: -I've started to tinker with the password encoding used within my Puppet manifests, including: -/etc/puppetlabs/code/environments/production/manifests/site.pp Examples I found include: -openssl passwdPassword: Verifying - Password: wSUVRODxRh59Qopenssl passwd -1Password: Verifying - Password: $1$QHrozUY1$J8uvUgRx6V3jCqRC3q2wJ/openssl passwd -apr1Password: Verifying - Password: $apr1$7o9oTmrU$g9YnU1GJAD2LyHSTx7QSn.openssl passwd -apr1 -salt h0rseb4tt3ryst4pl3Password:
9
Messing about with Puppet - It Begins
Fri, Oct 7th 2016 3:28p   Dave Hay
So, today I learned Puppet …. :-)Well, to be more honest, I've started to tinker with Puppet, using it to … create a group and a user on a Linux server :-)Initially, I started with a mixture of Linux boxes; one Ubuntu 16.04 and one Red Hat 6.6.This may have led to my confusion ….So I started again with a pair of Red Hat 6.6 boxes.In both cases, I added the appropriate Red Hat Enterprise Linux 6 repository ( el-6 ): -sudo rpm -Uvh https://yum.puppetlabs.com/puppetlabs-release-pc1-el-6.noar
13
Red Hat Enterprise Linux 6.6 - Creating a local Yum repo - really really fast
Fri, Oct 7th 2016 11:07a   Dave Hay
Just the best bits because I've written about this before: -Adding a local Yum repository to Red Hat Enterprise Linux 6.2Red Hat Enterprise Linux 6.3 - Creating a local Yum Repositoryfrom whence one can infer the context.mount /dev/cdrom /mnt/cat /etc/redhat-releaseRed Hat Enterprise Linux Server release 6.6 (Santiago)rpm -ivh /mnt/Packages/deltarpm-3.5-0.5.20090913git.el6.x86_64.rpmrpm -ivh /mnt/Packages/python-deltarpm-3.5-0.5.20090913git.el6.x86_64.rpmrpm -ivh /mnt/Packages/createrepo-0.9.9-
10
IBM InterConnect 2017 Call for Speakers is here!
Fri, Oct 7th 2016 7:47a   Dave Hay
IBM InterConnect 2017 Call for Speakers is here!Submit your paper for IBM InterConnect 2017 -- IBM's conference dedicated to the education and development skills needed to elevate your business with Cloud. This year's curriculum will focus on Cloud, Hybrid, Internet of Things, Cognitive, Security, Managed Services and much more. Tell us about your best practices, deliver implementation insights, or share your industry story!Why speak at InterConnect 2017?Selected speakers may be eligible to re
11
Java on Windows - Why bitness matters
Tue, Oct 4th 2016 4:06a   Dave Hay
I kept seeing this: -whilst trying to start Eclipse Juno which I'd downloaded as eclipse-jee-juno-SR2-win32-x86_64.zipI'm using a 64-bit version of Windows Server 2008 R2I did wonder whether the problem was related to the version of Java installed: -java -versionjava version "1.8.0_101"Java(TM) SE Runtime Environment (build 1.8.0_101-b13)Java HotSpot(TM) Client VM (build 25.101-b13, mixed mode)java -fullversionjava full version "1.8.0_101-b13"so I headed over here: -Java Downloads for All
14
Essentials of Cloud Application Development on IBM Bluemix
Tue, Oct 4th 2016 2:29a   Dave Hay
Essentials of Cloud Application Development on IBM BluemixThis course is designed to teach university students the basic skills that are required to develop, deploy, and test cloud-based applications that use the IBM Bluemix® cloud services.After completing this course, you should be able to accomplish these tasks: • Describe the factors that lead to the adoption of cloud computing. • Describe infrastructure as a service, platform as a service, and software as a service. • Define cloud co
8
IBM ODM Rules on Liberty on Docker - Tracing the RES
Thu, Sep 29th 2016 2:09p   Dave Hay
One of my friends challenged me to work out how to enable a more detailed trace for IBM ODM Rules, running on WebSphere Liberty Profile.I've written a bit about ODM on Liberty, both with and without Docker, recently: -Integrate Docker in your IBM Operational Decision Manager environmentIBM Operational Decision Manager - Running it on WebSphere Liberty Profile on DockerIBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And there's moreIBM Operational Decision
15
IBM Business Process Manager - More Cookie Fun
Thu, Sep 29th 2016 6:02a   Dave Hay
Following this earlier post: -IBM HTTP Server - Securing CookiesI've been tinkering further with cookies, in the context of IHS and, as importantly, IBM BPM Advanced.I'm running BPM on WebSphere Application Server (WAS) 8.5.5.10, and using the corresponding version of IHS and the WebSphere Plugin.Having implemented my earlier suggestion: -LoadModule headers_module modules/mod_headers.soHeader set Set-Cookie HttpOnly;Securethings appeared to work ….However, I did find that, in the context of
18
Reminder - Project WOMBAT - Project Artifact Analyzer for IBM BPM and IBM Business Monitor
Thu, Sep 22nd 2016 3:38p   Dave Hay
This tool looks at project archives and artifacts and identifies potential troublespots in these applications.IBM WOMBAT - Project Artifact Analyzer for IBM BPM and IBM Business MonitorAnd it runs on Bluemix :-)Plus the forum here: -This community is a way for users and developers of IBM BPM and IBM Business Monitor to interact with the team behind IBM Wombat (aka The Analyzer).
20
How can IBM Business Process Manager capabilities be exposed in an internet facing deployment?
Wed, Sep 21st 2016 1:22a   Dave Hay
This IBM Technote: -Internet facing deployment of IBM Business Process Managerhas the latest ( as of August 2016 ) position on the oft vexing question about using IBM BPM for internet-facing solutions: -QuestionHow can IBM Business Process Manager capabilities be exposed in an internet facing deployment?CauseIntroductionIBM Business Process Manager is a powerful process development platform - designed to allow business analysts to model process flows and user interface elements in a single packa
17
IBM HTTP Server - Securing Cookies
Tue, Sep 20th 2016 4:10a   Dave Hay
The question of secured cookies has arisen recently, where a security penetration test identified a potential risk of cookies being exposed in the clear.Specifically, this relates to cookies that pass through the IBM HTTP Server web server.Whilst one would expect the application tier ( in our case, WebSphere Application Server ) to secure cookies, such as the JSESSIONID cookie: -An even more dangerous yet subtle problem with using the HTTP session for security is that the session cookie (JSESSIO
24
IBM Operational Decision Manager - Running Decision Center on WebSphere Liberty Profile on Windows
Thu, Sep 15th 2016 10:48a   Dave Hay
This is yet another Work-In-Progress, and reflects my current obsession with WebSphere Liberty Profile: -IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on DockerIBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And there's moreIBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And finallySo today's challenge ( well, it was yesterday but that's not important right now ) was to coach a colleague
19
IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And finally
Wed, Sep 7th 2016 12:24a   Dave Hay
Following my earlier two posts: -IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on DockerIBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And there's moreI've now added the Decision Service WAR to the Liberty build, allowing me to test my Rule Services via SOAP and REST, providing the Hosted Transformation Decision Service (HTDS) capability.This is what I now have in server.xml : - servlet-3.1 jsp-2.3 jdbc-4.1 appSecurity-
11
IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker - And there's more
Tue, Sep 6th 2016 2:35p   Dave Hay
So following my earlier post: -IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on DockerI noticed that the Rule Execution Server ( Decision Server ) and Rule Team Server ( Decision Center ) capabilities weren't quite working as I'd expected.Given that the original developerWorks article: -Integrate Docker in your IBM Operational Decision Manager environmentwas written for an older version of ODM ( 8.7.1 whereas I have 8.8.1 ), I reviewed the IBM Knowledge Center here
19
CRIMA1209E whilst using IBM Installation Manager from the command-line
Tue, Sep 6th 2016 6:55a   Dave Hay
As ever, I am tinkering with technology …This time, it's the use of IBM Installation Manager (IIM) to install IBM Operational Decision Manager (ODM) 8.8.1 on Linux, via the command-line, rather than using a response file.I'd previously unpacked the ODM media to a temporary directory: -ls -l /Volumes/DaveHaySSD/Software/ODM88/total 14601656-rw-r--r--@ 1 davidhay staff 2545807360 29 Jul 10:22 ODM_8.8.1_FOR_LNX_32_64B_DISK1_ML.tar-rw-r--r--@ 1 davidhay staff 2609827840 29 Jul 10:26 ODM_8.8.
9
To Docker ... And Beyond ....
Tue, Sep 6th 2016 6:19a   Dave Hay
These two articles are on my reading list: -Build and extend Docker container images with middleware functionsTo transition an IT environment to the cloud, enterprises are using container technology, primarily Docker containers. This approach helps to streamline resource consumption and further automate operational processes. At the same time, several services are required to support enterprise-grade business applications, that is, the existing middleware functions. Such services can apply to in
16
Tinkering with WebSphere Application Server v9 - Part Two
Sun, Sep 4th 2016 12:46a   Dave Hay
Following on from my earlier post: -Tinkering with WebSphere Application Server v9 - Part OneI've made much better progress with WAS 9, which is nice :-)So here's my installation response file: -installWAS9.rsp from which I installed the IBM Installation Manager (IIM), WAS and Java binaries: -/tmp/im/tools/imcl -input installWAS9.rsp -acceptLicenseInstalled com.ibm.cic.agent_1.8.5000.20160506_1125 to the /opt/IBM/Installatio
11
IBM Operational Decision Manager - Running it on WebSphere Liberty Profile on Docker
Sat, Sep 3rd 2016 3:49p   Dave Hay
ContextIn this article, I build and run a Docker Container, using an image created using WebSphere Liberty Profile 8.5.5 and IBM Operational Decision Manager Advanced 8.8.1.This is based upon an excellent developerWorks article: -Integrate Docker in your IBM Operational Decision Manager environmentThe major differences are: -(a) I'm running this natively using Docker 1.12.0a on MacOS 11 ( the article used Docker 1.8.1 )(b) using a later version of ODM ( the article used 8.7.1 )As per the articl
10
Docker - Moving Images between Servers
Sat, Sep 3rd 2016 3:43p   Dave Hay
Another in the series of Docker-flavoured articles. I am using Docker on MacOS, and had a requirement to move an image from one host to another.In terms of Docker version, I'm using the native version ( rather than Boot2Docker, VirtualBox etc. ) : -docker version Client: Version: 1.12.0 API version: 1.24 Go version: go1.6.3 Git commit: 8eab29e Built: Thu Jul 28 21:15:28 2016 OS/Arch: darwin/amd64Server: Version: 1.12.0 API version: 1.24 Go version: go1.6.3 Git comm
12
Tinkering with WebSphere Application Server v9 - Part One
Sat, Sep 3rd 2016 11:24a   Dave Hay
This is the first of, I'm sure, many posts relating to WAS v9I started by downloading the product from the IBM internal equivalent of Passport Advantage, using this: -V9.0: Download WebSphere Application Server Network Deployment Version 9 from Passport Advantage OnlineHowever, I stupidly ONLY downloaded WAS itself, via the part number: -CND1LMLwithout realising that: -(i) I needed IBM Installation Manager (IIM) 1.8.5(ii) I did NOT have a copy of IIM 1.8.5:-)That was the first problem ….Once
10
Book Review - Mastering Puppet Second Edition by Thomas Uphill
Fri, Sep 2nd 2016 3:09p   Dave Hay
This is another in my infrequent series of book reviews, working in collaboration with the British Computer Society: -Mastering Puppet Second Edition by Thomas UphillI'm currently investing some personal time in getting up-to-speed with some of the fundamental tools of Developer-Operations, aka DevOps, including Docker, UrbanCode Deploy, Git, OpenStack, Jenkins, Chef and, in this context, Puppet.There are, of course, overlaps between some of these tools, so I was interested to get a better unde
13
IBM BPM 8.5.7 - WSVR0009E during startup
Fri, Sep 2nd 2016 8:55a   Dave Hay
I saw this after a clean build of an IBM BPM Advanced 8.5.7 Deployment Environment ( this is a single-server deployment, for an IBM Integration Designer build ): -...[02/09/16 12:39:36:799 BST] 00000001 WsServerImpl E WSVR0009E: Error occurred during startupcom.ibm.ws.exception.RuntimeError: Failed to query the BPM version from database [jdbc/PerformanceDB]. Please check the ffdc log for detail information. For fresh installation scenario, please run the database initialization scripts under
11
More on Docker - this time it's IBM DataPower Gateway
Fri, Sep 2nd 2016 8:11a   Dave Hay
One of my colleagues kindly drew my attention to this nice little set of tutorials, which take one through using the IBM DataPower Gateway (IDG) on Docker: -Start With DockerExperience the CLI and WebUIYour first configurationwhich is excellent, as I'm definitely on the on-ramp for Docker and IBM Containers and, equally importantly, I wanted to learn more about DataPower.Having downloaded the image: -docker imagesREPOSITORY TAG IMAGE ID CREATED
7
IBM Installation Manager - Encoding Passwords
Thu, Sep 1st 2016 10:54a   Dave Hay
I'm creating a response file to install IBM Integration Designer (IID) 8.5.7 on a Windows 7 VM.As part of this, I'm installing DB2 Express under the covers, and need a password for the account to be used as the DB2 administrator.This password needs to be encoded, which I do within the response file.Thankfully, IBM Installation Manager (IIM) has a mechanism to do this: -"c:IBMInstallation Managereclipsetoolsimutilsc.exe" -silent -nosplash encryptString p455w0rdwhich returns this: -ZvkXmP226gF
12
VMware Fusion - Shared Folders and Administrator
Thu, Sep 1st 2016 9:48a   Dave Hay
I was wondering why my VMware Shared Folder ( mounted as Z: ) wasn't available to my Windows 7 VM *BUT* only when opened a command-prompt as Administrator ( via Run As Administrator ).When I logged into the VM, I did so as a non-administrative user.As far as I can establish, under the covers, the Shared Folder is mounted ( using the native Windows Server Message Block - SMB - protocol / drive ).It appears that this means that the drive ( Z: ) is only available to the logged-in user.This may be
13
Moving past Docker on Mac, IBM Containers on Bluemix
Wed, Aug 31st 2016 7:36a   Dave Hay
Having tinkered with WebSphere Liberty Profile on Docker over the past few days, as per recent posts to this blog, I wanted to go one stage further, and recreate a similar WLP / application on IBM Containers, which runs on IBM Bluemix.I'm definitely on the on-ramp for Bluemix, and the learning curve still looks rather steep …But here goes….Download and Install PrerequisitesBluemix_CLI_0.4.1.pkgcf-cli-installer_6.21.1_osx.pkgDockerToolbox-1.12.0.pkg SourcesDeploying your app with the command
10
Docker and Liberty - Scripting it
Tue, Aug 30th 2016 8:30a   Dave Hay
Next, I wanted to create a mechanism to allow me to automate the use of WebSphere Liberty Profile on Docker, with a view to creating a little process to: -(1) Create a Docker container from an existing WLP image(2) Deploy a simple web application ( I'm using Ferret, which is akin to good old Snoop from here )(3) Monitor the WLP logs(4) Run a basic functional test(5) Stop the container once testing has completed(6) Remove the containerso this is with what I came up: -Start a Container and assign
6
WebSphere Liberty Profile on Docker - Where are my logs ?
Tue, Aug 30th 2016 4:21a   Dave Hay
As per previous posts, I'm tinkering with Docker, using WebSphere Liberty Profile as my starting pointOne thing that was confusing me was the lack of Liberty logging ….In "normal" Liberty, the logs are here: -ls -al ~/wlp/usr/servers/defaultServer/logs/total 344drwxr-x--- 5 davidhay staff 170 28 Aug 05:34 .drwxr-x--- 9 davidhay staff 306 27 Aug 10:14 ..-rw-r----- 1 davidhay staff 47608 28 Aug 05:34 console.log-rw-r----- 1 davidhay staff 123862 28 Aug 05:34 messages.logdrw
7
WebSphere Application Server and IBM HTTP Server Security Bulletin List
Tue, Aug 30th 2016 3:17a   Dave Hay
This, via one of my IBM Germany friends QuestionIs there a list that contains the security bulletins that apply to WebSphere Application Server and IBM HTTP Server?AnswerThe following table is provided to help you locate WebSphere Application Server and IBM HTTP Server security bulletins.Note that the IBM Java runtime included with WebSphere Application Server provides an execution environment for non-IBM code. While the below table includes all IBM Java vulnerabilities related to the WebSphere
11
CWWKF1219E: The IBM WebSphere Liberty Repository cannot be reacher
Mon, Aug 29th 2016 4:12a   Dave Hay
This one has been bugging me for a day or so: -docker build -t websphere-liberty:artifactory ....Step 6 : RUN installUtility testConnection ---> Running in 40c4586b857eTesting the connection to all configured repositories ...This process might take several minutes to complete.Configured Repositories----------------------------------------------------------------------Name: IBM WebSphere Liberty Repository (Default Assets Repository)Status: Failed to connect to the configured repository.Reason
9
Microsoft Works 2000 to Microsoft Excel 2003 - LibreOffice has the answer
Sun, Aug 28th 2016 12:54p   Dave Hay
So I've given away the plot, to misquote Kenny Everett … One of my family members had a spreadsheet, which she was struggling to open in Microsoft Excel.Originally, the spreadsheet had been created in Microsoft Works 2000, on Windows 98.Time has moved on ...Now we have Excel, as part of Office 2003, which doesn't appear to have an import filter for Works.The internet was full of solutions, including a less-than-helpful Microsoft article: -Works: How to import and export Works spreadsheets to
16
Jenkins and Chef Compared - Someone else's PoV
Sun, Aug 28th 2016 1:00a   Dave Hay
I'm thinking about DevOps, after a weekend of tinkering with WebSphere Liberty Profile and Docker.So I asked the internet about Jenkins and Chef, and this is someone's PoV: -Jenkins is a continuous integration server, it's goal is to allow you to build and test the software you develop. The main strength of Jenkins are: • Integration with source control (SVN, Git, ...) • Integration with build systems (sometimes thru plugins), e.g. Maven for Java, XCode for iOS development, ... • Worker
13
Error "com.sun.jersey.core.spi.scanning.ScannerException" seen whilst using Artifactory on WebSphere Liberty Profile
Sat, Aug 27th 2016 5:17a   Dave Hay
I'm tinkering with a new (to me) tool, JFrog Artifactory, which is a Universal Repository Manager, on IBM WebSphere Liberty Profile (WLP).My objective is to run Artifactory on WLP within a Docker container.However, I wanted to ensure that it worked on WLP, before adding the additional "complexity" of Docker.This is in line with my "Make a change, test a change" approach to life, the universe, and everything.I'm doing this on my Mac using the latest version of WLP: -wlp-webProfile7-16.0.0.2
12
Internet facing deployment of IBM Business Process Manager
Fri, Aug 26th 2016 11:57p   Dave Hay
This Technote was published yesterday: -Internet facing deployment of IBM Business Process Manager…QuestionHow can IBM Business Process Manager capabilities be exposed in an internet facing deployment?IntroductionIBM Business Process Manager is a powerful process development platform - designed to allow business analysts to model process flows and user interface elements in a single package. In order to achieve this goal, there must be compromises for example in functional scope and programmin
15
IBM MQ - Little Gems
Thu, Aug 25th 2016 7:02a   Dave Hay
This from an IBM guru, Morag Hughson
15
SSL Client Authentication, Certificate Authorisation and IBM HTTP Server
Wed, Aug 24th 2016 3:15p   Dave Hay
ContextTo enable IBM HTTP Server (IHS) to "authorise" incoming requests based upon the "identity" of the client. This goes above and beyond SSL Client ( aka Mutual ) Authentication, where a server will require a client to present a valid certificate which both parties trust.This leverages the SSLClientAuthRequire directive in IHSDetailI tested this using IHS 8.5.5.8 on both Red Hat Linux and IBM AIX, using the Firefox browser in both cases.In the case of Linux, I created a pair of self-signe
14
DSRA8040I and SQL 1060N between IBM BPM and IBM DB2
Wed, Aug 24th 2016 4:57a   Dave Hay
We saw this yesterday: -Caused by: org.springframework.jdbc.CannotGetJdbcConnectionException: Could not get JDBC Connection; nested exception is java.sql.SQLNonTransientException: DB2 SQL Error: SQLCODE=-1060, SQLSTATE=08004, SQLERRMC=DB2USER1, DRIVER=4.19.49 DSRA0010E: SQL State = 08004, Error Code = -1,060Caused by: java.sql.SQLNonTransientException: DB2 SQL Error: SQLCODE=-1060, SQLSTATE=08004, SQLERRMC=DB2USER1, DRIVER=4.19.49 DSRA0010E: SQL State = 08004, Error Code = -1,060[23/08/16 15:00:
14
Apache - SSL/TLS Strong Encryption: FAQ
Wed, Aug 24th 2016 1:51a   Dave Hay
The wise man doesn't give the right answers, he poses the right questions.-- Claude Levi-StraussSSL/TLS Strong Encryption: FAQA teaser from the ToCInstallation • Why do I get permission errors related to SSLMutex when I start Apache? • Why does mod_ssl stop with the error "Failed to generate temporary 512 bit RSA private key" when I start Apache?Configuration • Is it possible to provide HTTP and HTTPS from the same server? • Which port does HTTPS use? • How do I speak HTTPS manually
16
IBM on Docker - My Next Thing
Fri, Aug 19th 2016 11:11a   Dave Hay
I'm looking at a new piece of discovery and self-development, so I'll be digging into Chef, Puppet, UrbanCode Deploy *AND* Docker So this will be required reading: -WebSphere under Docker: from Development to ProductionTL;DR You can now take your Docker images for WebSphere Application Server Full and Liberty Profile into production and get support. We've provided some resources to build production Liberty images and made them available on WASdev GitHub.Integrate Docker in your IBM Operationa
12
Gah, updating Windows 7
Fri, Aug 19th 2016 9:01a   Dave Hay
I keep hitting this one.I've just installed a "new" Windows 7 VM, and was getting annoyed with the lack of Windows Updates.This nailed it for me: -Installing and searching for updates is slow and high CPU usage occurs in Windows 7 and Windows Server 2008 R2which led me to this: -Update for Windows 7 for x64-based Systems (KB3102810)Job's a good 'un
14
IBM Redbooks | Deliver Modern UI for IBM BPM with the Coach Framework and Other Approaches
Fri, Aug 19th 2016 12:11a   Dave Hay
http://www.redbooks.ibm.com/Redbooks.nsf/RedpieceAbstracts/sg248355.html?Open
12
IBM BPM Security Hardening - use a web server
Thu, Aug 18th 2016 12:24p   Dave Hay
This from my IBM colleague, Jens Engelke, is definitely worth reading, bookmarking AND following :-)IBM BPM Security Hardening - use a web serverThis post is part of the IBM BPM Security Hardening series.The first rule of secure communications here is that no end user should ever reach a BPM application server directly. While earlier versions of IBM BPM required end users (at least developers using Process Designer) to access a BPM server via multiple protocols. There was HTTP traffic, EJB traff
14
Active Directory Certificate Services - "The revocation function was unable to check revocation because the revocation server was offline" - or the world's best error message
Tue, Aug 2nd 2016 3:22p   Dave Hay
I saw this: -Active Directory Certificate Services denied request 10 because The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613). The request was for CN=bpm856.uk.ibm.com, DC=uk, DC=ibm, DC=com. Additional information: Error Constructing or Publishing Certificate earlier, whilst trying to issue a SSL certificate using AD Certificate Services: -certreq -submit -attrib "CertificateTemplate:Webserver" bpm856.uk.ibm.com_ihs.
11
IBM Design Thinking - the Who/What/Wow factor
Tue, Aug 2nd 2016 2:18p   Dave Hay
I was Slacking ( that's a verb now ! ) with a friend earlier about IBM Design Thinking, and referenced the Who/What/Wowsourced from the IBM Design Thinking site, which is definitely worth a look-see.
15
Keyboard shortcuts in IBM Notes - revisited
Mon, Aug 1st 2016 8:03a   Dave Hay
Re-using one of my posts from 2008 !!Control Key, Me Control - Anyone want a mouse ???in case I ever forget …..In IBM Notes on Mac OS X, press [cmd][shift][l] to bring up this: -Note that the list is scrollable, and there's a fair few shortcuts there :-)
13
Scripting the shell
Sun, Jul 31st 2016 2:46a   Dave Hay
One of my friends was looking for a mechanism to invoke a script as another user AND pass in a parameter.Challenge, accepted :-)Here's my script: -/home/db2inst1/foobar.sh #!/bin/bashecho "Hello World! from `whoami`"echo "And today's special is " $1 "!!! "exitand here's how I invoke it from another user ( root ): -su - db2inst1 -c '/home/db2inst1/foobar.sh Fish'Hello World! from db2inst1And today's special is Fish !!! su - db2inst1 -c "/home/db2inst1/foobar.sh Beef"Hello World! fr
5
IBM Operational Decision Manager Advanced 8.8.1 - My First Foray
Sun, Jul 31st 2016 1:38a   Dave Hay
I spent a few happy hours implementing ODM 8.8.1 on a Red Hat Linux VM yesterday, and have written up my notes below.Bottom line, this is pretty similar to my experiences with earlier versions ( 8.5, 8.6, 8.7 etc. ) with one exception: -- With 8.8.1, we've now split out the Rules Management Server onto a separate JVM, meaning that we potentially have two clusters and three serversFor this build, I've chosen to deploy Decision Center AND Decision Server; other options exist, of courseHope this
16
IBM Operational Decision Management 8.8.1 - My First Foray
Sat, Jul 30th 2016 2:47a   Dave Hay
I'm writing a post on how I built an IBM ODM Rules environment using the latest ODM Advanced 8.8.1 code.However, I hit a minor blocker early on, with this: -configure: [wsadmin] WASX7209I: Connected to process "dmgr" on node Dmgr using SOAP connector; The type of process is: DeploymentManager [wsadmin] WASX7303I: The following options are passed to the scripting environment and are available as arguments that are stored in the argv variable: "[/opt/IBM/ODM881, /opt/IBM/WebSphere/AppServer
16
Messing about with IPTables
Fri, Jul 29th 2016 2:13p   Dave Hay
I'm NOT a firewall or networking expert, so this is very much YMMV.I wanted to see if/how I could use the out-of-the-box IPTables firewall to block most connectivity to a web server ( IBM HTTP Server ) whilst allowing SSH connectivity and, more importantly, allowing incoming requests from Flush the existing rulesiptables -FAdd a rule to allow SSH connectivity only from a specific interface and host - actually the host VMiptables -A INPUT -i eth0 -p tcp -s 192.168.153.1 --dport 22 -m state --sta
11
IBM BPM Advanced 8.5.5 - Where's the Failed Event Manager ?
Wed, Jul 27th 2016 10:43a   Dave Hay
Clue, it's in the Deployment EnvironmentEasy when you know how :-)
10
Aide Memoire - F5 - Configuration Guide for BIG-IP Local Traffic Management
Wed, Jul 27th 2016 6:18a   Dave Hay
It's here: -Configuration Guide for BIG-IP Local Traffic ManagementConfiguration Guide for BIG-IP Local Traffic Management [PDF]The BIG-IP® local traffic management system is specifically designed to manage your local network traffic. Local traffic management refers to the process of managing network traffic that comes into or goes out of a local area network (LAN), including an intranet.This configuration guide applies to the set of local traffic management products that are part of the BIG-I
10
VMware Fusion - Stuck on "GRUB loading stage2"
Wed, Jul 27th 2016 4:22a   Dave Hay
I had this error: -GRUB loading stage2whilst attempting to boot a F5 BIG-IP Virtual Edition VMNo matter how many times I rebooted, the error kept popping up :-(I'm using VMware Fusion 8.1.1 on OS X 10.11.6.This thread: -Running BIGIP-11.3.0.39 on Oracle VirtualBox under Mac OS 10.9.2helped, specifically this: -Did you enable COM port? What Hypervisor version do you have?Yes, enabling COM Port helped. ThanksOnce I added a virtual Serial Port: -it just worked :-)
10
MQJCA1011 and the story of the missing IBM MQ JMS Provider permissions
Fri, Jul 22nd 2016 10:33a   Dave Hay
We saw this problem earlier this week: -Failed to load the WebSphere MQ native JNI library: 'mqjbnd'. The JVM attempted to load the platform native library 'mqjbnd', which was mapped to the filename: 'libmqjbnd.a'.When attempting to load the library, the JVM reported the error message:'mqjbnd (Not found in java.library.path)'in the context of a failing WebSphere Application Server (WAS) to IBM MQ (MQ) configuration.We found this, whilst trying to debug this: -com.ibm.mq.connector.Detaile
13
Disable desktop notifications for a site
Fri, Jul 22nd 2016 2:55a   Dave Hay
I was getting slightly cross ( hey, I'm British, what can I say? ) with Firefox 47's insistence on asking me whether I REALLY wanted notifications from a site, each and every time I opened or refreshed a page on that site.This had the answer: -Disable desktop notifications for a siteYou can reset this to the default (or outright disallow it) on a per-site basis by right-clicking somewhere in a blank spot of the site (or pressing Ctrl-I on Windows or Cmd-I on Mac) and then selecting "View Page
12
IBM Integration Bus - The names, they are a-changin'
Mon, Jul 18th 2016 9:42a   Dave Hay
So I still struggle to remember that, with IBM Integration Bus 9, the naming conventions inherited from WebSphere Message Broker ( and it's precedents ) have CHANGED.Here's a useful crib: -Name changes in IBM Integration Bus Version 9.0
11
F5 BIG-IP Local Traffic Manager ( LTM ) - Scripting It, Baby
Fri, Jul 8th 2016 10:11a   Dave Hay
Following on from my earlier posts: -F5 Load Balancing - My first few foraysF5 BIG-IP - More learning, more tinkering, more bloggingI've made yet more headway with this fascinating product.I'd referenced this excellent post: -Deploying F5 BIG-IP Virtual Edition on VMware Fusionwhich, in part, included the necessary F5 commands, using the tmsh utility, to set up a pair of network interfaces, some IP addresses and a default route: -tmsh create net vlan external interfaces add { 1.1 { untagged }
9
Ubuntu Linux and the growing file-system
Thu, Jun 30th 2016 4:14p   Dave Hay
A friend asked me how to resize a disk partition ( virtual disk ) in an Ubuntu VM on VMware.This is what I did: -Look at the existing disk layoutdf -kmhFilesystem Size Used Avail Use% Mounted on/dev/sda1 19G 3.6G 15G 20% /none 4.0K 0 4.0K 0% /sys/fs/cgroupudev 478M 4.0K 478M 1% /devtmpfs 98M 1.5M 97M 2% /runnone 5.0M 0 5.0M 0% /run/locknone 489M 216K 489M 1% /run/shmnone 100M 32K 100M
13
WebSphere Application Server 8.5.5.8, TLS 1.2 and DB2
Thu, Jun 30th 2016 2:44p   Dave Hay
It's been a day for old blog posts helping to fix new problems.Today, we saw this: -CWSIS1593I: The messaging engine, ME_UUID=E997A9EFA09498FC, INC_UUID=6DC2A53AD19710D7, has failed to gain an initial lock on the data store.CWSIS1538I: The messaging engine, ME_UUID=E997A9EFA09498FC, INC_UUID=6DC2A53AD19710D7, is attempting to obtain an exclusive lock on the data store.which led me here: -IBM Business Process Manager - Missing the BusHowever the resolution - to sort out the SIB tables - did NOT
7
My Cognos has fallen AGAIN and can't get up
Thu, Jun 30th 2016 2:21p   Dave Hay
We saw this problem: -CAM-CRP-1280 An error occurred while trying to decrypt using the system protection key. Reason: javax.crypto.BadPaddingException: Given final block not properly padded again today, on another IBM Business Monitor 8.5.5.0 environment.Again, it was due to our moving an AIX LPAR from one p780 server to another.So there's something in Cognos that REALLY loves the underlying hardware, assumedly an AES encryption key.Still, the solution was the same - force the Cognos configurat
7
F5 BIG-IP - More learning, more tinkering, more blogging
Fri, Jun 24th 2016 9:34a   Dave Hay
I'm continuing to learn more about the F5, in my quest to really understand how it all works, in the context of solving a tricksy little SSL handshake problem between an LTM and an IBM HTTP Server box.Here's a few commands that I've used: -tmsh show /ltm node----------------------------------------------Ltm::Node: bpm856.uk.ibm.com (192.168.153.200)----------------------------------------------Status Availability : unknown State : enabled Reason : Node add
10
WebSphere Plugin and the Case of the GSK_ERROR_BAD_KEYFILE_PASSWORD
Wed, Jun 22nd 2016 4:01p   Dave Hay
We've seen a few instances , where the WebSphere Plugin fails to communicate, via SSL, with WAS.This manifests itself as Error 500 / HTTP500 when accessing WAS via IHS, using hostname OR service name.Long story short, it looks like the Plugin SSL configuration files are getting "borked" by something.The plugin log shows this: -[22/Jun/2016:13:14:40.16292] 00d3008c 00000001 - ERROR: lib_security: logSSLError: str_security (gsk error 408): GSK_ERROR_BAD_KEYFILE_PASSWORD[22/Jun/2016:13:14:40.16
15
F5 Load Balancing - My first few forays
Wed, Jun 22nd 2016 1:29a   Dave Hay
I'm currently working on a situation whereby HTTPS load-balancing is inconsistently not working against IBM HTTP Server 8.5.5.To help me help the client's network team debug this, I've been tinkering with a F5 Local Traffic Manager (LTM) using VMware Fusion on my Mac.I found a slew of excellent articles on the F5 site including: -Load Balancing 101: Nuts and BoltsLoad balancing got its start in the form of network-based load balancing hardware. It is the essential foundation on which Applicat
9
IBM BPM - Process Center and Unit Test Environment Together
Mon, Jun 20th 2016 8:17a   Dave Hay
This article from 2014: -Creating a stand-alone Process Center profile in IBM BPM, Part 1: Configure a profile for IBM Business Process Manager V8.5 on Windows platformsA stand-alone Process Center profile for IBM® Business Process Manager (BPM) is useful for situations where memory and disk space are limited. Rather than install the Process Center as a network deployment environment with at least three profiles running, plus an additional profile to support the unit test environment server, th
14
Achieve your API strategy with IBM API Connect
Wed, Jun 15th 2016 1:54a   Dave Hay
This from a former colleague of mine, Carlo Marcoli: -To thrive in the API economy, you need to strategize your API approach and create, run, manage, and secure your APIs. With this dedicated focus on APIs, your company can share data and services in an easy-to-consume format. It can also create an ecosystem of partners and third parties that is much greater than the ecosystem you reach by using traditional channels. An effective API strategy treats an API as a business product with a well ident
16
Announced - IBM WebSphere Application Server V9.0
Wed, Jun 8th 2016 8:54a   Dave Hay
Saw this today: -IBM WebSphere Application Server V9.0 delivers the next-generation application infrastructure for modern applications to support seamless portability across hybrid cloud landscapesWebSphere® Application Server V9.0, with its traditional and Liberty run times, continues to offer industry-leading, production-ready, standards-based Java™ EE 7 compliant architecture.Highlights of Version 9.0 include: • Certification to the Java EE 7 Web Profile and Java EE 7 Full Platform for W
8
Webcast - Using IBM UrbanCode with IBM WebSphere to Accelerate Business Transformations
Wed, Jun 8th 2016 8:36a   Dave Hay
As found on Twitter today: -Great news for WebSphere Application Server Administrators, IT Managers, Directors and anyone with challenges associated with deploying applications and configurations to WebSphere Application Server in its traditional version, Liberty or as a Service. IBM UrbanCode Deploy has WAS covered! IBM UrbanCode Deploy can reduce overall cycle times and accelerate time-to-test and time-to-market for clients. In this call, attendees will learn how to accelerate WAS deployments
18
Problems installing IBM Integration Designer - I *MUST* read my own blog
Mon, Jun 6th 2016 4:07p   Dave Hay
I was trying to install IBM Integration Designer 8.5.5 via a response file, and kept finding that the installation failed to complete, and that DB2 Express ( part of the IID WebSphere Test Environment - WTEt ) failed to install.I broke the installation down into its component parts, and tried to simply install DB2: -"c:IBMInstallation Managereclipsetoolsimcl.exe" -input z:tmpiid856installDB2_WIN64.rsp -acceptLicenseThis explicitly failed: -ERROR: Error preparing IBM® DB2 Express 64 bit CRIMC
9
Bulletproof SSL and TLS
Fri, Jun 3rd 2016 3:39p   Dave Hay
This time, it's not a book review, it's a book purchase …I signed up for a free one-week introduction to SSL/TLS, partly to help me cement my understandingSubscribe to my free crash course about everything SSL/TLS and PKIAt the end of it, I decided to purchase the author, Ivan's, book: -Bulletproof SSL and TLSwhich I've just downloaded as an ebook :-)Something for the weekend ….In the meantime, Ivan is available here on Twitter
6
IBM Global Security Toolkit - CTGSK2041W An unsupported modulus size was found.
Fri, Jun 3rd 2016 12:20p   Dave Hay
I'm still tinkering with different ciphers and signature algorithms in IBM HTTP Server, as per this: -IBM HTTP Server, Global Security Toolkit and CTGSK3039Wand hit this today when attempting to create a self-signed certificate using the SHA256WithECDSA Signature Algorithm: -/opt/IBM/HTTPServer/bin/gskcapicmd -cert -create -db /opt/IBM/HTTPServer/ssl/keystore.kdb -stashed -size 2048 -dn "cn=bpm856.uk.ibm.com,dc=uk,dc=ibm,dc=com" -label bpm856.uk.ibm.com_ss -default_cert yes -sigalg SHA256With
10
Fun, Not With Flags, but with Passwords in IBM Installation Manager
Fri, Jun 3rd 2016 8:37a   Dave Hay
I'm installing IBM Integration Designer (IID) 8.5.6 into a Windows VM, as I prepare to write some BPM Advanced SCA/BPEL code ….However, I hit a pesky password problem with DB2, upon which the IID test environment ( BPM Advanced ) depends.This is what I did: -"c:IBMInstallation Managereclipsetoolsimcl.exe" -input z:tmpiid856installIID856.rsp -acceptLicenseand this is what I saw: -ERROR: Error during "install" phase: ERROR: Password is required.Installed com.ibm.integration.designer.v85_8.
11
Microsoft Active Directory - SSL Certificate Request - And what I forgot
Fri, Jun 3rd 2016 8:36a   Dave Hay
I was trying to generate an SSL certificate, signed by Active Directory ( on Windows Server 2008 R2 SP1 ), using the certreq command: - certreq -submit -attrib "CertificateTemplate:Webserver" bpm856.uk.ibm.com_ihs.req bpm856.uk.ibm.com_ihs.cerwhich kept popping up with: -and: -Active Directory Enrollment Policy {2738EA28-25D5-4E51-841F-73F6AEFBB682} ldap:Certificate Request Processor: The system cannot find the file specified. 0x80070002 (WIN32: 2)I couldn't work out what I'd missed … un
13
More on IBM Integration Designer 8.5.5 - "Unable to get property isExists of undefined or null reference"
Wed, Jun 1st 2016 1:52a   Dave Hay
Following this post from last year: -IBM Integration Designer 8.5.5 - "Unable to get property isExists of undefined or null reference"in which I write about the issue of installing IBM Integration Designer (IID) from a shared drive on a Windows server.Most recently, I saw this whilst trying to install IID from a VMware Shared Folder, using VMware Fusion on my Mac, to a Windows 2008 Server R2 VM. I had previously unpacked the installation media into a directory on my Mac, and was hoping to inst




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition