WebSphere Application Server V7.0 Network Deployment V1.4 2009 10
1....2 2....4 3....6 4....9 5....17 6....23 7. Web...30 8....35 1
1. WAS V7.0 1 1 15 WAS V7.0 Network Deployment Deployment Manager Node Agent Node Deployment Manager Node Agent WAS ND V7.0 (WAS-09-024) http://www.ibm.com/jp/domino01/mkt/cnpages1.nsf/page/default-0007f8d1 1 WAS V7.0 Network Deployment Deployment Manager 2. 3. 1 4. 5. 1 6. 7. Web 8. 2
WAS WAS CellDefaultKeyStore <WAS_ROOT>/profiles/<DM_profile_name>/config/cells/<cell_name>/key.p12 WAS CellDefaultTrustStore <WAS_ROOT>/profiles/<DM_profile_name>/config/cells/<cell_name>/trust.p12 WAS NodeDefaultKeyStore <WAS_ROOT>/profiles/<Node_profile_name>/config/cells/<cell_name>/nodes/<node_name>/key. p12 WAS NodeDefaultTrustStore <WAS_ROOT>/profiles/<Node_profile_name>/config/cells/<cell_name>/nodes/<node_name>/trust.p12 <WAS_ROOT>/profiles/<profile_name>/etc/trust.p12 Web <WAS_ROOT>/profiles/<Node_profile_name>/config/cells/<cell_name>/nodes/<node_name>/serv ers/<webserver_name>/plugin-key.kdb Web Web <plugin_install_root>/config/<web_server_name>/plugin-key.kdb HTTP(S) Web Web (IHS ) (IHS ) Plug-in Plug-in Plug-in Config Plug-in Module Config XML file HTTP(S) Module XML file (WAS) Deployment NodeAgent Manager (WAS) (WAS) (WAS) CellDefaultKeyStore NodeDefaultKeyStore CellDefaultTrustStore NodeDefaultTrustStore CMSKeySotre plugin-key.kdb CMSKeySotre plugin- -key.kdb CellDefaultKeyStore, CellDefaultTrustStore, NodeDefaultKeyStore, NodeDefaultTrustStore, WAS plugin-key.kdb Web WAS SSL Web SSL Web WAS SSL 3
2. 3 2-1. Java 2 Java 2 2-2. DeploymentManager NodeAgent ApplicationServer DeploymentManager NodeAgent ApplicationServer 4
5
3. (default) DM Cell 2 SSL 3-1. SSL - <Cell > - nodes - <node > <node > NodeDefaultSSLSettings NodeDefaultKeyStore default CN=, OU=, O=, C= 6
NodeDefaultKeyStore NodeDefaultKeyStore 3-2. SSL - <Cell > CellDefaultSSLSettings CellDefaultKeyStore default CN=, OU=, O=, C= 7
3-3. NodeDefaultKeyStore NodeDefaultKeyStore A B A B 8
4. 15 4-1. SSL - <Cell > CellDefaultSSLSettings SSL 4-2. 9
4-3. OK : default2 default : root : 1024 : < 3-2 CN= > : 5475 : < 3-2 O= > : < 3-2 OU= > : < 3-2 C= > 365 1 15 OU=A, OU=B OU= A, 10
4-4. SSL - <Cell > CellDefaultSSLSettings SSL 4-1 4-3 default2 11
WebAS default2 NodeDefaultKeyStore 12
4-5. SSL - <Cell > - nodes - <node > <node > NodeDefaultSSLSettings NodeDefaultKeyStore default2 13
4-6. SSL - <Cell > - nodes - <node > NodeDefaultSSLSettings SSL 4-7. 14
4-8. OK : default3 default : root : 1024 : < 3-1 CN= > : 5475 : < 3-1 O= > : < 3-1 OU= > : < 3-1 C= > 365 1 15 OU=A, OU=B OU= A, OU=B Deployment Manager 5 5-4, 5-6 15 15
16
5. (default) CMSKeyStore / DM Cell 2 SSL 5-1. SSL - <Cell > - nodes - <node > <node > NodeDefaultSSLSettings 17
NodeDefaultKeyStore default 5-2. 3-3 B 3-3 A SSL - <Cell > - nodes - <node > <node > NodeDefaultSSLSettings NodeDefaultTrustStore default 18
5-3. SSL - <Cell > CellDefaultSSLSettings CellDefaultKeyStore default 19
5-4. SSL - <Cell > CellDefaultSSLSettings CellDefaultTrustStore default 4-8 Deployment Manager default default default_1 15 Deployment Manager 5-5. Web CMSKeyStore (plugin-key.kdb) default 5-6 SSL - <Cell > - nodes - <node > - 20
servers - <webserver > CMSKeyStore default 5-6. Web CMSKeyStore (plugin-key.kdb) default SSL - <Cell > - nodes - <node > - servers - <webserver > CMSKeyStore default 4-8 Deployment Manager default default default_1 15 Deployment Manager 21
22
6. NodeDefaultTrustStore CellDefaultTrustStore 6-1. CellDefaultKeyStore CellDefaultTrustStore 6-1-1. SSL - <Cell > CellDefaultSSLSettings,null CellDefaultKeyStore CellDefaultTrustStore... 6-1-2. CellDefaultKeyStore 4-1 4-2 4-3 default2 23
6-1-3. CellDefaultTrustStore OK 6-2. NodeDefaultKeyStore NodeDefaultTrustStore DM NodeDefaultKeyStore NodeDefaultTrustStore 24
6-2-1. SSL - <Cell > - nodes - <node > <node NodeDefaultSSLSettings NodeDefaultKeyStore NodeDefaultTrustStore... 6-2-2. CellDefaultKeyStore 4-1 4-2 4-3 4-5 default2 25
6-2-3. NodeDefaultTrustStore OK 6-3. NodeDefaultTrustStore CellDefaultTrustStore NodeDefaultTrustStore CellDefaultTrustStore 26
6-3-1. SSL - <Cell > - nodes - <node > <node NodeDefaultSSLSettings,null NodeDefaultTrustStore CellDefaultTrustStore... 6-3-2. CellDefaultTrustStore 4-1 4-2 4-3 default2 27
6-3-3. NodeDefaultTrustStore 6-3-4. NodeDefaultTrustStore 4-6 4-7 4-8 default3 4-6 4-7 4-8 default3 6-3-4 6-3-5 OK 28
6-3-5. CellDefaultTrustStore OK 29
7. Web Web CMSKeyStore (plugin-key.kdb) Web CellDefaultKeyStore CMSKeyStore 7-1 Web Web 7-2 Plugin SSL CMSKeyStore CMSKeyStore CMSKeyStore 7-3 7-1. Web CellDefaultKeyStore Web CMSKeyStrore 7-1-1. SSL - <Cell > - nodes - <node > - servers - <Web > CMSKeyStore CellDefaultTrustStore... 7-1-2. CMSKeyStore 30
CellDefaultTrustStore 4-6 4-7 4-8 default2 default3 7-1-3. CMSKeyStore OK 7-2. Web Web 7-2-1. SSL - <Cell > - nodes - <node > - servers - <Web > CellDefaultKeyStore 31
default2 7-2-1, 7-2-2, 7-2-3, 7-2-4 default3 7-2-2. default2.arm OK <WAS_ROOT>/profiles/<DM_profile_name>/etc default2.arm 7-2-3. CMSKeyStore SSL - <Cell > - nodes - <node > - servers - <Web > 32
CMSKeyStore 7-2-4. default default2.arm OK CMS Store 7-3. CMSKeyStore Web 7-3-1. CMSKeyStore(plugin-key.kdb) Web Web <Web > Web Web 33
<WAS_ROOT>/profiles/<profile_name>/config/cells/<cell_name>/nodes/<node_name>/servers/<webse rver_name>/plugin-key.kdb 7-3-2. Web 34
8. 8-1. 2 Java 2 8-2. DeploymentManager NodeAgent 35
Web WAS V6.1 <WAS_ROOT>/profiles/<Node_profile_name>/etc/trust.p12 V7.0 36
2009/08/21 P31 7-1-2 2009/08/27 P18 5-2 P26 P31 P35 P36 2009/09/03 P19 5-2 P30 7-1-1 P31 7-1-2 2009/10/05 P30 7,7-1