Installing and Configuring WSO2 Identity Server

This topic describes how to install and configure WSO2 Identity Server.

Configure trusted CA certificates for GoRouter

To configure trusted CA certificates for GoRouter, do the following:

  1. In Ops Manager, select the TAS for VMs tile.
  2. Go to the Networking pane in the Settings tab.
  3. Append the following to the Certificate Authorities Trusted by Router and HAProxy.

    -----BEGIN CERTIFICATE-----
    MIIDSTCCAjGgAwIBAgIEAoLQ/TANBgkqhkiG9w0BAQsFADBVMQswCQYDVQQGEwJV
    UzELMAkGA1UECBMCQ0ExFjAUBgNVBAcTDU1vdW50YWluIFZpZXcxDTALBgNVBAoT
    BFdTTzIxEjAQBgNVBAMTCWxvY2FsaG9zdDAeFw0xNzA3MTkwNjUyNTFaFw0yNzA3
    MTcwNjUyNTFaMFUxCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJDQTEWMBQGA1UEBxMN
    TW91bnRhaW4gVmlldzENMAsGA1UEChMEV1NPMjESMBAGA1UEAxMJbG9jYWxob3N0
    MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAluZFdW1ynitztkWLC6xK
    egbRWxky+5P0p4ShYEOkHs30QI2VCuR6Qo4Bz5rTgLBrky03W1GAVrZxuvKRGj9V
    9+PmjdGtau4CTXu9pLLcqnruaczoSdvBYA3lS9a7zgFU0+s6kMl2EhB+rk7gXluE
    ep7lIOenzfl2f6IoTKa2fVgVd3YKiSGsyL4tztS70vmmX121qm0sTJdKWP4HxXyq
    K9neolXI9fYyHOYILVNZ69z/73OOVhkh/mvTmWZLM7GM6sApmyLX6OXUp8z0pkY+
    vT/9+zRxxQs7GurC4/C1nK3rI/0ySUgGEafO1atNjYmlFN+M3tZX6nEcA6g94Iav
    yQIDAQABoyEwHzAdBgNVHQ4EFgQUtS8kIYxQ8UVvVrZSdgyide9OHxUwDQYJKoZI
    hvcNAQELBQADggEBABfk5mqsVUrpFCYTZZhOxTRRpGXqoW1G05bOxHxs42Paxw8r
    AJ06Pty9jqM1CgRPpqvZa2lPQBQqZrHkdDE06q4NG0DqMH8NT+tNkXBe9YTre3EJ
    CSfsvswtLVDZ7GDvTHKojJjQvdVCzRj6XH5Truwefb4BJz9APtnlyJIvjHk1hdoz
    qyOniVZd0QOxLAbcdt946chNdQvCm6aUOputp8Xogr0KBnEy3U8es2cAfNZaEkPU
    8Va5bU6Xjny8zGQnXCXxPKp7sMpgO93nPBt/liX1qfyXM7xEotWoxmm6HZx8oWQ8
    U5aiXjZ5RKDWCCq4ZuXl6wVsUz1iE61suO5yWi8=
    -----END CERTIFICATE-----
    
  4. Click Save.

  5. Return to the Ops Manager Installation Dashboard and click Apply changes to apply the changes to the TAS for VMs tile.

Install and Configure WSO2 Identity Server

To install the WSO2 Identity Server for VMware Tanzu file on the Ops Manager Installation Dashboard, do the following:

  1. Download the product file from Pivotal Network.

  2. Navigate to the Ops Manager Installation Dashboard and click Import a Product to upload the product file.

  3. Under the Import a Product button, click + next to the version number of WSO2 Identity Server for VMware Tanzu. This adds the tile to your staging area.

  4. Click the newly added WSO2 Identity Server for VMware Tanzu tile.

  5. AZ and Network Assignments Page:

    Zones

    1. Place singleton jobs in: Select the AZ in which the Identity Server VM needs to run.
    2. Balance other jobs in: Select any combination of AZs.
    3. Network: Select pcf-pas-network
  6. Database configurations page:


    Applicable Databases: User Management and registry Database, Identity Management Database, and Business Process database

    Database Type JDBC URL Driver Class Name Validation Query Username Password
    MySQL jdbc:mysql://<hostname>:<port>/<db_name>?autoReconnect=true&amp;useSSL=false com.mysql.jdbc.Driver SELECT 1 Username for database Password for database
    MS SQL jdbc:sqlserver://<hostname>:<port>;databaseName=<db_name>; com.microsoft.sqlserver.jdbc.SQLServerDriver


  7. Consent Management Configurations page:

    ConsentManagement

    If custom consent configurations are not required, click on Use default PII Controller configurations. If custom consent configurations are required, click on Customize PII Controller configurations and fill out the values appropriately following the documentation below.

    1. Consent Management
    2. Using the Consent Management REST API
  8. Trusted CA certificate page: Cert Add the content of the Trusted CA certificate used to configure the Ops Manager.

  9. License key page: License-key Add the WSO2 license key corresponding to your WSO2 subscription. If you don’t have a license key, please contact a WSO2 account manager.

  10. Admin Credentials page Admin Add the admin username and a strong password here.

  11. Click Save.

  12. Return to the Ops Manager Installation Dashboard and click Apply changes to install WSO2 Identity Server for VMware Tanzu.