How to run BPPM Server 9.5 or 9.6 as non-root user?

Manage Support IDs

Use checkboxes to 'Remove support IDs/Users' or 'Allow to create Cases'
Support IDs for BMC Customer Support Site Guest User
Profiles Which Include    Back to All Support IDs
 

Knowledge Article

How to run BPPM Server 9.5 or 9.6 as non-root user?
How to run BPPM Server 9.5 or 9.6 as non-root user?
ProactiveNet Performance Management Suite
BMC ProactiveNet Performance Management Suite
ProactiveNet Performance Management Suite
BMC ProactiveNet Performance Management Suite

Question
  How to run BPPM Server 9.5 or 9.6 as non-root user?
 
Applies To
  BMC ProactiveNet Performance Management version 9.5.00, 9.6.00
  BMC TrueSight Operations Management version 9.6.00

Legacy ID:KA419611

Answer
  1. Download the attached script,
  2. Take backup of /usr/pw/pronto/bin/configNonRoot to /usr/pw/pronto/bin/configNonRoot_bkp
  3. Copy new script "configNonRoot_new" to /usr/pw/pronto/bin/configNonRoot
  4. Provide permission for execution "chmod 755 /usr/pw/pronto/bin/configNonRoot"
  5. Create a non-root user from root as shown in following syntax
  Syntax : useradd <USER NAME>
  6. Create password for the created user.
  Syntax : passwd <USER NAME>
  7. Go to to the Path [Installation directory]/pw/pronto/bin and execute the ./ConfigNonRoot <CREATED USER NAME> and Provide the details for HTTP and HTTPS port. By default HTTP Port is 9000 and HTTPS Port is 4430
  8. IMPORTANT NOTE: Once the above step is completed successfully then do not perform any operation on BPPM Server with root User.
  9. Logout from root user and log in with Non-Root user
  10. using the Non-Root user perform the different operations on the server, for example:
  a) Running various pw commands
  b) Login to CMA, Operations and Admin console.
 
Additional Information
  1 - If you had integrated with ITSM before running the configNonRoot script you will need to update the BPPM WebServices port to 9000 or 4430 in the record for your BPPM server in the form INT:BPPMDetails.
  2 - For a child server in a central -> child configuration ensure that you have the following set correctly:
       a) in pw/custom/conf/pronet.conf on the child server:

pronet.cadmin.port=9000

       b) in opt/bmc/TrueSight/pw/custom/conf/bppmws.properties correct the " routerGatewayHostBPPMAPIPort" 

bppmwsGatewayProtocol=HTTP
isRouter=false
#routerGatewayHostBPPMAPIPort=80
routerGatewayHostBPPMAPIPort=9000
routerGatewayHostName=is-tsimmst01t.oneadr.net
routerGatewayProtocol=HTTP
selfHostBPPMAPIPort=80

change it from 80 to 9000

  3 - You will need to change the ownership of the following files to the non-root user:

/etc/bmc.profile
/etc/bmc.cshrc
/etc/patrol.d

e.g. chown <usergroup>:<username> /etc/bmc.profile

Also, ensure to set proper mask for file creation

e.g. set umask 0022


  4 - the local pnet agent will no longer be able to read /var/log/messages 

  5 - check for the following file and change the owner if it exsts..

/tmp/.apiSource.txt

(This is created by the publishing server)

  6 - To run BPPM IS as non-root user please refer to KA421324. 

  7 - Upgrades from a nonroot BPPM 9.5 installation to 9.6 using the same nonroot user is not validated.  When upgrading, perform the upgrade as root, then re-run the configNonRoot script.

Related Products:

  1. BMC ProactiveNet Performance Management Suite
ProactiveNet Performance Management Suite
BMC ProactiveNet Performance Management Suite
Attachment(s):
configNonRoot.txt