Archive

Posts Tagged ‘AIX’

Install ORACLE on AIX 6.1

July 24, 2016 Leave a comment

Oracle 11g Installation procedure on AIX system v.6.1 environment, on IBM P-series machine is summarized from best practice at one of our  client. This procedure, will be followed by Websphere Application Server Installation procedure and configuration on the same environment and machine.

The steps of Oracle Installation 11g on AIX System is briefly described as follow :

1. Please check software pre-requisite on AIX system :

  • bos.adt.base
  • bos.adt.lib
  • bos.adt.libm
  • bos.perf.libprefstat
  • bos.perf.perfstat
  • bos.perf.proctools
  • xlC.aix50.rte 8.0.0.8 or later
  • xlC.rte 8.0.0 or later

2. Run command below to verify the pre-requisite :

  • lslpp -l bos.adt.base bos.adt.lib bos.adt.libm bos.perf.perfstat bos.perf.libperfstat bos.perf.proctoolschecking

3. Change value of max number of processes allowed  :

  • Run “smit chgsys”
  • Set “Maximum number of PROCESSES allowed per user” > 2048
  • Verify value of “ARG/ENV list size in 4K byte blocks” >= 128smith

4. Create user and groups for oracle installation, using the following command:

  • mkgroup oinstall
  • mkgroup dba
  • mkgroup oper
  • useradd -g oinstall -G dba, oper -m oracle
  • passwd oracle #Set password for oracle useruseroracle

5.  Create oracle home directory and set ownership and privileges

  • mkdir -p /database/oracle/app
  • chown -R oracle:oinstall /database/oracle/app
  • chmod -R 755 /database/oracle/apphomeoracle

6. Change display setting on AIX

  • vi /home/oracle/.profile
  • add line : “DISPLAY=:1.0; export DISPLAY

7. Set ORACLE_HOME

  • vi /home/oracle/.profile
  • add the following lines :
  • ORACLE_BASE  = /opt.app/oracle
  • ORACLE_SID = orcl
  • export ORACLE_BASE
  • export ORACLE_SID
  • ORACLE_HOME = $ORACLE_BASE/product/11.1.0/db1
  • PATH = $ORACLE_HOME/bin:$PATH
  • export ORACLE_HOME
  • export PATHpathoracle

8. Switch user to oracle and run installer as usual with options -ignorePrereq

runinstaller

 

install

 

and follow installation procedure till finish …

 

Bogor, Sunday 24 July 2016

 

A. Ahmad Kusumah

 

 

 

 

 

Change SSH port for security reason on AIX

May 5, 2011 Leave a comment

Today i face a problem about ssh and sshd services on my AIX box. Absolutely i can’t connect to the machine using standard port of SSH. This is definitely annoying because this  service of ssh is currently used for maintain and manage the machine remotely.

Thanks to telnet, on first deployment i install the telnet services alongside the ssh for backdoor connection if of the ssh services is failed, so i still connect to my machine.

First step i do is checking the services of sshd an ssh using command below :

#lssrc -s sshd

the result show the services is on inoperative state.

then i invoke the command below to restart the service :

#stopsrc -s sshd

#startsrc -s sshd

the i invoke the first command to see the service state, and the result show the services still on inoperative state.

To see what happened on detail process, the following command invoked :

#/usr/sbin/sshd -de

the terminal show there’s problem on binding port, means the port already used.

to resolve the problem, i decide to change port from standard port to more restricted port. in this case let says the port changed to 789456.

So, what do I do to change this from the AIX side?
Using the following command :

#vi /etc/ssh/sshd_config

I’ve edited the port in /etc/sshd_config (removed the #) Port 789456

I also changed the defaults to 789456 in my  /etc/services

ssh 789456/udp # SSH Remote Login Protocol
ssh 789456/tcp # SSH Remote Login Protocol

then i restart the service again using the following command :

#stopsrc -s sshd

#startsrc -s sshd

to check if the configuration is running well, try to connect to the machine using the following command :

#ssh -p 789456 ahmad@localhost

and voila …. now i can connect to my machine again …

I have read about the security benefits of not using  default port of SSH then i change mine. and now my AIX Box feel more secure …

Cheers

BOG Camp, May 5th 2011

A. Ahmad Kusumah

Categories: Teknologi Informasi Tags: , ,