Installing PeopleSoft Cloud Manager


Options




Before You Begin

Purpose

This tutorial describes the process to obtain PeopleSoft Cloud Manager from Oracle Cloud Marketplace and install it on an Oracle Compute Cloud Service instance.

Time to Complete

Approximately 60 minutes.

Background

PeopleSoft Cloud Manager is installed on Linux virtual machines, and is delivered with Oracle Linux 5.10.

Use Cloud Manager to deploy PeopleSoft environments in Oracle Compute Cloud Service for demo, testing, development, and production.  Cloud Manager delivers a way to define your own PeopleSoft environments and save them as deployment templates.  These templates can then be used by self-service users to create their own environments either for their development or testing.

This tutorial describes processes used by the Cloud Administrator in installing and setting up Cloud Manager. For information about using Cloud Manager to create topologies and templates, and environments, and other information on using Cloud Manager after installation, see the PeopleSoft Cloud Manager online documentation on the PeopleSoft Hosted Online Help site.

Note. You may see subtle differences in the appearance of the Oracle Compute Cloud Service user interface as compared to the illustrations in this document. For example, the locations of pages, tabs, buttons, text boxes, links and so on may have changed since this document was published. Nevertheless, the concepts presented in this document are still valid and all steps are mandatory. The Oracle Compute Cloud Service documentation should have current information on using images and creating instances.

Note. See the PeopleSoft Cloud Manager Home Page, My Oracle Support, Doc ID 2231255.2, for links to other Cloud Manager documentation, and information about known issues.

Context

After you complete the instructions in this tutorial to install and sign in to Cloud Manager, see the PeopleSoft Cloud Manager online documentation to use Cloud Manager to:

  • Subscribe to channels to automatically download PeopleSoft Update Images (PIs) and PeopleSoft Release Patchsets (PRPs).
  • Define environment topology based on PeopleSoft components and Oracle Cloud infrastructure elements (virtual machines).
  • Use delivered templates and create new templates based on defined topologies.
  • Create PeopleSoft environments from templates.
  • Move PeopleSoft on-premises (local) environments to Oracle Cloud ("Lift and Shift").
  • Set up PeopleSoft Update Manager (PUM) environments for Selective Adoption.
  • Update Cloud Manager using PUM functionality.

What Do You Need?

  • Licensing Requirements and Prerequisite Products
    • The PeopleSoft Licensing Information User Manuals include details about entitled products, restricted-use licensing grants, and prerequisite requirements that may be needed to use certain Cloud Manager features. To locate the information about Cloud Manager licensing and prerequisites, see the Licensing Information User Manual for your PeopleSoft application on the PeopleSoft Documentation Portal. You can find the Cloud Manager details in the PeopleTools section.
    • PeopleSoft Cloud Manager will automate provisioning of the Microsoft Windows environments that will host the PeopleTools Application Designer and Life Cycle Management (LCM) products required for PeopleSoft Update Manager. Your Oracle Cloud IaaS subscription grants the license required for Microsoft Windows 2012 R2. Please see the Oracle Compute FAQ, https://cloud.oracle.com/en_US/opc/compute/faq, under Windows Licensing Information for details.
      Note that the Windows 2012 R2 image must be procured from Oracle Cloud Marketplace. 
    • PeopleSoft Cloud Manager provides a tool for migrating on-premises PeopleSoft environments to Oracle Cloud.  This tool requires Oracle Database 12c. Customers must possess or obtain an on-premises license for Oracle Database 12c Standard or Enterprise Edition.
  • Oracle Compute Cloud Service
    A subscription to Oracle Compute Cloud Service is mandatory and you must be a user with the Compute_Operations and Storage Read Write Group roles.
    See How to Begin with Oracle Compute Cloud Service Subscriptions in Using Oracle Compute Cloud Service.
  • SSH Keys
    For the section Generating an SSH Key, you will need either an implementation of the ssh-keygen utility (for Linux) or an application such as PuTTY (for Microsoft Windows).
  • User IDs and passwords
    When you run the Cloud Manager Instance Configuration Wizard that sets up the Cloud Manager VM, you are asked for several user IDs and passwords. The Cloud Manager image is delivered with default user IDs that are reset by the setup script. The user IDs and password required by the instance configuration wizard includes the following:
    • CLADM password: The CLADM user account is delivered with Cloud Manager, and is associated with the Cloud Administrator role (PACL_CAD).
    • PeopleSoft Database Access ID and password
    • Database Administrator and password: The Cloud Manager image is delivered with a default password for SYS and SYSTEM users. This  will be reset using the value you supply to the Cloud Manager Instance Configuration script.
    • PeopleSoft connect ID and password
    • Oracle WebLogic administrator password
    • PeopleSoft Web Profile password
    • Integration Gateway password
    • Oracle Cloud user ID and password
    • My Oracle Support account ID and password
  • Port numbers
    Cloud Manager is provided with default values for the HTTP, HTTPS, Jolt, and WSL ports. For security reasons Oracle recommends that you do not use the default HTTP or HTTPS port numbers. Before beginning this procedure, decide on your port numbers. Configure the Oracle Compute Cloud Service instance to allow access for the HTTP and HTTPS ports, and then supply the same HTTP and HTTPS port numbers when you run the Cloud Manager Instance Configuration script.
  • Default Internet access
    This tutorial includes instructions to allow Internet access to provisioned instances by default. This is required for Cloud Manager to install packages from a YUM repository.

Process Overview

To install Cloud Manager, execute the following steps:

  1. Verify Oracle Cloud account information used in installing Cloud Manager.
  2. Generate an SSH key pair using an on-premises Linux or Microsoft Windows system.
  3. Upload the SSH public key to Oracle Compute Cloud Service.
  4. In Oracle Compute Cloud Service, create a security list, security application, and security rule.
  5. Locate the Cloud Manager application and initiate deployment in Oracle Cloud Marketplace.
  6. Provision an Oracle Compute Cloud Service instance with a Linux operating system from the Cloud Manager image.
  7. Use the instance configuration wizard to set up Cloud Manager.
  8. Sign in to the Cloud Manager instance in a browser and supply the Cloud Manager Settings details.
  9. Review the delivered users and permission lists.
  10. Activate REST service operations
  11. Update a database fix.

Verifying Oracle Cloud Account Information

Fulfilling Password Requirements

Ensure that the password for your Oracle Cloud account does not include these characters: single quote ('), double quote ("), slash (\), or pound (#).

This requirement is in addition to those for the Oracle Cloud password policy. The Cloud Manager Instance Configuration Wizard does not support passwords with these characters. If necessary, reset your password before running the configuration script.

Determining REST End Point URLs

The Cloud Manager Instance Configuration Wizard includes prompts for Oracle Cloud Compute REST end point and Oracle Cloud DBAAS REST end point. A REST end point is the URL needed to access the service using the REST (REpresentational State Transfer) application programming interface (API). Oracle provides the REST endpoint URLs for every Oracle Cloud service subscription. Contact your administrator to obtain the following prerequisite information to sign in to the identity domain:

  • User name and password to sign in to Oracle Cloud
  • Data center
  • Oracle Cloud identity domain

If you have an account for Oracle Database Cloud Service (DBaaS), you can use it to host PeopleSoft environment databases for Cloud Manager.  Use the same identity domain (and zone if applicable) for the DBaaS account as that for the Oracle Compute Cloud Service account. If you later configure additional file servers or Cloud Manager instances, use the same Oracle Compute Cloud Service REST end point.

To find the REST end points for Oracle Compute Cloud Service and DBaaS for your Identity Domain:

  1. Sign in to the Oracle Cloud My Services application at https://cloud.oracle.com/sign_in.
  2. Select the Data Center/Region that hosts your Oracle Cloud identity domain and click the My Services button.
    In this example, the US Commercial 2 (us2) Data Center has been selected:
    Oracle Cloud sign in page
  3. If necessary, enter your identity domain on the Oracle Cloud sign in page and then click the Go button:
    Oracle Cloud My Services page
  4. Enter a valid user name and password for your Identity Domain and then click Sign In:

    Oracle Cloud Sign in page with user name and password
  5. On the Dashboard, click the options icon (Options button) on the Compute card and select View Details.
    Oracle Compute Cloud Service card with View Details menu item
  6. Record the value from the REST Endpoint field on the Service Details page.
    Service Details: Oracle Compute Cloud Service
  7. To determine the REST end point for Oracle Database Cloud Service, click Dashboard.
  8. On the Dashboard, click the options icon on the Database card,  and then select View Details.
  9. Record the value from the REST endpoint field on the Service Details page.
    Service Details: Oracle Database Cloud Service page

Generating an SSH Key Pair

When you create your Oracle Compute Cloud Service instance, you must provide a secure shell (SSH) public key that will be used for authentication when you log in to the instance. Generate your SSH key pair and upload the SSH public key to the Oracle Compute Cloud Service before you start to create your instance.

Generating an SSH Key Pair on UNIX or UNIX-Like Systems Using ssh-keygen

  1. Run the ssh-keygen command.
    ssh-keygen -b 2048 -t rsa
  2. The command prompts you to enter the path to the file in which you want to save the key. A default path and file name are suggested in parentheses. For example: /home/user_name/.ssh/id_rsa. To accept the default path and file name, press Enter. Otherwise, enter the required path and file name, and then press Enter.
  3. The command prompts you for a passphrase. Enter a passphrase.
    Note that the passphrase isn't displayed when you type it in. Remember the passphrase. If you forget the passphrase, you can't recover it.
  4. When prompted, enter the passphrase again to confirm it.
    The command generates an SSH key pair consisting of a public key and a private key, and saves them in the specified path. The file name of the public key is created automatically by appending .pub to the name of the private key file. For example, if the file name of the SSH private key is id_rsa, then the file name of the public key would be id_rsa.pub.
  5. Make a note of the path where you've saved the SSH key pair.
    When you create instances, you must provide the SSH public key. When you log in to an instance, you must specify the corresponding SSH private key and enter the passphrase when prompted.

Generating an SSH Key Pair on Microsoft Windows

Generate a secure SSH key pair using an application such as PuTTY. 

Make a note of the public and private key names and where they are saved. When you create instances, you must specify the SSH public key. When you log in to an instance, you must provide the path to the corresponding SSH private key and enter the passphrase when prompted.

Uploading the SSH Key

  1. Sign in to the Oracle Cloud My Services as described in the section Determining REST End Point URLs. 
  2. On the Dashboard, click the options icon (Options icon) on the Compute card, and select Open Service Console:
    Oracle Cloud My Services Dashboard page with Cloud Services menu
  3. Select the Network tab and then select the SSH Public Keys link on the left side of the Network configuration page.
    The SSH Public Keys page is displayed.
    Oracle Compute Cloud Service Network page, SSH Public Keys
  4. Click Add SSH Public Key.
  5. In the Add SSH Public Key dialog box, enter a name, for example infodev_pubkey, and the value of the SSH public key you generated, and then click Add.

    Note. Paste the key value exactly as it was generated. Don't append or insert any extra characters, line breaks, or spaces.

    Your SSH public key is added to Oracle Compute Cloud Service.

    Add SSH Public Key dialog box

Creating a Security List, Security Application and Security Rule for Cloud Manager

The PeopleSoft Cloud Manager image found in Oracle Cloud Marketplace contains a web server installation configured to listen for requests on port 8000 (HTTP) and 8443 (HTTPS).  Your security protocols may require you to use other port values. If you use other ports, configure them here and supply the same values in the section Running the Cloud Manager Instance Configuration Wizard.

The steps included in the Creating a Security List, Creating a Security Application, and Creating a Security Rule sections demonstrate how to define a security list using port 8000 for HTTP; however, we recommend that you use this as an example only and subsequently enable port 8443 or another port for secure connections (HTTPS/SSL) only.

Note. Oracle highly recommends that you use the HTTPS protocol in all deployments. Follow the instructions found in the PeopleTools System and Server Administration product documentation to implement the encryption keys and certificates required for Secure Sockets Layer (SSL) encryption.

Creating a Security List

A security list is a group of Oracle Compute Cloud Service instances that you can specify as the source or destination in one or more security rules. The instances in a security list can communicate fully, on all ports, with other instances in the same security list. In a subsequent step the Compute Services instance will be added to this security list.

To create a security list:

  1. On the Oracle Compute Cloud Service console, click the Network tab.
  2. Select the Security Lists link, and then click Create Security List.
    Security Lists page
  3. In the Create Security List dialog box, select or enter the following information:
    • Name: Enter a name for the new security list. For the purpose of this tutorial, enter cm_infodev_seclist. Note this name. You'll use it later in this tutorial.
    • Inbound Policy: Accept the default option, Deny (Drop packets, no reply).
    • Outbound Policy: Select Permit (Allow packets).
    • Description: Enter a description for the new security list if desired; for example, PeopleSoft Cloud Manager security list.
      Create Security List dialog box
  4. Click Create.
  5. You may create additional security lists for access to other HTTP and HTTPS ports.

Creating a Security Application

A security application is a mapping between a port number and port type (TCP, UDP, or ICMP). To open port 8000, you must create a security application for that port.

  1. Click the Network tab and then the Security Applications link.
    Security Applications page
  2. Click Create Security Application.
  3. In the Create Security Application dialog box, select or enter the following information:
    • Name: Enter a name for the new security application. For the purpose of this tutorial, enter cm_infodev_tcp8000. Note this name. You'll use it later in this tutorial.
    • Port Type: Select TCP.
    • Port Range Start: In both of these fields, enter the port that you want to open, port 8000.
    • Description: Enter a description for the new security application (for example, Allow TCP traffic on port 8000).
      Create Secuity Application dialog box
  4. Click Create.
  5. You may create additional security applications for TCP access to other ports.

Creating a Security Rule

Create a security rule to allow TCP traffic from the Internet on port 8000.

  1. Click the Network tab and then the Security Rules link.
    Security Rules page
  2. Click Create Security Rule.
  3. In the Create Security Rule dialog box, select or enter the following information:
    • Name: Enter an appropriate name for the rule. For the purpose of this tutorial, enter cm_infodev_secrule8000.
    • Status: Select Enabled.
    • Security Application: Select the cm_infodev_tcp8000 security application that you created earlier.
    • Source: Select the Security IP List radio button
    • From the Security IP List drop-down list, select public-internet for the purposes of this tutorial.
      Note that public-internet is a default security IP list that permits traffic from any host on the Internet. If you want to restrict access to a certain set of IPs, you must create a new Security IP List and use it here.
    • Destination: Select the cm_infodev_seclist security list that you created earlier.
    • Description: Enter a description for the rule (for example, PeopleSoft Cloud Manager security rule).
      Create Security Rule dialog box
  4. Click Create.

Enabling SSH Access with the Default Security List

Enable SSH access by default for all instances that are created on Oracle Compute Cloud. This procedure assumes the presence of the default security list. If you do not see the security list named default associated with your identity domain, contact Oracle support. The default security list must be present in the path /Compute-<domain>/default/default.

  1. On the Oracle Compute Cloud Service console, click the Network tab.
  2. On the Network page, select Security Rules, and then click Create Security Rule.
  3. In the Create Security Rule dialog box, define a security rule to allow SSH connections from public-internet to the default security list you created in the previous steps.
    Enter or select the following information:
    • Name: Enter a descriptive name, for example DefaultPublicSSHAccess.
    • Security Application: Select ssh from the drop-down list.
    • Source: Select the Security IP Address option, and select public-internet from the drop-down list.
    • Destination: Select the Security List option, and select the default security list from the drop-down list.
    • Description: Enter a description such as Default security rule for public SSH access.

    Create Security Rule dialog box
  4. Click Create.

Initiating Deployment in Oracle Cloud Marketplace

Locate the Cloud Manager image and initiate deployment as follows:

  1. Sign in to the Oracle Cloud Marketplace at http://cloud.oracle.com/marketplace.
  2. In the Applications area, enter PeopleSoft in the search text box, and click the Go button.

    Oracle Cloud Marketplace sign in windows
  3. In the search results, click the Cloud Manager name to begin the deployment. The next page describes the components included in the image. Click the Get App button.
    Get App button
  4. Review and accept the Oracle terms and conditions and click the Next button.
  5. If necessary, select the name of the Oracle Cloud Identity Domain that is associated with your Oracle Compute Cloud Service subscription from the Compute Account drop-down list, and then click the Install button.
  6. You see a message saying the application was successfully installed. The image that will be used to start the instance is now available to the Oracle Compute Cloud Service account you selected in step 5.
    Click the Start Compute Console button, which will present the sign-in page for the Oracle Compute Cloud Service.

Provisioning the Cloud Manager VM

Use the Oracle Compute Cloud Service web console to configure the VM instance from the Cloud Manager image that you obtained from Oracle Cloud Marketplace. This section assumes that you signed in to the Oracle Computer Cloud Service directly from the Oracle Cloud Marketplace installation.

Note. You can also choose to sign into Oracle Computer Cloud Service later to create the Cloud Manager VM instance.

See Creating an Instance from the Instances Page in the Oracle Compute Cloud Service (IaaS) documentation.

  1. After signing in to the Oracle Compute Cloud Service console, the Cloud Manager image is included in the list on the Images page.
  2. Click the option button (Option button) for the Cloud Manager image and select Create Instance.
    Images page, Create Instance
  3. For the Cloud Manager image, click Select, and then click the right arrow (>) beside Review and Create on the top right.
    Image page, Selected image
  4. On the Shape page, select the shape that you want to use, and then click the right arrow (>) beside Review and Create on the top right.
    The shape specifies the OCPU and memory allocated. The minimum recommended is oc1m (1 OCPU, 15 GB), as shown in this example.
    Shape page
  5. On the Instance page, specify the following information and then click the right arrow (>) beside Review and Create on the top right.
    • Enter a name and label for the instance, or accept the default name and label. In this example the name and label are CloudManager_InfoDev.
    • Click in the SSH Keys field and select your public SSH key, psft-key-1 in this example.
    • Verify that this text appears in the Custom Attributes field: {"cloud_manager_image":"true"}
      Instance page
  6. On the Network page, specify the following information and then click the right arrow (>) beside Review and Create on the top right.
    • Add a hostname in the DNS Hostname Prefix field, which is cminfodev in this example.
    • Select Auto Generated from the Public IP Address drop-down list.
    • Click in the Security Lists area, and select the default security list (required).

    Network page
  7. On the Storage page, accept the defaults and then click the right arrow.
    Storage page
  8. Review the instance configuration and click the Create button to create the Oracle Compute Cloud Service instance.
    Review page
  9. Check the status of the Cloud Manager instance using the Instances tab. When the instance is ready to use, the status is set to Running.
  10. To view detailed information about the instance, click the options button and select View. The instance page describes the storage volumes, security lists, SSH public keys, and instance snapshots for the instance.

Setting Up Cloud Manager on the Linux VM

The Cloud Manager image includes a setup script that will start automatically when you access the instance created in the previous section. The instance, which is a Linux VM, can be accessed from a Microsoft Windows machine using an SSH client such as PuTTY, or directly from a Linux machine. The setup script prompts you for several user IDs and passwords, as mentioned in the section What Do You Need. Make a note of your input for later reference.

Logging in to the Linux VM from a Linux or UNIX System

  1. Enter the following command:
    ssh -i <path_to_private_key_file>/<private_key_name> -o ServerAliveInterval=5 -o ServerAliveCountMax=1 opc@<public_ip_address_of_instance>
  2. If you don't know the public IP address of your instance, you can find it by going to the Instances tab on the Oracle Compute Cloud Service console. From the list of instances displayed, identify the correct instance and use the menu on the right to view the running instance. The Overview information section includes the Public IP Address.
  3. If you entered a passphrase when creating your SSH key pair, enter the passphrase when prompted.
  4. The first time you connect to your instance, the SSH utility prompts you to confirm the public key. In response to the prompt, enter yes.

Logging in to the Linux VM from a Microsoft Windows System

  1. Start PuTTY. The PuTTY Configuration window is displayed, showing the Session panel.
  2. In the Host Name (or IP address) field, enter the public IP address of your instance.

    Note. If you don't know the public IP address of your instance, go to the Instances tab on the Oracle Compute Cloud Service console, click the Options menu for the instance and select View to see the details page.

  3. In the Connection type field, select SSH if it is not already selected.

    PuTTY Configuration dialog box, Basic options for your PuTTY session

  4. In the Category pane, click Connection. Enter 5 in the Seconds between keepalives (0 to turn off) text box.

    PuTTY Configuation dialog box, Options controlling the connection

  5. In the Category pane, expand SSH, and then click Auth. The Auth panel is displayed.
  6. In the Private key file for authentication field, click Browse and select the private key file that you saved earlier, infodev-private-key.ppk in this example.

    PuTTY Configuration dialog box, Options controlling SSH authentication

  7. In the Category tree, click Session.
    The Session panel is displayed.
  8. In the Saved Sessions field, enter a name for this connection configuration, and then click Save.
  9. Click Open to open the connection.
    The PuTTY Configuration window is closed and the PuTTY window is displayed.
  10. When prompted for a user name, enter opc.
  11. Enter the passphrase you had provided for your SSH key pair.
  12. The first time you connect to your instance, the PuTTY Security Alert window is displayed, prompting you to confirm the public key. Click Yes to continue.

Changing the Default Password for the opc User (Mandatory)

After successfully making the initial connection to the Oracle Compute Cloud Service instance using the SSH protocol, you must immediately change the default password of the opc user.

  1. If you haven’t already done so, SSH to the VM from either a Linux or Microsoft Windows system:
    $ ssh -o ServerAliveInterval=5 -o ServerAliveCountMax=1 $HOST -i <path_to_private_key>/<private_key_name> opc@<public_ip_address_of_instance>
  2. You will see the following message telling you to change your password, upon your first connection via SSH:
    login as: opc
    Using username "opc".
    Authenticating with public key "infodev-pubkey"
    Passphrase for key "infodev-pubkey":
    You are required to change your password immediately (root enforced)
    Authorized uses only. All activity may be monitored and reported.
    WARNING: Your password has expired.
    You must change your password now and login again!
    Changing password for user opc.
    Changing password for opc
    (current) UNIX password:
    
    • The default (current) password is OracleCloud.
    • You cannot do anything from the Linux command line until the default password has been changed.
    • Change the default password using the following guidelines:
      • Use an alphanumeric password.
      • The length must be a minimum of 8 characters.
      • Use at least one upper-case alphabetic character.
      • Use at least one numeric character.
      • Use at least one special character, such as @,  #, $ and so on.
      • It cannot closely resemble a dictionary word.
  3. When the password has been successfully changed, you will be immediately disconnected and you should see a message indicating success, similar to the following:
    New UNIX password: 
    Retype new UNIX password:
    passwd: 
    all authentication tokens updated successfully. 

    You can now SSH to the instance using the opc user as previously directed. The password for the opc user must be changed at least every 90 days.

Running the Cloud Manager Instance Configuration Wizard

Before beginning this procedure, ensure that you have the URLs, user IDs, and passwords mentioned in the What Do You Need? section at the beginning of this tutorial.

  1. Select Session and enter the IP address for the Cloud Manager instance in the Host Name field.
  2. Click Open.
    The Cloud Manager Instance Configuration Wizard script starts automatically when you sign in.
  3. Enter the user ID that you use to sign in to Oracle Compute Cloud Service; for example, psft_user@example.com, and then enter the user ID password twice.
    The password that you enter here must fulfill the requirements in the section Verifying Oracle Cloud Account Information.
    *********************************************************
    *Welcome to Cloud Manager Instance Configuration Wizard *
    *********************************************************
                                  
    Enter the Oracle Cloud user id: psft_user@example.com
    Enter the Oracle Cloud user password : Re-Enter the Oracle Cloud user password :
  4. Enter your Oracle Cloud domain name, for example idendomain:
    Enter the Oracle Cloud domain name: idendomain 
  5. Enter the REST end point URL for the Oracle Compute Cloud Service domain that you determined at the beginning of this tutorial.
    See Verifying Oracle Cloud Account Information.
    Enter the Oracle Cloud Compute REST end point: https://api-z28.compute.us6.oraclecloud.com/   
  6. If you have an account for Oracle Database Cloud, enter the REST end point URL that you determined at the beginning of this tutorial
    See Verifying Oracle Cloud Account Information.
    Enter the Oracle Cloud DBAAS REST end point: https://dbaas.oraclecloud.com/  
  7. Enter your user ID and then enter the password twice, for My Oracle Support.
    The My Oracle Support credentials are used to set up the repository for downloading images from My Oracle Support.
    Enter the My Oracle Support user id: psft_user@example.com
    Enter the My Oracle Support user password :
    Re-Enter the My Oracle Support user password :
  8. Enter the Domain Boot password twice for the Cloud Administrator, CLADM.
    Enter the new Domain Boot user password for user CLADM:
    Re-Enter the new Domain Boot user password for user CLADM:
  9. Enter the PeopleSoft connect ID.
    Enter the password twice, following the requirements in the prompt.
    Enter the new PeopleSoft Connect ID password for user people. Please ensure that
    the password does not contain any spaces, dashes and quote characters and is
    at least 6 and no more than 30 characters in length:
    Re-Enter the new PeopleSoft Connect ID password for user people:
  10. Enter the PeopleSoft access ID, SYSADM, and enter the password twice.
    SYSADM is the only valid access ID for Cloud Manager.
    Enter the PeopleSoft Access ID [SYSADM]: SYSADM 
    Enter the new PeopleSoft Access password for user SYSADM:
    Re-Enter the new PeopleSoft Access password for user SYSADM:
  11. Enter the password twice for the SYS and SYSTEM database users, following the requirements in the prompt.
    Enter the new Database Admin Password. Please ensure that
    the password has at least 8 characters with at least one upper
    case, one number or a special character:
    Re-Enter the new Database Admin Password:                            
  12. Enter the password twice for the Oracle WebLogic administrator, following the requirements in the prompt.
    Enter a new WebLogic Server Admin Password. Please ensure that
    the password has at least 8 characters with at least one upper
    case, one number or a special character:
    Re-Enter the new WebLogic Server Admin Password:
  13. Enter the password twice for the PeopleSoft Web Profile user:
    Enter the new password for Web Profile user PTWEBSERVER:
    Re-Enter the new password for Web Profile user PTWEBSERVER
  14. Enter the password for the Integration Gateway user:
    Enter the new password for Integration Gateway user administrator:
    Re-Enter the new password for Integration Gateway user administrator:
  15. If you want to create a new file server, answer y (yes). You see prompts for the name and storage size.
    The first time that you set up Cloud Manager, you need to create a new file server. Use only alphanumeric characters for the file server name.
    If you are performing a subsequent setup, and have already created a file server earlier, you may not need to create a new file server at this point and should answer n (no). However, if this is a subsequent setup, be aware that there are additional requirements, mentioned in the section Ensuring File Server Access.
    The minimum size required for the file server storage is 250 GB. Select a size large enough for your expected future needs, such as downloading additional PeopleSoft images to be used in creating templates and so on.
    Do you want to create new File Server [y|n]: y
    Enter the File Server name: cmfilesrv1
    Enter the File Server storage size [50GB]: 500GB
  16. If you want to configure advanced options, such as the database name and port numbers, answer y (yes).
    If you want to accept the default options, answer n (no) and continue with step 17.
    Do you want to configure advanced options [y|N]: y
    Enter the name of the database. Please ensure that the database name starts with a letter and includes only uppercase alphabets and numbers and is no more than 8 characters in length [PSPSDB]: MYCMDB Enter the HTTP port [8000]: 8000 Enter the HTTPS port [8443]: 8843 Enter the JOLT port [9033]: Enter the WSL port [7000]:
  17. Review the summary information. Answer y to continue, or n to change your responses.
    If you did not configure the advanced options in step 16, the summary shows the default values for the database name and port numbers. Be sure to verify these values before continuing.
    Note: Cloud Manager public ip refers to the IP address of the Cloud Manager VM. If there is an IP address displayed for this item, it means that the Oracle Cloud credentials you provided are valid and there is no issue in accessing Oracle Cloud services.
    **************************************************************************************************
                                  Cloud Manager Instance Configuration Summary
    **************************************************************************************************
    Oracle Cloud user id                            : psft_user@example.com
    Oracle Cloud user password                      : ********
    Oracle Cloud domain name                        : idendomain
    Oracle Cloud Compute REST end point             : https://api-z28.compute.us6.oraclecloud.com/
    Oracle Cloud DBAAS REST end point               : https://dbaas.oraclecloud.com/
    My Oracle Support user id                       : psft_user@example.com
    My Oracle Support user password                 : ********
    Domain Boot user password for user CLADM        : ********
    PeopleSoft Connect ID password for user people  : ********
    PeopleSoft Access password for user SYSADM      : ********
    Database Admin password                         : ********
    WebLogic Server Admin password                  : ********
    Web Profile user PTWEBSERVER password           : ********
    Integration Gateway user administrator password : ******** Name of the database                            : MYCMDB HTTP port                              : 8000 HTTPS port                              : 8843 JOLT port                              : 9033 WSL port                              : 7000 File Server name                                : cmfilesrv1 File Server storage size                        : 500GB Cloud Manager public ip: ************************************************************************************************** Are you happy with your answers? [y|n]: y

    *********************************************************************** * Cloud Manager provisioning started. Please check the * * /opt/oracle/psft/dpk/scripts/psft_cm_bootstrap.log file for status * ***********************************************************************
  18. Monitor the configuration process status by reviewing the log file /opt/oracle/psft/dpk/script/psft_cm_bootstrap.log.
    When the process completes successfully, the same log file includes the Cloud Manager URL to sign in to the PeopleSoft Pure Internet Architecture (PIA) in a browser.
    Note. The term bootstrap is sometime used to refer to the Cloud Manager Instance Configuration wizard.

The Cloud Manager instance configuration log files are found in these locations:

  • /opt/oracle/psft/dpk/scripts/psft_cm_bootstrap.log — Input logs for the Cloud Manager Instance Configuration wizard
  • /opt/oracle/psft/dpk/scripts/psft_opc_setup.log — Cloud Manager provisioning log
  • /opt/oracle/psft/dpk/setup/psft-dpk-setup.log*  — Logs related to the deployment packages used in the Cloud Manager instance configuration
  • /home/psadm2/psft/data/cloud/cmlogs/BOOTSTRAP_LOGS\*  — PeopleSoft Cloud Administrator logs related to processes such as file server creation
  • /home/psadm2/psft/data/cloud/cmlogs/envs/CLOUD_MANAGER_INSTANCE\*  — PeopleSoft Cloud Administrator logs related to Cloud Manager instance creation for updating Cloud Manager

Adding the Security Lists to the Cloud Manager Instance

Add the Cloud Manager instance to the Security List that you defined in the earlier section Creating a Security List. You must complete this step to enable access to Cloud Manager PIA from the public-internet security IP list mentioned earlier.
Adding an instance to a security list allows it to communicate freely with all other instances in that same security list.

  1. Select the Instances tab on the Cloud Compute Service console.
  2. Click the options icon (Options icon) for the Cloud Manager instance and select View.
  3. Click Add to Security List in the section Security Lists.
    Security Lists section on instance overview page
  4. In the Add to Security List dialog box, select the security list you created.

    Add to Security List dialog box
  5. If you created other security lists, for example for the 8443 port, add them.

Ensuring File Server Access

The Cloud Manager installation sets up a file server to be used with the Cloud Manager Repository feature to automatically download updates. During the Cloud Manager Instance Configuration procedure in the previous section, one of the steps specified the size for the file server.

As you continue to use Cloud Manager, you may add an additional file server to a Cloud Manager instance. It is important to note that you must manually add your personal public key to the file server when you first set it up (provision it). Otherwise, you may not have SSH access.

For more information on working with file servers, see the PeopleSoft Cloud Manager online documentation.

Accessing the Cloud Manager Instance in a Browser

Sign in to the running Cloud Manager instance in a browser, using a URL constructed from the publicly addressable DNS name. As mentioned, you can find the Cloud Manager URL in the log file created after the successful completion of the Cloud Manager Instance Configuration Wizard.

Alternatively, to determine the URL, locate the public IP address of the Oracle Compute Cloud Service instance.

  1. Select the Instances tab.
  2. Click the options icon (Options icon) for the Cloud Manager instance and select View to review the instance details.
  3. Note the Public IP address.
    The URL also requires the HTTP or HTTPS port, as listed in the summary information for the Cloud Manager Instance Configuration Wizard in the previous section.

    The URL will always follow this format for HTTP:
    http://oc-<public-ip-address-using-hyphens>.compute.oraclecloud.com:<http_port>/ps/signon.html

    For HTTPS:
    https://oc-<public-ip-address-using-hyphens>.compute.oraclecloud.com:<https_port>/ps/signon.html

    For example, for Cloud Manager that was configured with HTTP port 8002 on an Oracle Compute Cloud Service instance with the public IP address 198.51.100.67, the URL  is:
    http://oc-198-51-100-67.compute.oraclecloud.com:8002/ps/signon.html.

  4. Enter the Cloud Manager URL in a browser to display the sign in window.
Note. Oracle strongly recommends that you change the default PeopleSoft Pure Internet Architecture (PIA) user passwords, because the Oracle Compute Cloud Service instances are on the public Internet.

Specifying the Cloud Manager Settings

Using the Cloud Manager Settings Page

Use the Cloud Manager Setting page to specify user IDs and other information before using Cloud Manager to create topologies and templates.

  1. Sign in to Cloud Manager in a browser using the Cloud Administrator user ID and password.
  2. On the home page, select the Cloud Manager Settings tile.
    Note that the Cloud Manager Settings tile appears only for users who sign in with the Cloud Administrator user ID.
    Cloud Manager home page with Setting tile
  3. Select Settings from the left-hand panel.
  4. In the Oracle Cloud Service section, verify that the information for your Oracle Compute Cloud Service account is correct. This information is based on the input to the Cloud Manager Instance Configuration wizard.
    • Domain Name: Enter your Oracle Compute Cloud Service Identity Domain.
    • User Name: Enter your Oracle Compute Cloud Service account ID.
    • Password: Enter the password for your Oracle Compute Cloud Service account.
    • DBaaS REST Endpoint: Enter the URL to access Oracle Database Cloud Service if you have an account. You can find the REST endpoint on the Service Details page for your Identity Domain, or on the instance details page.
    • Compute REST Endpoint: Enter the URL to access Oracle Compute Cloud Service. You can find the REST endpoint on the Service Details page for your Identity Domain, or on the instance details page.
    Oracle Cloud Service section of Cloud Manager Settings page
  5. In the My Oracle Support (MOS) Credentials section, verify that the user ID and password for your My Oracle Support account are correct. This information is based on the input to the Cloud Manager Instance Configuration wizard.
    Enter the URL https://updates.oracle.com.
    Read the MOS License information and click the links to read about the My Oracle Support terms of use and privacy policy.
    Note. Be sure to read the My Oracle Support license information before you subscribe to download channels.
    My Oracle Support (MOS) Credentials section of Cloud Manger Settings page
  6. In the PeopleSoft Credentials for REST Services, verify the delivered Cloud Manager Administrator user name, CLADM, and password. This information is based on the input to the Cloud Manager Instance Configuration wizard.
    This refers to the standard Integration Broker REST services that are available in the Cloud Manager instance. These REST services are used internally by Cloud Manager modules to send and receive the results of long-running, asynchronous activities.
    PeopleSoft Credentials for REST Services section of Cloud Manager Settings page
  7. In the Lift & Shift Container section, the container name is included for information.
    Lift & Shift Container section of Cloud Manager Settings page
  8. If you have a license for a COBOL compiler, enter your COBOL serial number and license key in the Cobol License section (optional).
    Note. Oracle is the exclusive reseller of the Micro Focus COBOL compiler for use with PeopleSoft applications. Contact your Oracle sales representative for a license.
    Cobol License section of Cloud Manager Settings page
  9. Enter information about operating system images that Cloud Manager will access, if available.
    The following example shows the Operating System Image section after specifying two images, for Oracle Linux 6.6 and Microsoft Windows Server 2012, which may be needed, for example, with PUM environments.
    You can obtain image information using one of these methods:
    • To obtain image information from the Images page: On the Oracle Cloud dashboard, access the Oracle Compute Cloud Services console. Select the Images tab, and hold the cursor over the image name to see the image URL.
    • Alternatively, after creating an instance from an image, select the Instances tab. Click the menu icon Menu icon for the instance, and select View.
      On the Instances Overview page, the Image URL is included in the Information section.
    Operating System Image section of Cloud Manager Settings page
    Note. Use the Linux 6.6 image /oracle/public/OL-6.6-20GB-x11-RD, shown in this example, as the reference image. There can be provisioning failures if a private (custom) image is used, due to any missing software components (for example, nfs-utils). In such a case, rebuild the private image with missing components. See the Troubleshooting and Known Issues page on the PeopleSoft Cloud Manager Home Page, My Oracle Support, Doc ID 2231255.2, for information about the Linux image.
  10. In the File Server Details section, the Cloud Manager file server host name is included for information.
    File Server Details section of Cloud Manager Settings page

Using the My Settings Page

End users can enter or edit their public SSH key on the My Settings page. After adding this SSH key, Cloud Manager will inject the key into the Linux VM of any PeopleSoft environment that you provision. You can see the SSH keys associated with the PeopleSoft environment by viewing the details for the instance in the Oracle Cloud Compute console.

  1. From the Cloud Manager home page, click the My Settings tile.
  2. To enter a new SSH Public key, enter the text in the My SSH Publish Key field and click Save.
    My Settings page
  3. To edit or replace an existing key, enter the text for the key, and then click Save.
  4. Click Edit, and change or replace the text.
  5. Click Save again.

Reviewing Cloud Manager User, Roles, and Permission Lists

Understanding Cloud Manager Roles, Permission Lists, and User

Cloud Manager is delivered with these roles, permission lists, and user account:

  • Delivered roles
    • Cloud Administrator (PACL_CAD)
    • Cloud PeopleSoft Administrator (PACL_PAD)
    • Self-Service User (PACL_SSC)
  • Delivered permission lists
    • Cloud Administrator Permissions (PACL_001)
    • PeopleSoft Admin for Cloud (PACL_002)
    • Cloud Self Service (PACL_003)
  • Delivered user account
    The CLADM user account is associated with the Cloud Administrator role and other PeopleSoft administrative roles.

Here is a brief summary of the tasks associated with each delivered role. 

The Cloud Administrator:

  • Downloads and initiates the Cloud Manager image from Oracle Cloud Marketplace.
  • Provisions the Cloud Manager instance in Oracle Compute Cloud Service.
  • Configures the Cloud Manager Repository to auto-download required PeopleSoft Update Images (PIs) from My Oracle Support.
  • Has access to all Cloud Manager tiles.
  • Has the ability to add Cloud PeopleSoft Administrator and Self-Service Users.
  • Can manage all environments.

The Cloud PeopleSoft Administrator:

  • Creates deployment templates based on downloaded PIs or customer environments that have been cloned to template in Oracle Compute Cloud Service.
  • Has access to the Topology, Environment Template, Environments, and My Settings tiles.
  • Can manage all environments.

The Self-Service User:

  • Creates Oracle Compute Cloud Service instances from available templates.
  • Starts, stops, and deletes instances.
  • Has access to the Environments and My Settings tiles.
  • Can manage only his own environments.

Viewing Cloud Manager Permission Lists and Roles

To view the delivered Cloud Manager Permission Lists:

  1. On the Cloud Manager home page, click the NavBar button at the top right, click the Navigator button, and select PeopleTools, Security, Permissions & Roles, Permission Lists from the menu.
    Accessing Navigator button and PeopleTools menu
  2. Enter PACL in the Search By field, and click Search on the Permission Lists page to see the three delivered Cloud Manager Permission Lists, PACL_001, PACL_002, PACL_003.
    Cloud Manager Permission Lists page
  3. Navigate to PeopleTools, Security, Permissions & Roles, Roles, enter PACL and click Search to view the delivered Cloud Manager Roles, PACL_CAD, PACL_PAD and PACL_SSC.
    Cloud Mananger Roles list
  4. Select PACL_CAD from the Search Results and select the Permission Lists tab.
    The permission lists that are associated with Cloud Administrator include PACL_001, PACL_002, and PACL_003.
    Cloud Administrator Permission Lists
  5. Click Next in List to view the three permission lists associated with PACL_PAD, the Cloud PeopleSoft Administrator.
    The associated permission lists include the Cloud Manager permission lists PACL_002 and PACL_003.
    Cloud PeopleSoft Administrator permission lists
  6. Click Next in List to view the two permission lists associated with PACL_SSC, the Cloud Self Service User.
    The associated permission list is the Cloud Manager permission list PACL_003.
    Cloud Self Service User permission lists

Adding Cloud Manager Roles to an Existing User Profile

To set up a user profile for a Cloud Manager user, the Cloud Administrator can create a new user, or begin with an existing user and add the requisite roles, as shown in this section. For details on working with PeopleSoft user profiles, see PeopleTools Security Administration, "Working with User Profiles."
  1. Sign in to Cloud Manager in a browser using the Cloud Administrator user ID, CLADM, and password. 
  2. On the home page, select PeopleTools, Security, User Profiles, Copy User Profiles to access the User Profiles search page.
    PeopleTools, Security, User Profiles, Copy User Profiles
  3. Select the User ID that you want to copy, for example PRODMGR.
  4. On the Copy User Profiles page, enter a new user ID, CLDPRODMGR in this example, a description, and the password that the new user ID should use to sign in to Cloud Manager.
    Note. This example show the Copy ID Type Information option selected. If this option is not selected, the system does not save the EMPLID in the PSOPRDEFN table.
    Click Save.
    Copy User Profiles, New User Information page
  5. On the General page, supply any necessary information.
    Copy User Profile General page
  6. Select the Roles tab, and click the plus sign in the User Roles table to add a new row.
    Copy User Profile Roles page
  7. On the Look Up Role Name page, enter PACL in the search field, and select PACL_PAD, for the Cloud PeopleSoft Administrator.
    Look Up Role Name page
    The new role appears in the User Roles table.
    Copy user Profile Roles page after addition
  8. Repeat steps 6 and 7 to add other Cloud Manager roles.

Activating REST Service Operations

To activate Integration Broker REST service operations:
  1. From the Cloud Manager home page, select PeopleTools, Integration Broker, Integration Setup, Service Operations.
    The Service Operations - Search page appears.
  2. Search for and view the ECL_DM_POST service operation.
  3. On the General page, ensure that the REST service operation is active.
  4. Select the Handlers and ensure that the service operation handlers are active.
  5. Select the Routing page and ensure that the service operation routings are active.
  6. Repeat steps 1-5 for the ECL_EVENT_POST and VMLIST_GET service operations.
    See the product documentation PeopleTools Integration Broker: "Accessing and Viewing Service Operation Definitions."

Applying a Meta-Data Update for Database as a Service Configuration

Apply the following SQL statement to update Cloud Manager to use the correct parameter for the DBaaS URL when provisioning a database on Oracle Database Cloud Service (DBaaS).

  1. Sign in to the Cloud Manager VM using SSH.
  2. Change to the psadm2 user with this command:
    $ sudo su -psadm2
  3. Determine the Service Name required to connect to the Cloud Manager database, found in the tnsnames.ora file (/opt/oracle/psft/db/tnsnames.ora).
    $ cat /opt/oracle/psft/db/tnsnames.ora
    Here is a sample tnsnames.ora file in which the SERVICE_NAME is PSPSDB:
    PSPSDB = 
     (DESCRIPTION = 
       (ADDRESS_LIST = 
         (ADDRESS = (PROTOCOL = TCP)(HOST =xxxxxx.mydomain.oraclecloud.internal)(PORT = 1562)) 
        )
        (CONNECT_DATA = 
          (SERVER = DEDICATED) 
          (SERVICE_NAME = PSPSDB) 
         ) 
       ) 
  4. Connect to the Cloud Manager pluggable database (PDB) with the SQLPLUS utility, using the service name from the previous step.
    The syntax for the SQLPLUS command is:
    SQLPLUS [-S] [userid[/password[@connect-string]]]
    For example:
    $ sqlplus SYSADM/<password>@PSPSDB
  5. Run the following SQL statements:
    SQL> update ps_ecl_svc_typeval set ECL_SVC_TYPE = 'DBaaS' where ECL_SVC_TYPE ='Dbaas'; 
    SQL> commit;

Want to Learn More?