How to install IBM connect direct in silent mode ?

Create a options.txt file like below and excute with the help of cdinstall_a

cdai_trace=y
  cdai_installCmd=install
  cdai_cpioFile=6.2.0.1-IBMSterlingConnectDirectforUNIX-Linux-x86-iFix016.tar
  cdai_installDir=/opt/cdunix
  cdai_localNodeName=osboxes
  cdai_acquireHostnameOrIP=ip4
  cdai_serverPort=13364
  cdai_clientPort=13363
  cdai_localCertFile=/tmp/keycertfiles/keycert
  cdai_localCertPassphrase=XXXXXXX
  cdai_adminUserid=cduser
  cdai_keystoreFile=
  cdai_keystorePassword=XXXXXXX
executed below command 
./cdinstall_a -f optionsFile.txt

inside the optionsFile.txt will have all the parameters that we intend to pass to the installer .

cdai_localCertFile=key.pem

cdai_localCertLabel=cert

cdai_localCertPassphrase=P@ssw0rd

openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem

ERROR :

  **************************************************************

  *        Secure+ Command Line Interface        *

  *  IBM(R) Connect:Direct(R) Secure Plus v6.2.0.1      *

  *————————————————————*

  * Licensed Materials – Property of IBM            *

  * (C) Copyright IBM Corp. 1999, 2021 All Rights Reserved.  *

  * US Government Users Restricted Rights – Use, duplication  *

  * or disclosure restricted by GSA ADP Schedule Contract   *

  * with IBM Corp.                       *

  **************************************************************

SPCLI> SPCG772I rc=0 Import Info, label: CD – Certificate imported successfully.

SPCG690I rc=0 Import KeyStore command successful: Imported(1), Errors(0), Warnings(0)

SPCLI> SPCG186E rc=8 The specified file “/tmp/CD/key.pem” is not a PEM key certificate.

SPCLI> SPCG773E rc=8 Node: .Local – error: The Certificate Label ‘cert’ does not exist.

SPCG774W rc=4 Node: .Local – warning: The following Cipher Suites are not supported by the Protocols listed and may be ignored during sessions.

    * TLS_AES_256_GCM_SHA384 will be ignored by TLS 1.2

    * TLS_AES_128_GCM_SHA256 will be ignored by TLS 1.2

    * TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_CBC_SHA will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_CBC_SHA will be ignored by TLS 1.3

SPCLI> SPCG774W rc=4 Node: .Client – warning: Override is disabled, all client API applications must use the Secure+ Protocol specified.

SPCG773E rc=8 Node: .Client – error: The Certificate Label ‘cert’ does not exist.

SPCG774W rc=4 Node: .Client – warning: The following Cipher Suites are not supported by the Protocols listed and may be ignored during sessions.

    * TLS_AES_256_GCM_SHA384 will be ignored by TLS 1.2

    * TLS_AES_128_GCM_SHA256 will be ignored by TLS 1.2

    * TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_CBC_SHA will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_CBC_SHA will be ignored by TLS 1.3

SPCLI> 20220322 17:16:39   8 CDAI007E Secure+ configuration failed.

20220322 17:16:39   0 CDAI010I createExitStatusFile() entered.

20220322 17:16:39   0 CDAI010I createExitStatusFile() exited.

20220322 17:16:39   8 CDAI001E Connect:Direct automated installation failed.

20220322 17:16:39   0 CDAI010I exitScript() entered.

20220322 17:16:39   0 CDAI010I copyOutputFiles() entered.

20220322 17:16:39   0 CDAI010I copyOutputFiles() exited. rc=0

cdai_localCertFile=key.pem

cdai_localCertLabel=cert

cdai_localCertPassphrase=P@ssw0rd

openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem

ERROR :

  **************************************************************

  *        Secure+ Command Line Interface        *

  *  IBM(R) Connect:Direct(R) Secure Plus v6.2.0.1      *

  *————————————————————*

  * Licensed Materials – Property of IBM            *

  * (C) Copyright IBM Corp. 1999, 2021 All Rights Reserved.  *

  * US Government Users Restricted Rights – Use, duplication  *

  * or disclosure restricted by GSA ADP Schedule Contract   *

  * with IBM Corp.                       *

  **************************************************************

SPCLI> SPCG772I rc=0 Import Info, label: CD – Certificate imported successfully.

SPCG690I rc=0 Import KeyStore command successful: Imported(1), Errors(0), Warnings(0)

SPCLI> SPCG186E rc=8 The specified file “/tmp/CD/key.pem” is not a PEM key certificate.

SPCLI> SPCG773E rc=8 Node: .Local – error: The Certificate Label ‘cert’ does not exist.

SPCG774W rc=4 Node: .Local – warning: The following Cipher Suites are not supported by the Protocols listed and may be ignored during sessions.

    * TLS_AES_256_GCM_SHA384 will be ignored by TLS 1.2

    * TLS_AES_128_GCM_SHA256 will be ignored by TLS 1.2

    * TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_CBC_SHA will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_CBC_SHA will be ignored by TLS 1.3

SPCLI> SPCG774W rc=4 Node: .Client – warning: Override is disabled, all client API applications must use the Secure+ Protocol specified.

SPCG773E rc=8 Node: .Client – error: The Certificate Label ‘cert’ does not exist.

SPCG774W rc=4 Node: .Client – warning: The following Cipher Suites are not supported by the Protocols listed and may be ignored during sessions.

    * TLS_AES_256_GCM_SHA384 will be ignored by TLS 1.2

    * TLS_AES_128_GCM_SHA256 will be ignored by TLS 1.2

    * TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_GCM_SHA384 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_GCM_SHA256 will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_128_CBC_SHA will be ignored by TLS 1.3

    * TLS_RSA_WITH_AES_256_CBC_SHA will be ignored by TLS 1.3

SPCLI> 20220322 17:16:39   8 CDAI007E Secure+ configuration failed.

20220322 17:16:39   0 CDAI010I createExitStatusFile() entered.

20220322 17:16:39   0 CDAI010I createExitStatusFile() exited.

20220322 17:16:39   8 CDAI001E Connect:Direct automated installation failed.

20220322 17:16:39   0 CDAI010I exitScript() entered.

20220322 17:16:39   0 CDAI010I copyOutputFiles() entered.

20220322 17:16:39   0 CDAI010I copyOutputFiles() exited. rc=0

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++

openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem

this command only create a private/public key which is not key certificate

key.pem is private key

thatswhy below error is coming

SPCLI> SPCG186E rc=8 The specified file “/tmp/CD/key.pem” is not a PEM key certificate.

SPCLI> SPCG773E rc=8 Node: .Local – error: The Certificate Label ‘cert’ does not exist.

If not required Secure+ then you have to below thing

To avoid the need to provide certificates for the CDU Silent Install process, you will create a

“Secure+ configuration file” as noted in the above Technote, but the file will have only the

following single line in the file.

quit;

That is all – just this one line.

Following is an example of a CDU Silent Installation Options File for doing a minimal Silent installation.

cdai_installCmd=install

cdai_cpioFile=”/<cdu_installer_file_path>/cdinstall/silent/cdunix”

cdai_installDir=”/<cdu_installation_path>/cdunix”

cdai_localNodeName=”my_cdu_server”

cdai_acquireHostnameOrIP=ip4

cdai_adminUserid=cdadmin <<<This is the userId logged in and doing the install.>>>

cdai_trace=y

cdai_spConfig=”no_spconfig.txt” <<<This is the file containing the single line noted above.>>>

cdai_allowUmaskReset=y

cdai_agentEnable=n <<<Disables the Install Agent component.>>>

cdai_agentOSADisable=y <<<Disables the Install Agent component.>>>

cdai_installFA=y <<<Choose to install Integrated File Agent, set to ‘n’ to not install.>>>

cdai_fileAgentEnable=n <<<Choose to enable or disable the Integrated File Agent.>>>

You can try with above minimal configuration and configure the required configuration once the basic installation is completed.

Related Posts

Leave a Reply

Your email address will not be published.