Why and when to perform this task
By default, the Network Deployment product on Linux and UNIX platforms uses the root user to run the deployment manager, which is the dmgr process. You can use a non-root user to run the deployment manager. However, that ID must be part of the primary group.If global security is enabled, the user registry must not be Local OS. Using the Local OS user registry requires the dmgr process to run as root.
For the steps that follow, assume that:
To configure a user to run the deployment manager, complete the following steps:
Steps for this task
Issue the script command from the install_nd_root/bin directory:
./startManager.sh
Click System Administration > DeploymentManager > Process Definition > Process Execution and change all of these values:
Property | Value |
---|---|
Run As User | wasadmin |
Run As Group | wasgroup |
UMASK | 002 |
Issue the script command from the install_nd_root/bin directory:
./stopManager.sh
Note: When you use the chown command to change the owner of JSPs that are already complied and reside in the temp directory, the CPU does not have to continuously recompile these JSP. If you do not issue this command, you should delete the application temp directory to lower CPU usage.
chown wasadmin:wasgroup /opt/WebSphere/DeploymentManager/temp chgrp wasgroup /opt/WebSphere chgrp wasgroup /opt/WebSphere/DeploymentManager chgrp -R wasgroup /opt/WebSphere/DeploymentManager/config chgrp -R wasgroup /opt/WebSphere/DeploymentManager/logs chgrp -R wasgroup /opt/WebSphere/DeploymentManager/wstemp chgrp -R wasgroup /opt/WebSphere/DeploymentManager/installedApps chgrp -R wasgroup /opt/WebSphere/DeploymentManager/temp chgrp -R wasgroup /opt/WebSphere/DeploymentManager/tranlog chmod g+wr /opt/WebSphere chmod g+wr /opt/WebSphere/DeploymentManager chmod -R g+wr /opt/WebSphere/DeploymentManager/config chmod -R g+wr /opt/WebSphere/DeploymentManager/logs chmod -R g+wr /opt/WebSphere/DeploymentManager/wstemp chmod -R g+wr /opt/WebSphere/DeploymentManager/installedApps chmod -R g+wr /opt/WebSphere/DeploymentManager/temp chmod -R g+wr /opt/WebSphere/DeploymentManager/tranlog
Issue the script command from the install_nd_root/bin directory:
./startManager.sh
Results
You can start a deployment manager process from a non-root user.