JES2005Q4 Hosted Domain Setup Notes
This worked for me with JES2005Q4 Msg -58 UWC -42 / Sparc, Schema2
My setup already had actualdomain UWC working with SSO mail and cal.
I followed the single-host deployment example: http://docs.sun.com/source/819-4879/
Set DNS: add A,MX,etc. records for your hosted domains.
Edit your /etc/hosts file - mine looks like:
127.0.0.1localhost
192.168.1.2mail.actualdomain.com mailloghost
192.168.1.2mail.hosted1.com mail.hosted2.com mail.hosted3.com
Create hosted domains and users:
/opt/SUNWcomm/bin/commadmin domain create -D admin -d hosted1.com -n mail.actualdomain.com -w adminPass -S mail,cal -H mail.hosted1.com
/opt/SUNWcomm/bin/commadmin user create -D admin -w adminPass -X mail.hosted1.com -n mail.actualdomain.com -p 81 -d hosted1.com -F John -L Smith -l jsmith -W userPass -A +mailEquivalentAddress:john@hosted1.com -S mail,cal
Repeat above for additional hosted domains, users, etc.
Note my webserver is on port 81, and I created an equivalent address (john) for jsmith.
Assumes Calendar Server is installed, activates for on domain and for user.
Assumes your hostname is 'mail' for actual and virtual domains.
After creating the hosted domains and users for them you need, add each hosted domain to local.imta.hostnamealiases, e.g.:
/opt/SUNWmsgsr/sbin/configutil -o local.imta.hostnamealiases -v "mail.hosted1.com,mail.hosted2.com,mail.hosted3.com"
Note multiple local.imta.hostnamealiases are comma delimited (no spaces).
Edit the /etc/opt/SUNWam/config/AMConfig.properties file, search fqdnMap:
add it (or them) like this:
com.sun.identity.server.fqdnMap[mail.hosted1.com]=mail.hosted1.com
com.sun.identity.server.fqdnMap[mail.hosted2.com]=mail.hosted2.com
com.sun.identity.server.fqdnMap[mail.hosted3.com]=mail.hosted3.com
If you have a value for local.webmail.sso.uwclogouturl remove it by:
/opt/SUNWmsgsr/sbin/configutil -o local.webmail.sso.uwclogouturl -v ""
You can check this like: /opt/SUNWmsgsr/sbin/configutil | grep local.webmail.sso.uwclogouturl
This will allow your logout URL to be whatever you are using at the time (e.g. the actual or hosted)
Edit /var/opt/SUNWuwc/WEB-INF/config/uwcauth.properties, search isvirutalhostname and add entry to file like:
mail.actualdomanin.com.isvirutalhostname=mail.actualdomanin.com
Also, in /var/opt/SUNWuwc/WEB-INF/config/uwcauth.properties set: virtualdomain.mode = y
For each hosted domain, create a folder under /var/opt/SUNWuwc/WEB-INF/domain/
copy the original contents of /var/opt/SUNWuwc/WEB-INF/domain/ to each of your hosted domain folder(s).
I also copied en to en-us (and put it under each hosted domain folder too). This because I saw in the logs the app looks for files there. If you are having trouble copying folders with symbolic links, you can tar, untar in new dir, rename, move, etc.
mine looks like:
# ls -alt
total 28
drwxr-xr-x5 rootother512 Apr 2 18:11 hosted1.com
drwxr-xr-x5 rootother512 Apr 2 18:11 hosted2.com
drwxr-xr-x5 rootother512 Apr 2 18:11 hosted3.com
drwxr-xr-x8 rootother512 Apr 2 18:11 .
drwxr-xr-x2 rootother512 Apr 2 18:11 en-us
drwxr-xr-x2 rootother512 Mar 24 22:58 defaultps
-rw-r--r--1 rootother3045 Mar 24 22:58 uwcdomainconfig.properties
drwxr-xr-x8 rootother512 Mar 24 22:05 ..
drwxr-xr-x2 rootother512 Mar 24 22:05 en
-rw-r--r--1 rootother2798 Mar 24 22:05 personalstore.properties
# cd hosted1.com/
# ls -l
total 20
drwxr-xr-x2 rootother512 Mar 24 22:58 defaultps
drwxr-xr-x2 rootother512 Mar 26 12:28 en
drwxr-xr-x2 rootother512 Apr 2 18:11 en-us
-rw-r--r--1 rootother2804 Apr 4 14:30 personalstore.properties
-rw-r--r--1 rootother3085 Mar 28 00:12 uwcdomainconfig.properties
Inside each hosted domain folder, edit personalstore.properties and add one more level of relativity to the 2 path entries (e.g. change any reference to ../ to ../../
Because I'm not sure, whenever I make changes to UWC files I do it in /var/opt/SUNWuwc/WEB-INF/ and /opt/SUNWuwc/WEB-INF/ - so, for file creation or conf file editing, I do it in both places - probably fine to do it only in /var/opt/SUNWuwc/WEB-INF/.
In amconsole, under 'Service Configuration', 'Platform', add cookie domains for each hosted domain e.g., .hosted1.com, etc. You should see your .actualdomain.tld already there. This step is important. Your hosted domain in UWC won't work unless you have the particular cookiedomain specified.
Under services, for each hosted domain, make sure each has ldapService as an 'Authentication Configuration', and that it is selected in the two selectors under Core. Each of mine had this with the exception of the actualdomain, I added it, and it did not seem to hurt. Just create new 'Authentication Configuration' for actuadomain, name it ldapService, save it, select it in the two places under Core, save. This may not be necessary to do for actualdomain, so consider skipping.
The UWC logging can be set under /var/opt/SUNWuwc/WEB-INF/config/uwclogging.properties - there's an undocumented further grain called FINEST - I recommend setting this until you've ironed-out any problems. See the log under /var/opt/SUNWuwc/logs/uwc.log
My /opt/SUNWics5/cal/config/ics.conf's default base DNs didn't work (Calendar wouldn't load in UWC, I got "The application is not configured properly. Contact your administrator." error) - I set them to my most top-level o=isp
local.authldapbasedn = "o=isp"
local.ugldapbasedn = "o=isp"
service.dcroot = "o=isp"
service.schema2root = "o=isp"
Also in /opt/SUNWics5/cal/config/ics.conf:
service.virtualdomain.support = "y"
service.admin.calmaster.cred = "adminPass"
service.admin.calmaster.userid = "calmaster"
- and it worked.
I'm certain to have missed some config details, but most are out there, in these forums, Google, the Arnold list, etc. Check your error logs for details.
I made this because the documentation for hosted domains, when I could find it, was incomplete, and often didn't make sense (to me).
