5.4.3 Configuring SQL Server for Adobe-preconfigured JBoss

To enable JBoss to connect to the SQL Server database that stores AEM forms on JEE data, you must create a SQL Server data source file and deploy it to the instance of JBoss where you will deploy AEM forms on JEE (for example, [appserver root] \standalone\configuration\).

Note: Encrypt the password in the data source files lc_turnkey.xml file using one of the methods described at http://community.jboss.org/wiki/EncryptingDataSourcePasswords . You can also use the instructions available on http://blogs.adobe.com/livecycle/2009/10/livecycle_-_encrypting_clearte.html .

5.4.3.1 Edit lc_turnkey.xml file

  1. Open the [appserver root] /standalone/configuration/lc_turnkey.xml file in a text editor and locate this line: 

    <connection-url>jdbc:sqlserver://localhost:1433;DatabaseName=adobe</connection-url> 
<driver-class>com.microsoft.sqlserver.jdbc.SQLServerDriver</driver-class>

  2. Replace the following text from the above line with values that are specific to your database:

    • localhost : The name, IP address, or fully-qualified path of the computer that hosts the database. The default is localhost .

    • 1433 : The port used to access the database. The default port is 1433 .

    • adobe : The name of the database that stores the AEM forms on JEE data. You will need to update the default value, adobe , with your database name.

  3. In the lines that follow the <connection-url> settings, locate the user-name and password settings and replace the default values with the user name and password that the application server uses to access your database.

  4. Ensure that the minimum and maximum values for the data source connections are set as follows:

    • For IDP_DS: 

      <min-pool-size>1</min-pool-size> 
<max-pool-size>30</max-pool-size>

    • For EDC_DS: 

      <min-pool-size>1</min-pool-size> 
<max-pool-size>30</max-pool-size>
      Note: If your AEM forms on JEE server handles heavy load, increase the number of maximum JDBC connections to ensure that all jobs are processed. In such cases, increase <max-pool-size> to 50 or more for both IDP_DS and EDC_DS.

  5. Save and close the file.

5.4.3.2 Edit lc_turnkey.xml file

  1. Open the [appserver root] /standalone/configuration/lc_turnkey.xml file in a text editor and modify the following code within the <authentication> element: 

    Replace: 
 
<security-domain name="EncryptDBPassword"> 
                    <authentication> 
                        <login-module code="org.picketbox.datasource.security.SecureIdentityLoginModule" flag="required"> 
                            <module-option name="userName" value="adobe"/> 
                            <module-option name="password" value="5c2f412d6fa61722"/> 
                            <module-option name="managedConnectionFactoryName" value="jboss.jca:name=DefaultDS,service=LocalTxCM"/> 
                        </login-module> 
                    </authentication> 
                </security-domain> 
          <security-domain name="EncryptDBPassword_IDP_DS"> 
                    <authentication> 
                        <login-module code="org.picketbox.datasource.security.SecureIdentityLoginModule" flag="required"> 
                            <module-option name="userName" value="adobe"/> 
                            <module-option name="password" value="5c2f412d6fa61722"/> 
                            <module-option name="managedConnectionFactoryName" value="jboss.jca:name=IDP_DS,service=LocalTxCM"/> 
                        </login-module> 
                    </authentication> 
                </security-domain> 
        <security-domain name="EncryptDBPassword_EDC_DS"> 
                    <authentication> 
                        <login-module code="org.picketbox.datasource.security.SecureIdentityLoginModule" flag="required"> 
                            <module-option name="userName" value="adobe"/> 
                            <module-option name="password" value="5c2f412d6fa61722"/> 
                            <module-option name="managedConnectionFactoryName" value="jboss.jca:name=EDC_DS,service=LocalTxCM"/> 
                        </login-module> 
                    </authentication> 
                </security-domain>

  2. Replace the bold text with values that are specific to your database so that the application server can access your database.

  3. Save and close the file.

  4. Start JBoss.

5.4.3.3 Map the Windows login to the AEM forms on JEE database user

  1. Using Microsoft SQL Server Management Studio, connect to the database server that hosts the AEM forms on JEE database.

  2. Set the Authentication mode to Windows authentication .

  3. Under Security > Logins , create a new account for the Windows domain user and select Windows authentication .

  4. Click User Mapping on the Login - New screen and set the database and default schema for the new user.

  5. Select db_owner as the Database role and click OK .

To verify that you created the user, expand the AEM forms on JEE database in the tree and open Security > Users . The new user appears in the list of users.

5.4.3.4 Install the SQL Server database driver

Note: If you have not done so already, download the SQL Server JDBC Driver 3.0 (for all platforms) from Microsoft Download Center or copy the driver from [DVD root]/third_party/ to the [appserver root]/server/<profile_name>/lib directory.

If you are installing from Microsoft Download Center, follow the instructions on the website for downloading and installing the driver. Make a note of the directory location where you install the driver on your system.

Note: Use SQL Server JDBC Driver 3.0 for both Microsoft SQL Server 2005 SP2 and Microsoft SQL Server 2008.

5.4.3.5 Configure integrated security on Windows

Note: You must run the JBoss service as the Windows user configured in 5.4.3.3 Map the Windows login to the AEM forms on JEE database user . If JBoss is not running as a service, you must log in to Windows as that particular user before you start JBoss from a command prompt.

  1. Modify the lc_turnkey.xml files, located in [appserver root] \standalone\configuration\, to add integratedSecurity=true to the connection URL as shown in this example:

    jdbc:sqlserver:// < hostname> : <port> ;databaseName= <db-name> ;integratedSecurity=true.

  2. Replace the values shown in bold in the above example with values appropriate to your database server.

  3. Add the sqljdbc_auth.dll file to the Windows systems path (C:\Windows) on the computer that is running JBoss. The sqljdbc_auth.dll file is located within the Microsoft SQL JDBC 3.0 driver installation The default location is [SQL_root]/sqljdbc_3.0/enu/auth/x86 for 32-bit operating systems and [SQL_root]/sqljdbc_3.0/enu/auth/x64 for 64-bit operating systems.

    Note: Use SQL Server JDBC Driver 3.0 for Microsoft SQL Server 2008.

  4. Open the properties for the JBoss for Adobe Experience Manager forms service or the JBoss service that you configured, and click the Log On tab.

  5. Select This Account and type the value of the user account that you mapped in 5.4.3.3 Map the Windows login to the AEM forms on JEE database user . If you are running JBoss from the command line, you must be logged in as this user.

// Ethnio survey code removed