Error404 class java.lang.ClassNotFoundException: _ibmjsp._login

When login to WAS admin console in IE if you get the below error

An error occurred while processing request:%2Fibm%2Fconsole%2Flogin.jsp

Message:SRVE0200E: Servlet [_ibmjsp._login]: Could not find required class - class java.lang.ClassNotFoundException: _ibmjsp._login.

Its a browser issue .Please clear the cache and try or go for a  different browser.

Websphere MQ installation in RHEL Linux

Download the tar file from password advantage.If you want to use a trial version please download from IBM MQ.

The MQ will be installed using rpm package so install rpm if not available in your  linux environment.

Untar the package and  Agree the license before installation using root user.

 ./mqlicense.sh -accept

Licensed Materials - Property of IBM
                
 5724-H72

 (C) Copyright IBM Corporation 1994, 2013 All rights reserved.

US Government Users Restricted Rights - Use, duplication or disclosure
restricted by GSA ADP Schedule Contract with IBM Corp.



Agreement accepted:  Proceed with install.

Use rpm to install MQ.

 rpm --prefix <install path> -ivh MQSeriesRuntime-*.rpm MQSeriesServer-*.rpm
Preparing...                ########################################### [100%]
   1:MQSeriesRuntime        ########################################### [ 50%]
   2:MQSeriesServer         ########################################### [100%]

We have installed only the MQSeriesRuntime and MQSeriesServer.IF you want to install all the component use rpm -ivh *.rpm.

Refer the RPM useful commands.

To set this installation as primary one.Use the below command.

<installpath>/bin/setmqinst -i -p <install path>118 of 118 tasks have been completed successfuly.
'<installpath> set as the Primary Installation. 

To check the system compatability run mqconfig under bin folder.

./mqconfig

It will check the ulimit and semaphore values .

How to do Apache webserver browser caching for static files

When a URL is hit it reaches the webserver and other component and serve you  back the content.Some websites might have more static content like images ,js etc.These  files can be cached at the browser so the next hit from the same browser wont go  to the webserver and it will be served from the browser cache.To do this we need the below setup at the webserver.

Check the below module is loaded in httpd.conf

LoadModule expires_module modules/mod_expires.so 

You can check all the modules available in your httpd by executing 

<path to httpd>/httpd -M

for ex: /usr/bin/httpd -M

Add lines similar to below depending on your need :

<IfModule mod_expires.c>
  ExpiresActive On
  ExpiresByType text/css "access plus 60 minutes"
  ExpiresByType text/javascript "access 1 year"
  ExpiresByType application/x-javascript "access plus 60 minutes"
  ExpiresByType text/xml "access plus 60 minutes"
</IfModule>

If module will check the module is there or not

ExpiresActive On directive will tell the http expire is on 

ExpiresByType will be used to tell which file type need to be cached in browser

access 1 year will keep the file type in the browser for a year,unless you clear the browser cache.

To check mod_expire is working or not.Hit the URL you wish from the browser.Hit it again

and check your webserver logs.You should not see the request logged in for the filetype

which is cached.

Or user Live http header extension for the browser to see the http header.

You will see Expires on field where it will be a future date. 

References:

Apache mod_expire

OpenSSL commands for certificate generation

Openssl is a command line tool used to generate certificates which will be used for opensource webservers like Apache and appservers like tomcat.

Most Linux/Unix platform will have openssl installed.

Check openssl is installed by issuing the command
openssl version.Below is the output.

[}$ openssl version
OpenSSL 1.0.0-fips 29 Mar 2010

To set up a SSL we need
1.private key
2.certificate request to send to CA
3.Get the certificate from CA via email.

openssl genrsa -des3 -out test.key 2048

The above command has genrsa which is to use RSA algorithm.des3 which is triple DES  algorithm  to encrypt passphrase and 2048 is the bit size.

openssl genrsa -aes128 -out test.key 2048 

In the above command mentioned aes algorithm  to use for key protection  if you dont want des3.
There are many websites to give the command you dont have to remember the command. 

2.Generate CSR.

CSR is the one where  you will provide your website information which will be used by CA to generate the certificate.

openssl req -new -key test.key -out test.csr
Once you type the command it will ask for passphrase and some other info like country ,state,email and common name.

To skip typing these either you can put the config in cnf file or put the details in the command itself.

[req]
prompt = no
distinguished_name = distinguished_name

[distinguished_name]
CN = www.test.com
emailAddress = test@test.com
O = Test Ltd
L = London
C = GB 

Place the above line in a file called test.cnf and issue the command below
openssl req -new -key test.key -out test.csr -config test.cnf
it will only ask for passphrase of the private key since other details are already mentioned in the cnf file.

The above example is for single domain.For multi domain you have to configure subject alternative name (SAN) in the cnf file with v3 extensions.

Once the csr is generated open the file with text editor and copy the content fully and paste it in any CA site you wish.
 






 

Perl script to zip native logs in websphere

#!/usr/bin/perl
my $dir='/websphere/logs';  (set to your log path directory)
if( -d $dir )
{
@jvmlist=`ls $dir/ |grep jvm`;   (grep for the content of your appserver name)
foreach(@jvmlist)
{
chomp($_);
my $loglist=`find $dir/$_/ -type f -name native_stderr.log -size +10k`;  (decide the size to zip)
if(length($loglist) > 0 )
{
print $loglist;
chdir "$dir/$_";
my $dat=`date +%d-%m-%y`;
chomp($dat);
`gzip -c native_stderr.log > nativelog_$dat.gz ; > native_stderr.log`;
}
}
}