CentOS 7.7 and HCL Domino 11 to Domino 11.0.1
Important Notes:
- We started this installation from an existing Domino 11.0 server running on Cent OS 7.7
- The instructions assume you are running the Nashed systemctl script.
- If you notice any errors, just us know using the Contact link at the top menu of this site.
- Note, if you installed an Interim Fix (IF), then you should run its install again to remove before installing a Fix pack. (Fix packs don't need to be uninstalled.)
______________________________
HCL Domino 11.0 Upgrade
to HCL Domino 11.0.1
______________________________
CentOS 7.7 Yum Updates
Note: We performed OS updates when we do Domino patching. Obviously, two things are changing with this technique, but it also means we have longer time between Domino interruptions.
$ sudo yum update
<wait for the updates to be installed>
When the updates do not include a kernel update, we don't typically do an OS restart.
$ sudo reboot
<log back in as your administrative user>
Sanity check to confirm Domino services are running normally.
- Access via Notes
- Access via Web
- Confirm mail is routing
Domino Installation:
Note; If the install properly detected that the server had no X11, it will be continued in console (terminal) mode.
1. Copy the installation file to the Domino server:
- Domino_1101_Linux_English.tar
( In our case we used FileZilla to copy the file to the /home/myadmin/tmp/dom1101/ folder )
2. Set-up/ do preparations for Upgrade:
SSH Terminal to server.
$ ssh myadmin@myserver.mindwatering.com
<enter password>
Expand the archive tar file:
$ cd /home/myadmin/tmp/dom11/
$ tar -xvf Domino_1101_Linux_English.tar
<watched files extract>
$ cd linux64
$ sudo systemctl stop domino.service
< waited the 20 seconds or so for Domino to shut down services. >
$ sudo systemctl status domino.service
< confirmed Domino services not running>
3. Perform the installation as root.
(We had an issue way back with sudo ./install not being "good enough". Therefore, we done a user switch for installs since.)
$ sudo su
# ./install
<go through the prompts>
- <Enter> to continue with default language (3 - English) at Choose Locale
- <Enter> to continue at the Introduction page
- "0" to skip to end of HCL Master License Agreement
- "Y" to agree
- <Enter> to continue
- <Enter> for NO (Data Directories Only Partitioned Domino Server
- <Enter> to continue
- <Enter> for default program folder: /opt/hcl/domino
- <Enter> to continue
- <Enter> to NO (partitioned server)
- <Enter> to continue
- <Enter> for default data folder: /local/notesdata (Data Files Directory Name)
- User Name: notes
- Group Name: notes
- <Enter> to continue
- <Enter> for No to create softlink no longer required.
- <Enter> to continue
- <Enter> for default: Manual
- <Enter> to continue
- <Enter> for default: Domino Enterprise Server
- <Enter> to continue
- <Enter> to continue after reviewing all questions answered
< wait for the install >
- <Enter> to exit the installer
Notes:
- Console mode is the only option on Linux, which, for most of us Linux Domino admins, is just fine since the install is so straightforward.
- The steps/questions are the similar to previous fixpacks. But the navigation is a bit different as the new installation program is InstallAnywhere. So you click <enter> instead of <tab> to accept a setting, and you have to use "0" to get to the end of the license fine print page.
- Since my server has been upgraded over the years, the executable path still shows an IBM based one. Update if yours if different. We also use /local/notesdata for our data path. Also, our Domino server user id is notes. Yours might be different.
- If this is the primary server, always choose the Manual options, so that you can boot the server manually for the accept the new directory changes question.
4. Start the server manually. (This assumes that you are upgrading, where a server.id and notes.ini have already been provisioned. If this is a new install, then start the server in listen mode, instead. )
$ su notes
$ cd /local/notedata/
$ /opt/ibm/domino/bin/server
< wait for boot. Answer "Yes" if this Domino instance is the Directory server, wait for server to "settle" for several minutes. >
Shutdown the Domino service.
> q
5. Exit being the notes user, and start the server normally.
$ exit
Once installed, enable and start the new Domino service
$ sudo systemctl enable domino.service
$ sudo systemctl start domino.service
______________________________
CentOS 7.7 Linux
OS Installation
and Prerequisite Steps:
______________________________ Linux CentOS 7 OS Install:
Create a new CentOS 7 VM
- 6.5 GB of memory with 1 Disk of 50 GB, and video memory of 16 MB for the X Windows system
Note: With only the CentOS 7 OS running (w/o X Windows GUI), the system used between 1.5 and 1.75 GB. So we added 4 GB to start for Domino and Sametime.
Attached to CentOS iso:
CentOS-7-x86_64-Minimal-1804.iso
Notes:
The current iso at this writing appears to be:
CentOS -7-x86_64-Minimal-1908.iso
We did NOT try the new CentOS 8 since, at this writing, some of the libraries are older than in CentOS 7.7.
Started VM and Installation:
At start page, selected top link: Install CentOS 7
On Welcome page, took the defaults of English and English US, clicked Continue.
On Installation Summary page,
- kept Date &Time default, as it was correct.
- kept SOFTWARE SELECTION as Minimal Install, as it was correct.
- Select INSTALLATION DESTINATION
--> Click the Disk icon under Local Standard Disks. (Ours says VMware Virtual disk, sda / 50 GB)
--> Click Done.
- Select NETWORK and HOST NAME
--> At the top right, changed the ens192 NIC to On
--> At the bottom, enter the hostname AND domain: myserver.mindwatering.net, click Apply
--> Clicked Configure and set-up for a static/Manual IP
- - - - IP Address: 192.168.199.100
- - - - Netmask: 24
- - - - Default Route: 192.168.199.1
- - - - DNS: 192.168.199.1 123.123.123.1
- - - - Search Domains: mindwatering.net
- - - - click Save
--> Back in the NETWORK & HOST NAME page, click Done.
With all the warning caution triangles removed/completed, click Begin Installation.
While the installation is going, under USER SETTINGS, click ROOT PASSWORD.
--> Enter the root user password in the Root Password field, enter it again in the Confirm field.
--> You can create the Domino server notes user now, or do it later. To do it now, click USER CREATION.
- - - - Fullname: notes
- - - - User name: notes
- - - - Password: *************
- - - - Confirm password: *************
- - - - (Leave checked the checkbox for Require a password to use this account. Leave unchecked the checkbox for Make this user administrator)
- - - - click Done
- - - > click Finish configuration
When done, click Reboot.
Notes:
Update the network settings to what's needed for your installation.
For the Installation Destination, we typically have on disk for the OS, one for /local/notesdata, and others for anything else needed for the box. (e.g. another one for transaction logs, and one for DAOS).
Login and Start Prerequisite Tasks:
After reboot, login as root, and update the system:
# yum update
< waited >
# yum autoremove
Install Open VMTools if Using VMware VM:
CentOS doesn't install the VMware/OpenVM tools automatically like in Ubuntu. Install the open-vm tools with:
# yum install open-vm-tools
< click y, to the request to install the RPG certificate key to trust the repository >
Start the tools (ours was not running):
# systemctl enable vmtoolsd
# systemctl status vmtoolsd
# systemctl start vmtoolsd
Install OpenSSH Server:
To remotely manage the server, and to transfer files to it, install the OpenSSH server:
# yum install openssh-server
Note: Installation of openssh-server not needed. Already installed.
Security/Limits File Updates:
Edit /etc/security/limits.conf using root and add or modify the lines:
notes soft nofile 65535
notes hard nofile 65535
(Use 65535 for 64 bit Linux for both soft and hard limits, per HCL 2019/12. )
Update SELINUX:
$ vi /etc/selinux/config
Change to SELINUX=disabled and save.
(<esc> :wq <enter> to save)
Time Server Sync:
(optional) Set up NTP if not using VMware Tools or OpenVM tools to sync time:
$ ntpdate pool.ntp.org
$ chkconfig ntpd on
32-Bit Multilib Installations?
I received confirmation from Daniel Nashed that no compat libraries or 32-bit libraries are needed anymore as ST is fully 64-bit.
64-bit Packages for Domino and Sametime:
Notes:
If you have the Desktop version of CentOS 7.7, it appears that the pre-requisite packages for the graphical installation were already there.
HCL has not published that certain new packages are needed or some are no longer needed. So for know we verified the same packages Sametime 9, only libXp wasn't already installed with the minimal ISO plus the stripped GNOME Desktop we installed.
The Domino install via console mode requires perl
# yum install perl
The following were already installed; these can be skipped:
# yum install glibc
# yum install libgcc
# yum install libstdc++
For the X-Windows Desktop install, the following are all installed; these can be skipped:
# yum install libXtst
# yum install libXmu
# yum install libXft
# yum install libXi
The previous versions of Domino and Sametime on Linux also required the libXp. We installed Sametime successfully w/o it, but don't know if something still needs it. Just in case, we installed libXp:
# yum install libXp
Setup the Domino User Account:
Skip this step if you set up the notes user during the install, but do the DOMINO_LINUX_SET_PARMS and the /local/notesdata steps still.
Create the notes (domino) user. Leave alone the opt/hcl/domino path so it owned/signed by root, but change the ownership of the /local/notesdata folder so that is is owned by the notes server user.
# useradd -d /home/notes -m notes
- or to include a specific UID ID -
# useradd -d /home/notes -m notes -u 1008
Set the password:
# passwd notes
Set up the notes user to use DOMINO_LINUX_SET_PARMS:
# vi /home/notes/.bashrc
Add to the end of the file: export DOMINO_LINUX_SET_PARMS=1
Create the installation Domino data notesdata folder. We use /local/notesdata.
(For a new CentOS 7.7 install, we had to create the /local folder, in addition to the /local/notesdata folder.)
# cd /
# mkdir local
# cd /local
# mkdir notesdata
# chown -R notes /local/notesdata/
# chgrp -R notes /local/notesdata/
# chmod -R g+w /local/notesdata/
Other Misc Options:
Postfix:
After an OS update, we verify that Postfix was not re-enabled. Verify that postfix is not running or enabled. If so, disable it.
e.g.
# systemctl status postfix
< received active status. If disabled, nothing else needed, otherwise ... >
# systemctl stop postfix
# systemctl disable postfix
Check Firewall Ports:
CentOS 7 uses FirewallD.
If you are not using the Domino Java Controller, leave off 2050. There are other ports verify for IMAP mail access, or to add if you are running multiple SameTime Domino servers (e.g. 1516, 9092, 9094, 8082).
Confirm loaded and running:
# firewall-cmd --state
Example commands are below.
# firewall-cmd --zone=public --add-port=1352/tcp --permanent
# firewall-cmd --zone=public --add-port=80/tcp --permanent
# firewall-cmd --zone=public --add-port=443/tcp --permanent
# firewall-cmd --zone=public --add-port=2050/tcp --permanent
in this example we restrict SSH and e-mail to internal networks only ...
# firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="192.168.199.0/16" port protocol="tcp" port="22" accept"
# firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="192.168.211.0/28" port protocol="tcp" port="25" accept"
# firewall-cmd --reload
Confirm loaded and running:
# firewall-cmd --state
Install Domino Start-up Scripts:
For the Nashed start-up script, follow the instructions that come with the start-up script.
For the domino.service file in /etc/systemd/system, update lines 7, 10, and 11 for your paths.
For the rc_domino_script in /opt/ibm/domino or /opt/nashcom/, update lines 42 and 65 for the server OS ID and paths.
For the rc_domino in /etc/init.d/, update lines 31, 35, and 43, for your server OS ID and paths.
For the rc_domino.script_notes file to /etc/domino/, updates similar lines as rc_domino.script.
Update all the file permissions to 755.
$ sudo systemctl enable domino.service
Note: This server is an upgrade, not a new install. We are re-using the /local/notesdata, and we chose to keep the existing /opt/ibm/domino path. Our existing start-up script is already in/opt/ibm/domino If this is a new install, the script path will be /opt/nashed/, as Daniel Nashed now has his scripts set to be in a separate /opt/nashcom/ folder.
previous page
|