8.55 & Unified Nav Deployed on Two PUM Images on a Windows Laptop


We have had some excellent results getting two PeopleSoft servers communicating with each other via PUM images in Virtual Box on a Windows Laptop.

If you arrived here via a google search, and are having some issues with Unified Navigation, browse on down to the end of this article for some Troubleshooting tips.

The advantages are:

-Having a vanilla installation to compare your environment is beneficial to take certain factors (ie load balancing) out of the mix when troubleshooting bugs.

-Issues / Bugs are easier to convey to Oracle Support.

-This setup will allow an IH administrator to 'get ahead' of the curve as things like tools upgrades, and selective adoption readiness can be figured out by systems groups.  The IH administrator can focus their time on Fluid Branding / Fluid Security / UX Options.  



Our Goal:

IH server (ih.ps.com) loading up via Unified Navigation the HR Main Menu (hosted on hr.ps.com) via the Fluid Nav Bar. 


The picture above is what we want to get working.  Using a PeopleSoft IH server to connect to the main menu of a PeopleSoft Human Capital Management environment via Unified Navigation.



I have complied a list of steps that when followed in sequential order, gets two PUM images: IH (Image 2) and HCM (Image 16) working using Single Sign-On and Unified Navigation.  I'd like to use these environments as a "Vanilla Vanilla" environment, to help troubleshoot issues.


Getting Started


First of all, you will a PC to get this going: I am using an old windows laptop: with Windows 7, third gen i7 processor,  with 8 gigs of Memory ~ I'd recommend a little more RAM, but this does seem to be sufficient for our purposes.  You will need a lot of disk space: ensure you have 300 GB free! This process uses a significant amount of disk space.

Please use these settings at your own risk!  This process simplifies security, but is VERY unsecure: be sure not to allow external access to these environments.  


Virtual Box Settings




Download and Install Oracle Virtual Box

You will notice that the process to get PUM images deployed in Virtual box have changed since Oracle has implemented DPKs being used for PUM Images.

You will need to download:

  • Peoplesoft IH Update Image 9.1.002 - Virtual Box 
  • Peoplesoft HCM Update Image 9.2.016 - Virtual Box


Check out the PUM Homepage to find these files (in the PeopleSoft Update Image Home Pages Tab ~ look for the Virtual Box tabbed section within)~ you'll need download access via Oracle Support.

It helps to deploy these images on a Windows Laptop with a Local Administrator account: I had some issues in an AD account running some of the scripts.  For a work around the instructions below are how to manually setup a virtual box PUM image:

After Downloading IH PI 2 Zip Files:

The first thing we noted was that there were 15 zip files this indicates the new way of getting a PUM image imported:



Once downloaded, we followed these steps:


1) unzip the contents of each of the 15 zip files into the root of a folder called C:\DPK_INSTALL. 

for example 
-you have xx1of15.zip which contains a.txt, unzip it, and put a.txt in C:\DPK_INSTALL
-you have xx2of15.zip which contains b.zip unzip it once, and put b.zip in C:\DPK_INSTALL 

2) Open Virtual Box, and Import the OVA file found at C:\DPK_INSTALL
-Be sure to that: “Reinitialize the MAC address of all the network cards” is checked
-Goto Settings - System and change the base Memory to 3072 MB
3) While everything is booting up, in virtual box, goto: 
  • Machine -> Settings
  • Shared Folders
  • Click the Plus icon on the right



  • Select folder path: C:\DPK_INSTALL
  • Check Auto Mount Checkbox
  • Click Okay to return back to the session.


4) At this point, setup should be similar to previous virtual box setups, using the server console: 
  • specify root password 
  • In adapter settings allow dynamic DHCP, and set the host name as ih.ps.com
  • the Oracle Linux server will connect to the drive you mounted above, and extract the DPKs from zip files
  • Enter the Application Server Domain Connection Password (may be more flexibility to leave this blank: having issues pinging the local PSFT_PA node) 
  • Enter the Oracle WebLogic Server Admin Password using letters and number: setting this is new, and you can use it to access: 192.168.56.101:8000/console (username is system)

5) Completely clear out your browser cache (ctrl-shift-delete) before visiting your PUM server using your browser.   You should be able to access the server via: http://192.168.56.101:8000


After Downloading HR PI 16 Zip Files:



Once downloaded, we followed these steps:


1) unzip the contents of each of the 15 zip files into the root of a folder called C:\DPK_INSTALL1. 

for example 
-you have xx1of15.zip which contains a.txt, unzip it, and put a.txt in C:\DPK_INSTALL1
-you have xx2of15.zip which contains b.zip unzip it once, and put b.zip in C:\DPK_INSTALL1 

2) Open Virtual Box, and Import the OVA file found at C:\DPK_INSTALL1
-Be sure to that: “Reinitialize the MAC address of all the network cards” is checked
-Goto Settings - System and change the base Memory to 3072 MB


3) While everything is booting up, in virtual box, goto: 
  • Machine -> Settings
  • Shared Folders
  • Click the Plus icon on the right
  • Select folder path: C:\DPK_INSTALL1
  • Check Auto Mount Checkbox
  • Click Okay to return back to the session.


4) At this point, setup should be similar to previous virtual box setups, using the server console: 
  • specify root password 
  • In adapter settings allow dynamic DHCP, and set the host name as hr.ps.com
  • the Oracle Linux server will connect to the drive you mounted above, and extract the DPKs from zip files
  • Enter the Application Server Domain Connection Password (may be more flexibility to leave this blank: having issues pinging the local PSFT_PA node) 
  • Enter the Oracle WebLogic Server Admin Password using letters and number: setting this is new, and you can use it to access: 192.168.56.102:8000/console (username is system)

5) Completely clear out your browser cache (ctrl-shift-delete) before visiting your PUM server using your browser.   You should be able to access the server via: http://192.168.56.102:8000

At this stage if you are interested in patching the tools of these systems (ie from 8.55.01 to 8.55.13), I have done a writeup here on how to do this: http://peoplesoftih.blogspot.ca/2017/02/steps-patch-pum-85501-to-85513.html

After Virtual Box Setup:


Before any SSO / Node config, take snapshots of your vms now, so you have base config. (I find this useful so you don't have to re-import them all over again if you want to branch out this install).

You can log into each machine as root, and issue the command:

shutdown now

Power off each VM, and take snapshots in virtual box called base install in case you ever want to skip all the steps above.

IP Host Configuration


Power on IH VM, and follow on-screen defaults with exceptions:
*Make note of your IP address: by default, it should be: 192.168.56.101
sign in as root
run the command: vi /etc/hosts
press i to insert
add the following line to the bottom of the file:
192.168.56.102 hr.ps.com hr
press esc
press :wq to save


Power on HR VM, and follow on-screen defaults with exceptions:
*Make note of your IP address: by default, it should be: 192.168.56.102
sign in as root
run the command: vi /etc/hosts
press i to insert
add the following line to the bottom of the file:
192.168.56.101 ih.ps.com ih
press esc
press :wq to save


in windows update HOSTS file: 

Click Start > All Programs > Accessories.
Right-click Notepad and select Run as administrator.
Click Continue on the Windows needs your permission UAC window.
When Notepad opens, click File > Open.
In the File name field, type C:\Windows\System32\Drivers\etc\hosts.
Click Open.
Make the necessary changes to the file.
Click File > Save to save your changes.

add the lines:
192.168.56.101 ih.ps.com
192.168.56.102 hr.ps.com
and save

you should now be able to sign into your IH / HR servers with the addresses:

sign into your severs with the VP1  (same password) for IH and PS (same password) for HR accounts using two different web browsers:

via: ih.ps.com:8000 and hr.ps.com:8000





Just to make things easier: on hr.ps.com, goto:

Nav Bar -> Navigator -> People Tools -> Security -> User Profiles -> User Profiles and search for the VP1 account.  Uncheck "Account Locked Out" and ensure the password is VP1, and Save.  Sign out as PS, and Sign back in as VP1.

Nodes Setup

On IH

Goto: 
Nav Bar -> Navigator > PeopleTools > Integration Broker > Integration Setup > Nodes



Search For ANONYMOUS
Set Default User ID to PAPP_USER and Save
Click the Portal Tab
Confirm Tools Release to 8.55
Confirm Application Release to Portal Solutions 9.1
Confirm Content URI Text to: http://ih.ps.com:8000/psc/ps/
Confirm Portal URI Text to: http://ih.ps.com:8000/psp/ps/

Search for PSFT_PA (IH default Local node)
Set Node Password to VP1
Check segment aware checkbox
Click the Portal Tab
Set Network Node Name to: PSFT_PA

Save

Search for EMPL (IH portal host node)
Check segment aware checkbox
Click the Portal Tab
Confirm Tools Release to 8.55
Confirm Application Release to Portal Solutions 9.1
Confirm Content URI Text to: http://ih.ps.com:8000/psc/ps/
Confirm Portal URI Text to: http://ih.ps.com:8000/psp/ps/
Check Portal Host Node Checkbox
Set  Network Node Name to: PSFT_PA
Save

Search for PSFT_HR (HR default Local node)
Set Authentication Option to Password
Set Node Password to VP1
Check segment aware checkbox
Click the Portal Tab
Set Tools Release to 8.55
Set Application Release to 9.2
set Content URI Text to: http://hr.ps.com:8000/psc/ps/
set Portal URI Text to: http://hr.ps.com:8000/psp/ps/
Set  Network Node Name to: PSFT_HR
Save



Search for HRMS (HR portal host node)
Check segment aware checkbox
Click the Portal Tab
Set Tools Release to 8.55
Set Application Release to 9.2
set Content URI Text to: http://hr.ps.com:8000/psc/ps/
set Portal URI Text to: http://hr.ps.com:8000/psp/ps/
check Portal Host Node Checkbox
under Network Node Name, set it to PSFT_HR
Save


On HR

Goto: 
Nav Bar -> Navigator -> PeopleTools > Integration Broker > Integration Setup > Nodes

Search For ANONYMOUS
Set Default User ID to VP1 and Save
Click the Portal Tab
Confirm Tools Release to 8.55
Confirm Application Release to 9.2
Confirm Content URI Text to: http://hr.ps.com:8000/psc/ps/
Confirm Portal URI Text to: http://hr.ps.com:8000/psp/ps/


Search for PSFT_HR (HR default Local node)
Set Authentication Option to Password
Set Node Password to VP1
Check segment aware checkbox
Click the Portal Tab
Confirm Tools Release to 8.55
Confirm Application Release to 9.2
Confirm Content URI Text to: http://hr.ps.com:8000/psc/ps/
Confirm Portal URI Text to: http://hr.ps.com:8000/psp/ps/
Set  Network Node Name to: PSFT_HR
Save



Search for HRMS (HR portal host node)
Check segment aware checkbox
Click the Portal Tab
Confirm Tools Release to 8.55
Confirm Application Release to 9.2
Confirm Content URI Text to: http://hr.ps.com:8000/psc/ps/
Confirm Portal URI Text to: http://hr.ps.com:8000/psp/ps/
check Portal Host Node Checkbox
under Network Node Name, set it to PSFT_HR
Save


Search for PSFT_PA (IH default Local node)
Set Authentication Option to Password
Set Node Password to VP1
Check segment aware checkbox
Click the Portal Tab
Set Tools Release to 8.55
Set Application Release to Portal Solutions 9.1
set Content URI Text to: http://ih.ps.com:8000/psc/ps/
set Portal URI Text to: http://ih.ps.com:8000/psp/ps/
under Network Node Name, set it to PSFT_PA
Save

Search for EMPL (IH portal host node)
Check segment aware checkbox
Click the Portal Tab
Set Tools Release to 8.55
Set Application Release to Portal Solutions 9.1
set Content URI Text to: http://ih.ps.com:8000/psc/ps/
set Portal URI Text to: http://ih.ps.com:8000/psp/ps/
check Portal Host Node Checkbox
under Network Node Name, set it to PSFT_PA
Save



Gateway Setup



For IH Navigate to
Nav Bar -> Navigator > PeopleTools > Integration Broker > Configuration > Gateways
Hit the search button to load up the LOCAL gateway ID

Copy the URL: http://ih.ps.com:8000/PSIGW/PeopleSoftListeningConnector from IH to the same location on HR


for IH navigate to: 
Nav Bar > Navigator > PeopleTools > Integration Broker > Configuration > Gateways
Click the Gateway Setup Properties Link
-Username: administrator
-Password: password



-add PeopleSoft Node: PSFT_HR, //hr.ps.com:9000, VP1, VP1, 8.55.01 
-Clear Domain Password for Default App Server and both Nodes.
Click Ok


for HR navigate to: 
Nav Bar > Navigator > PeopleTools > Integration Broker > Configuration > Gateways
Click the Gateway Setup Properties Link
-Username administrator
-Password password
-confirm PeopleSoft Node: PSFT_PA, //ih.ps.com:9000, VP1, VP1, 8.55.01 exists already (it should be the same since we are using 1 gateway)
Click Ok


SSO Setup



On IH:
Navigate to: Nav Bar > Navigator > PeopleTools>Security>Security Objects>Single Signon
Add node PSFT_HR 
Save

On HR:
Navigate to: Nav bar > Navigator > PeopleTools>Security>Security Objects>Single Signon
Add node PSFT_PA 
Save



Run Domain and Configure Node Network



On IH:

Navigate to: Nav Bar > Navigator >PeopleTools> Integration Broker> Integration Network WorkCenter
Click Configuration Status on Left
Click Domain Active
For ih.ps.com set Domain Status to Active
Press Update
Press Refresh
Press Update again all 3 status strings should be active



Deploy Correct Routings:

Navigate to Nav Bar > Peopletools > Integration Broker > Integration Network WorkCenter 
Click Node Network under Configuration folder 
Make sure In Network is checked for PSFT_HR and Save

You will see that after this step: a number of essential routings get created after this step: for example: PTUN_LANDING_PAGE  does a number of things in Fluid Unified Navigation and having Homepages with the same names combine on the systems.


On the Same WorkCenter Under -> Adminstrator folder, click Introspection and Deployment  
Search for PTCS_GETAUTHORIZATION Operation 
Select PTCS_GETAUTHORIZATION and continue 
Select Remote node and continue 
Click Introspect button 

Make sure PTCS_GETAUTHORIZATION is deployed and with no error.


On HR:

Navigate to: Nav Bar > Navigator >PeopleTools> Integration Broker> Integration Network WorkCenter
Click Configuration Status on Left
Click Domain Active
For hr.ps.com set Domain Status to Active
Press Update
Press Refresh
Press Update again 2 status strings should be active

Click Node Network under Configuration folder 
Make sure In Network is checked for PSFT_HR & PSFT_PA and Save ~ this will allow content to appear in both IH and HR.

Auth  Token Settings:


For both IH and HR

From the virtual box unix console:
Sign in as root

run the following commands:

su psadm2      [set user command]
psadmin        [run the psadmin utility]
4              [navigate to the Web Server utility]
1              [administer a domain]
1              [peoplesoft domain]
4              [configure this domain]
6              [configure Auth Token]
.ps.com        [type .ps.com then press enter]
s              [save]

quit out, and 'exit 'psadm2


Reboot Server (as root: shutdown -r now)
Clear everything on your browser: Ctrl+Shift+Delete


Implement Single Sign-Off

Download  WinSCP
Connect to: 192.168.56.101 as root and browse to directory:
Browse to:

/home/psadm2/psft/pt/8.55/webserv/peoplesoft/applications/peoplesoft/PORTAL.war/WEB-INF/psftdocs/ps

Locate the signin.html file
Right-click and edit it

under:

<body onload="ptSignon().login();">

add the two images:

<img style="display:none;" src="http://ih.ps.com:8000/psp/ps/EMPLOYEE/EMPL/?cmd=logout"/>
<img style="display:none;" src="http://hr.ps.com:8000/psp/ps/EMPLOYEE/HRMS/?cmd=logout"/>

Save the file, and reboot your web server (similar instructions to the Auth Token Settings above, except shutdown and boot the web server).

Testing

are nodes Pingable:

Via IH
Goto
Nav Bar > Navigator > PeopleTools > Integration Broker > Integration Setup > Nodes
Search for: PSFT_PA
Click the Connectors Tab
Click Ping Node... Success?
Search for: PSFT_HR
Click the Connectors Tab
Click Ping Node... Success?


Via HR
Goto
Nav Bar > Navigator > PeopleTools > Integration Broker > Integration Setup > Nodes
Search for: PSFT_PA
Click the Connectors Tab
Click Ping Node... Success?
Search for: PSFT_HR
Click the Connectors Tab
Click Ping Node... Success?


Setup Unified Nav in IH



The instructions below explain how to manually create a unified nav folder in Structure and Content:

You can also do this in Nav Bar > Navigator > Portal Administration > Unified Navigation WorkCenter ->  Select Remote Content, but in PI 2 it appears to need a fix:


https://support.oracle.com/epmos/faces/DocumentDisplay?id=2118127.1

Once the fix has been made, you add a connection to the HR System (ensure the Configure PortalHostNode Option is checked): 




To Manually Add Unified Navigation:

Browse to Nav Bar > Navigator  > People Tools > Portal > Structure and Content
Click Add Folder
Name: CUST_HR
Label: Human Resources Remote
Valid From Date (choose yesterday)


Name: FOLDERID
Attribute Value:HRMS:PORTAL_ROOT_OBJECT
Translate: UNchecked
Name: LOCATION
Attribute Value:REMOTE
Translate: UNchecked
Name: NODE
Attribute Value:HRMS
Translate: UNchecked
Name: PORTAL
Attribute Value:EMPLOYEE
Translate: UNchecked

Save.

Testing - Making Sure it Works


If you sign out, and back in as VP1, you should be able to browse the remote Main Menu via Nav Bar > Navigator > Human Resources Remote





Troubleshooting

Snapshots  & Server Time Issue: 

After reverting to a "hot snapshot" SSO stops working:

As mentioned before, taking snapshots is a great way of ensuring you have a back up of the whole system before making any big changes.   One thing to note though, is to keep an eye on the server time.  I did a restore of a snapshot from a few weeks ago, and it me weaked havoc on a Token Expire cookie: unified nav and sso stopped working. Ensure the server times on your systems are current (you can run the $ date command as root).  If you notice the time is way off, you can do a cold boot of the VM, by powering it off and on and ensure the correct date is set.

After Upgrade Unified Navigation is Not Working

We recently upgraded from tools 8.53 to 8.54 and finally to 8.55.  Some of the standard troubeshooting I always do:


  • Check all nodes were all setup correctly and pinging: the best tool for this is the Integration Network WorkCenter, found in Nav Bar -> Navigator -> PeopleTools -> Integration Broker.  Check the network status tab, and ensure all results have green check marks when you ping status on all streams.
  • Ensure correct tools versions are updated in the Gateway Setup Properties: Nav Bar > Navigator > PeopleTools > Integration Broker > Configuration > Gateways and Click the Gateway Setup Properties Link
  • Ensure the accounts you are using have the correct security: each account on each system should have a derivative of the roles: PeopleSoft User, PAPP_USER and EOPP_USER.  Oracle recommends that you clone these new permissions lists and begin restricting what you don't want to see,  not using old customized permission lists and adding new Pages / Services.  A number of new Web Services are introduced and are essential to Fluid Unified Navigation.
  • Ensure the correct routings are deployed to your nodes.  If you have setup a PUM environment above, you may notice your default nodes have more routings that what you are seeing in your actual environments (for example check the PSFT_HR nodes).  These will need to be re-created by toggling and saving in between the "In Network" check box on the Node Network component in the Integration Network WorkCenter.  Essential fluid routings such as PTUN_LANDING_PAGE: which handle combined homepages and tiles and the new unified nav in the Nav Bar get generated here, and if you have done an upgrade you wouldn't not have toggled this setting and these routings would be missing.  In our findings this would only have to be done on the Interaction Hub.


Add Tile To Home Page functionality not working

We were having an issue where we were finding that we could not add a tile from the HCM database to an IH homepage.  Since tools 8.54, each node has two new properties in the URL tab: Portal Host Node and Network Node Name. When configured properly we find that the Add-to functionality works correctly: please the the following diagram below for the correct settings.

Via Nav Bar -> Navigator -> PeopleTools > Integration Broker > Integration Setup > Nodes search for each node below, and click the Portal Tab.


Portal Host Node  Network Node Name 
HR     HRMS checked PSFT_HR
PSFT_HR     un-checked PSFT_HR
EMPL checked PSFT_PA
PSFT_PA un-checked PSFT_PA
IH HRMS checked PSFT_HR
PSFT_HR un-checked PSFT_HR
EMPL checked PSFT_PA
PSFT_PA un-checked PSFT_PA