Join a domain

Run the Installer

1. Log in to the machine with a system user account.
2. Close all other applications.
3. On a shell command line, run the install.sh file from the root directory.
The installer displays the message to verify that the locale environment variables are set.
4. If the environment variables are not set, press n to exit the installer and set them as required.
If the environment variables are set, press y to continue.
5. Press 1 to install Informatica Big Data Suite Products.
The installer displays different options based on the platform you are installing on.
The following options appear:
1. a. Press 1 to run the Pre-Installation System Check Tool.
For more information about running the Pre-Installation (i10Pi) System Check Tool, see Run the Pre-Installation (i10Pi) System Check Tool.
2. b. Press 2 to run the Informatica Kerberos SPN Format Generator.
For more information about running the Informatica Kerberos SPN Format Generator, see Running the SPN Format Generator on Linux.
3. c. Press 3 to run the installer.

Accept Terms and Conditions

1. Read the terms and conditions for Informatica installation and the product usage toolkit and select I agree to the terms and conditions.
Informatica DiscoveryIQ is a product usage tool that sends routine reports on data usage and system statistics to Informatica. Informatica DiscoveryIQ uploads data to Informatica 15 minutes after you install and configure Informatica domain. Thereafter, the domain sends the data every 30 days. You can choose to disable usage statistics from the Administrator tool.
1. a. Press 1 to not accept the terms and conditions
2. b. Press 2 to accept the terms and conditions.
2. Version 10.2.1 is for big data products only, such as Big Data Management and Big Data Quality. This version does not support non-big data products, such as PowerCenter or Informatica Data Quality.
1. a. Press 1 and type quit to quit the installation.
2. b. Press 2 to continue the installation.
If you choose to not accept the terms and condition, the installer prompts you to accept the terms and conditions.

Product Installation

1. Press 1 to install Informatica domain services.
This option installs version 10.2.1 domain services and the application service binaries to support Big Data Management and Big Data Streaming.
2. Choose whether you want to run the installer on a network that uses Kerberos authentication.
1. a. Press 1 to configure the Informatica domain to run on a network that does not use Kerberos authentication.
2. b. Press 2 to configure the Informatica domain to run on a network with Kerberos authentication.

Tune the Application Services

1. Select if you want to tune the services now.

Prompt	Description
Do you want to tune the services now?	Select if you want to tune the services. 1 - No 2 - Yes Select no if you do not want to tune the services. Select yes if you want to tune the services.

If you are joining the node to existing domain, ensure the deployment type you select here is same deployment type as the gateway nodes.
2. Select the deployment type associated with the Informatica environment.

Prompt	Description
1. Sandbox	Choose this option if the environment is used for proof of concepts or as a sandbox environment with minimal users. Sandbox environments are typically configured with 16 cores, 32 GB RAM, and about 50 GB disk space.
2. Basic	Choose this option if the environment is used for low volume processing environments with low levels of concurrency. Basic environments are typically single- or multi-node setups configured with 24 cores, 64 GB RAM, and about 100 GB disk space.
3. Standard	Choose this option if the environment is used for high volume processing but with low levels of concurrency. Standard environments are typically multi-node setups configured with 64 GB RAM, more than 100 GB disk space per node, and 48 cores across nodes.
4. Advanced	Advanced Choose this option if the environment is used for high volume processing with high levels of concurrency. Advanced environments are typically multi-node setups configured with 128 GB RAM, more than 100 GB disk space per node, and 96 cores across nodes.

Specify Installation Directory

1. Enter the path and file name of the Informatica license key and press Enter.
2. Enter the absolute path for the installation directory.
The directory names in the path must not contain spaces or the following special characters: @|* $ # ! % ( ) { } [ ] , ; ' Default is /home/toolinst.
Note: Informatica recommends using alphanumeric characters in the installation directory path. If you use a special character such as á or €, unexpected results might occur at run time.

Configure Security Level

In the Service Principal Level section, select the level at which to set the Kerberos service principals for the domain.
Note: All nodes in the domain must use the same service principal level. When you join a node to a domain, select the same service principal level used by the gateway node in the domain.
The following table describes the levels that you can select:

Level	Description
Process Level	Configures the domain to use a unique service principal name (SPN) and keytab file for each node and each application service on a node. The number of SPNs and keytab files required for each node depends on the number of application service processes that run on the node. Use the process level option for domains that require a high level of security, such as productions domains.
Node Level	Configures the domain to share SPNs and keytab files on a node. This option requires one SPN and keytab file for the node and all application services that run on the node. It also requires a separate SPN and keytab file for all HTTP processes on the node. Use the node level option for domains that do not require a high level of security, such as test and development domains.

Configure the Domain Options

1. Press 2 to join a domain.
The installer joins a node on the machine where you install.
2. Specify whether the domain you want to join has the secure communication option enabled.
Press 1 to join an unsecure domain or press 2 to join a secure domain.
3. Select the type of node you want to create.
The following table describes that types of nodes that you can create:

Property	Description
Configure this node as a gateway	Select whether to configure the node as a gateway or worker node. 1 - Yes 2 - No Select 1 to configure a gateway node or 2 to configure a worker node.

If you configure the node as a gateway, you can enable a secure HTTPS connection to the Informatica Administrator.
4. Specify the connection details to Informatica Administrator.
1. a. Specify whether to set up a secure HTTPS connection to the Informatica Administrator.

Option	Description
1 - Enable HTTPS for Informatica Administrator	Set up a secure connection to Informatica Administrator.
2 - Disable HTTPS	Do not set up a secure connection to Informatica Administrator.

2. b. If you enable HTTPS connection for the Informatica Administrator, enter the keystore file and port number to use to secure the connection.

Option	Description
Port	Port number for the HTTPS connection.
Keystore file	Select whether to use a keystore file generated by the installer or a keystore file you create. You can use a keystore file with a self-signed certificate or a certificate signed by a certification authority. 1 - Use a keystore generated by the installer 2 - Specify a keystore file and password If you select to use a keystore file generated by the installer, the installer creates a self-signed keystore file named Default.keystore in the following location: <Informatica installation directory>/tomcat/conf/

3. c. If you specify the keystore, enter the password and location of the keystore file.
4. d. If you enabled secure communication for the domain, the Domain Security - Secure Communication section appears.
5. e. If you did not enable secure communication for the domain, the Domain Configuration Repository section appears. Skip to Configure Domain Repository Connection Details.
5. Select whether to enable SAML authentication to configure Security Assertion Markup Language (SAML)-based single sign-on (SSO) support for web-based Informatica applications in an Informatica domain.
The following table describes the information you must enter to enable SAML authentication:

Prompt	Description
Does the domain use SAML authentication?	Select if the domain uses SAML authentication: 1 - No If you select No, skip to Configure Domain Security 2 - Yes If you select Yes, configure the SAML authentication.

6. Enter the Identity Provider URL for the domain.
7. Enter the identity provider assertion signing certificate alias name.
8. Select whether to use the default Informatica SSL certificates or to use your SSL certificates to enable SAML authentication in the domain.
The following table describes the SSL certificate options for SAML authentication:

Option	Description
Use the default Informatica SSL certificate file.	Select to use the default Informatica truststore file for SAML authentication.
Enter the location of the SSL certificate file.	Select to use a custom truststore file for SAML authentication. Specify the directory containing the custom truststore file on gateway nodes within the domain. Specify the directory only, not the full path to the file.

9. If you provide the security certificates, specify the location and passwords of the truststore files.
The following table describes the location and password of the truststore file:

Property	Description
Truststore Directory	Specify the directory containing the custom truststore file on gateway nodes within the domain. Specify the directory only, not the full path to the file.
Truststore Password	The password for the custom truststore file.

Configure Domain Security

1. In the Domain Security - Secure Communication section, specify whether to use the default Informatica SSL certificates or to use your SSL certificates to secure domain communication.
1. a. Select the type of SSL certificates to use.
The following table describes the options for the SSL certificates that you can use to secure the Informatica domain:

Option	Description
Use the default Informatica SSL certificates	Use the default SSL certificates contained in the default keystore and truststore. Note: If you do not provide an SSL certificate, Informatica uses the same default private key for all Informatica installations. If you use the default Informatica keystore and truststore files, the security of your domain could be compromised. To ensure a high level of security for the domain, select the option to specify the location of the SSL certificate files.
Use custom SSL certificates	Specify the path for the keystore and truststore files that contain the SSL certificates. You must also specify the keystore and truststore passwords. You can provide a self-signed certificate or a certificate issued by a certificate authority (CA). You must provide SSL certificates in PEM format and in Java Keystore (JKS) files. Informatica requires specific names for the SSL certificate files for the Informatica domain. You must use the same SSL certificates for all nodes in the domain. Store the truststore and keystore files in a directory accessible to all the nodes in the domain and specify the same keystore file directory and truststore file directory for all nodes in the same domain.

2. b. If you provide the SSL certificate, specify the location and passwords of the keystore and truststore files.
The following table describes the parameters that you must enter for the SSL certificate files:

Property	Description
Keystore file directory	Directory that contains the keystore files. The directory must contain files named infa_keystore.jks.
Keystore password	Password for the keystore infa_keystore.jks.
Truststore file directory	Directory that contains the truststore files. The directory must contain files named infa_truststore.jks and infa_truststore.pem.
Truststore password	Password for the infa_truststore.jks file.

The Domain Configuration Repository section appears.

Configure Domain Repository Connection Details

Enter the information for the domain that you want to join.
The following table describes the properties that you specify for the domain:

Property	Description
Domain name	Name of the domain to join.
Gateway node host	Host name of the machine that hosts the gateway node for the domain.
Gateway node port	Port number of the gateway node.
Domain user name	User name of the administrator for the domain you want to join.
Domain password	Password for the domain administrator.
Security domain name	Name of the secure domain.

Configure the Encryption Key

In the Domain Security - Encryption Key section, enter the directory for the encryption key for the Informatica domain.
The following table describes the encryption key parameters that you must specify when you join a domain:

Property	Description
Select the encryption key	Path and file name of the encryption key for the Informatica domain that you want to join. All nodes in the Informatica domain use the same encryption key. You must specify the encryption key file created on the gateway node for the domain that you want to join. If you copied the encryption key file to a temporary directory to make it accessible to the nodes in the domain, specify the path and file name of the encryption key file in the temporary directory.
Encryption key directory	Directory in which to store the encryption key on the node created during this installation. The installer copies the encryption key file for the domain to the encryption key directory on the new node.

The installer sets different permissions to the directory and the files in the directory. For more information about the permissions for the encryption key file and directory, see Secure Files and Directories.

Configure the Join Domain and Node

1. Enter the information for the domain and the node that you want to join.
The following table describes the properties that you set for the current node.

Property	Description
Node host name	Host name or IP address of the machine on which to join the node. If the machine has a single network name, use the default host name. If the a machine has multiple network names, you can modify the default host name to use an alternate network name. Note: The node host name cannot contain the underscore (_) character. Do not use localhost. The host name must explicitly identify the machine.
Node name	Name of the node to join.
Node port number	Port number for the node. The default port number for the node is 6005. If the port number is not available on the machine, the installer displays the next available port number.

2. Select whether to display the default ports for the domain and node components assigned by the installer.
The following table describes the advanced port configuration page:

Prompt

Description

Display advanced port configuration page

Select whether to display the port numbers for the domain and node components assigned by the installer: 1 - No 2 - Yes If you select Yes, the installer displays the default port numbers assigned to the domain components. You can specify the port numbers to use for the domain and node components. You can also specify a range of port numbers to use for the service process that will run on the node. You can use the default port numbers or specify new port numbers. Verify that the port numbers you enter are not used by other applications.

3. If you display the port configuration page, enter new port numbers at the prompt or press Enter to use the default port numbers.
The following table describes the ports that you can set:

Port	Description
Service Manager port	Port number used by the Service Manager on the node. The Service Manager listens for incoming connection requests on this port. Client applications use this port to communicate with the services in the domain. The Informatica command line programs use this port to communicate to the domain. This is also the port for the SQL data service JDBC/ODBC driver. Default is 6006.
Service Manager Shutdown port	Port number that controls server shutdown for the domain Service Manager. The Service Manager listens for shutdown commands on this port. Default is 6007.
Informatica Administrator port	Port number used by Informatica Administrator. Default is 6008.
Informatica Administrator HTTPS port	No default port. Enter the required port number when you create the service. Setting this port to 0 disables an HTTPS connection to the Administrator tool.
Informatica Administrator shutdown port	Port number that controls server shutdown for Informatica Administrator. Informatica Administrator listens for shutdown commands on this port. Default is 6009.
Minimum port number	Lowest port number in the range of dynamic port numbers that can be assigned to the application service processes that run on this node. Default is 6014.
Maximum port number	Highest port number in the range of dynamic port numbers that can be assigned to the application service processes that run on this node. Default is 6114.