Beruflich Dokumente
Kultur Dokumente
Interview Questions
By PRAVEEN REDDY
[2009]
What is WAS
Provides the infrastructure for running applications that run your business.
Common environment and programming model for your applications.
Platform for developing and Deploying web services and SOA based apps
Secure, Scalable, reliable transaction engine for ERP
IBM WebSphere is architected to enable you to build business-critical applications
for the Web
Web Sphere includes a wide range of products that help you develop and serve
Web applications.
They are designed to make it easier for clients to build, deploy, and manage
dynamic Web sites more productively
WAS implements J2EE specification
Web Sphere Application Server provides the environment to run your Web-enabled ebusiness applications. An application server functions as Web middleware or a middle
tier in a three-tier e-business environment. The first tier is the HTTP server that
handles requests from the browser client. The third tier is the business database (for
example, DB2 UDB for series) and the business logic (for example, traditional
business applications, such as order processing). The middle tier is WebSphere
Application Server, which provides a framework for a consistent and architected link
between the HTTP requests and the business data and logic.
With the Base and Express packages, you are limited to single application server
environments. The Network Deployment package allows you to extend this
environment to include multiple application servers that are administered from a
single point of control and can be clustered to provide scalability and high availability
environments.
Functionality of WAS
WebSphere Application Server supports asynchronous messaging through the use
of a JMS provider and its related messaging system.(JMS 1.1 Messaging
Provider)
WebSphere Application Server provides authentication and authorization
capabilities to secure administrative functions and applications, using LDAP
WebSphere Application Server works with a Web server (such as the IBM HTTP
Server) to route requests from browsers to the applications that run in
WebSphere Application Server. Web server plug-ins are provided for
installation with supported Web browsers. The plug-ins direct requests to the
appropriate application server and perform workload balancing among servers
in a cluster.
Web services enable businesses to connect applications to other business
applications, deliver business functions to a broader set of clients and
partners, interact with marketplaces more efficiently, and create new business
models dynamically.
Delivers a high performance and extremely scalable transaction engine for
dynamic e-business applications
Packaging
WebSphere Application Server is available in multiple packaging options.
WebSphere Application Server - Express V6.0
Single Server environment.(No Clustering or multi server management)
J2EE 1.4 support
Medium-sized business
Contains Rational Web Developer application tool
Doesnt handle EJB and JCA
Limited to 2 CPUs
WebSphere Application Server V6.1 (Base)
Slightly differs in packaging and licensing
Contains Application Server toolkit
Includes a trial version of Rational Application Developer
Unlimited CPUs
WebSphere Application Server Network Deployment V6
Extends Base version
Clustering capabilities
Edge Components which provide high performance and availability (Caching Proxy
and Load Balancer)
HA for distributed configurations
Large Enterprise applications
Scalability, Availability and Performance
Web Server plug-in supports weighted WLM
All V6 application servers have the same core and base functionality
WebSphere Application Server - Express V6 node can be upgraded to a WebSphere
Application Server V6 node(.Can be done without any software upgrades .Only a
paper license upgrade is required)
WebSphere Application Server- Express V6 and WebSphere Application Server V6
node can be federated into a WebSphere Application Server - Network Deployment
V6 cell (Can be done without any software upgrades .Only a paper license upgrade is
required)
Requests for HTML and other static content that are directed to the Web container
are served by the Web container inbound chain. However, in most cases, using an
external Web server and Web server plug-in as a front-end to a Web container is
more appropriate for a production environment.
_
Session management
Support is provided for the javax.servlet.http.HttpSession interface as described in
the Servlet application program interface (API) specification.
_
Web services engine
Web services are provided as a set of APIs in cooperation with the J2EE applications.
Web services engines are provided to support Simple Object Access Protocol (SOAP).
EJB Container
The Enterprise JavaBeans (EJB) container provides all the runtime services that are
needed to deploy and manage enterprise beans. It is a server process that handles
requests for both session and entity beans.
The enterprise beans, packaged in EJB modules, installed in an application server
do not communicate directly with the server. Instead, the EJB container provides an
interface between the enterprise beans and the server. Together, the container and
the server provide the enterprise bean runtime environment.
The container provides many low-level services, including threading and
transaction support. From an administrative viewpoint, the container manages data
storage and retrieval for the contained enterprise beans. A single container can host
more than one EJB Java archive (JAR) file.
WAS Services
J2EE Connector Architecture services
Transaction service
Dynamic cache service
Message listener service
Object Request Broker service
Administrative service (Java Management Extensions)
Diagnostic trace service
Debugging service
Name service (Java Naming Directory Interface)
Performance Monitoring Interface service
Security service (JAAS and Java 2 security)
Service Integration Bus service
The Web server:
A Web server handles the HTTP protocol. When the Web server receives an HTTP
request, it responds with an HTTP response, such as sending back an HTML page. To
process a request, a Web server may respond with a static HTML page or image,
send a redirect, or delegate the dynamic response generation to some other program
such as CGI scripts, JSPs (JavaServer Pages), servlets, ASPs (Active Server Pages),
server-side JavaScripts, or some other server-side technology. Whatever their
purpose, such server-side programs generate a response, most often in HTML, for
viewing in a Web browser.
Understand that a Web server's delegation model is fairly simple. When a request
comes into the Web server, the Web server simply passes the request to the program
best able to handle it. The Web server doesn't provide any functionality beyond
simply providing an environment in which the server-side program can execute and
pass back the generated responses. The server-side program usually provides for
itself such functions as transaction processing, database connectivity, and
messaging.
While a Web server may not itself support transactions or database connection
pooling, it may employ various strategies for fault tolerance and scalability such as
load balancing, caching, and clusteringfeatures oftentimes erroneously assigned as
features reserved only for application servers.
Eg: Apache HTTP Server, Sun ONE Web Server, iPlanet Web Server
The application server:
As for the application server, according to our definition, an application server
exposes business logic to client applications through various protocols, possibly
including HTTP. While a Web server mainly deals with sending HTML for display in a
Web browser, an application server provides access to business logic for use by client
application programs. The application program can use this logic just as it would call
a method on an object (or a function in the procedural world).
Such application server clients can include GUIs (graphical user interface) running on
a PC, a Web server, or even other application servers. The information traveling back
and forth between an application server and its client is not restricted to simple
display markup. Instead, the information is program logic. Since the logic takes the
form of data and method calls and not static HTML, the client can employ the
exposed business logic however it wants.
In most cases, the server exposes this business logic through a component API, such
as the EJB (Enterprise JavaBean) component model found on J2EE (Java 2 Platform,
Enterprise Edition) application servers. Moreover, the application server manages its
own resources. Such gate-keeping duties include security, transaction processing,
resource pooling, and messaging.
Like a Web server, an application server may also employ various scalability and
fault-tolerance techniques.
Difference between AppServer and a Web server :
(1) Webserver serves pages for viewing in web browser, application server provides
exposes businness logic for client applications through various protocols
(2) Webserver exclusively handles http requests.application server serves bussiness
logic to application programs through any number of protocols.
(3) Webserver delegation model is fairly simple,when the request comes into the
webserver,it simply passes the request to the program best able to handle it(Server
side program). It may not support transactions and database connection pooling.
(4) Application server is more capable of dynamic behaviour than webserver. We can
also configure application server to work as a webserver.Simply applic! ation server is
a superset of webserver.
In J2EE application modules are packaged as EAR, JAR and WAR based on their
functionality .These files are simply zipped files using java jar tool. These files are
created for different purposes.
.jar files:
JAR files (Java ARchive) allows aggregating many files into one, it is usually used to
hold Java classes in a library. i.e. Math.jar These files are with the .jar extension. The
.jar files contain the libraries, resources and accessories files like property files.
.war files:
WAR files (Web Application aRchive) stores XML, java classes, and JavaServer pages
for Web Application purposes. These files are with the .war extension. The war file
contains the web application that can be deployed on the any servlet/jsp container.
The .war file contains jsp, html, javascript and other files for necessary for the
development of web applications.
.ear files:
EAR files (Enterprise ARchive) combines JAR and WAR files to make a combined
archive for Enterprise Applications. The .ear file contains the EJB modules of the
applications
1.
2.
3.
Explain
Session affinity:
Most servers use the term "Session Affinity" to indicate that within a
cluster of servers, requests from the same client always get routed back to the same
server. (or) In a clustered environment, any HTTP requests associated with an HTTP
session must be routed to the same Web application in the same JVM.
Session Persistance:
You use session persistence to permanently store data from an HTTP
session object to enable failover and load balancing across a cluster of WebSphere
Applicaiton Servers.
Sessiontracking:
Session tracking enables you to track a user's progress over multiple
servlets or HTML pages, which, by nature, are stateless.
How do you set session time out :
You can specify an interval of time after which HTTP sessions expire.
click Servers > Application servers > server_name > Web container
settings > Session management > Session Timeout
What are the different levels at which session timeout can be set
application level, web module level, server level
5.
How do you upgrade WAS
GUI Upgrade
Silent Upgrade
Logs files and their paths for both
6.
Back Ups
7.
10.
4. Administrator
corbaname::myhost1:9812/NameServiceServerRoot#ejb/webbank/Account
Complex names
Compound name/remote/complex
Applications that do not run in the same server cannot use simple
name lookup because the simple name is not local to the application. Instead, an
application of this type must look the object up directly from the name server. Each
application server contains a name server. System artifacts such as EJB homes are
bound relative to the server root context in that name server. The fully qualified
(compound name) JNDI name is always guaranteed to work.
11.
(or)
Whenever a troubled connection is encountered, a
staleConnectionException is raised. (A troubled connection is an inconsitent
connection object in a connection pool)
12.
13. How would you go about when a new application comes into ur
environment (resources, settings, heaps etc)
14.
17.
VerboseGC
19.
21.
What is a PMR and explain how you worked with IBM on a PMR
PMR: Problem Management Record ---- PMR is created wehn a customer
submits a request to fix a software problem via ESR. A PMR number is assigned to
track the request. You can attach files to your PMR to provide the IBM engineer more
information to better assist you.
ESR: Electronic Service Request -------25. What all parameters did you tune in WAS (other than JDBC connection
pool and heap sizes)
We can tune some of these other aspects such as
1. Application server (parameter : )
2. JVM tunings (parameter : )
3. Applications (parameter : )
4. Database (parameter : )
5. JMS (parameter : )
6. Security
7. Hardware capacity and settings (parameter : )
8. Operating System (parameter : )
9. Web Servers (parameter : )
26. What other connection pools do you know in WAS other than JDBC
connection pool
J2C connection pool
MQ connection pool
Thread pool
27.
OS)
2. Configure Authentication mechanisms (LTPA)
What is SSL
Secure Socket Layer is the technology to establish secure
communication along with data integrity and encryption over the network or between
the nodes (machines)
29.
Yes,
30.
What is the utility that comes with WAS / IHS to manage certificates
ikeyman.sh
31.
32.
C:\WebSphere\profiles\dmgr\config\cells\dmgr_cell\nodes\dmgr_node\serviceindex.
xml (dmgr starts but cannot open the admin console because the port hasn't been
changed in virtual host xml file)
C:\WebSphere\profiles\dmgr\config\cells\dmgr_cell\virtualhosts.xml
33. How do you disable security for Deployment manager without logging
into the console
security.xml , enable=false
34. If you have to change the ports of a jvm manually without logging into
the admin console which file would you edit.
serverindex.xml
35.
When the request comes to a webserver how does the webserver know
the JVM that is capable of handling that request.
The webserver first takes the request and if it can't serve, it
forwards the request to the plugin config file . The plugin config file routes the
request
to the appropriate application server (or cluster member or jvm)
according to the mapping information it has.
What is the refresh interval of plugin.
60 seconds
If a change is made to the plugin config should the webserver be
restarted?
Not Required because the plugin's automatic refresh interval is 60
seconds.
37.
If changes are made to the config file should the webserver be restarted
Yes. The webserver must to restarted so the changes made to the config
file become effective.
What changes are made to this config file (automatically) during plugin
installation on the webserver
The plugin's binary module file (.dll) path and the plugin's
configuration file (plugin-cfg.xml) path will be copied to the httpd.conf file
automatically.
38.
42.
43.
Unix commands
How do you create a JDBC resource
type.
Step 3: Select the implementation type. Choose a supported implementation
type.
Step 4: Apply
Step5: Now create the required Data Sources
To view this administrative console page, click Resources > JDBC
Providers > JDBC_provider > Data sources > New
44. What is the difference between webserver handling in WAS 5 and 6
45. New features in WAS 6
46.
48.
50.
11) Installation was successful and when I am trying to start server it is giving
Invocation Target Exception why you will get this issue and how you are trouble
shooting this issue.
May be the problem with hostnames, hostnames are mismatched. Add the
host name in etc/hosts file which you had given at the time of installation.
12) What are different profile templates in WAS 6.0?
Dmgr, default and managed
13) Write the complete command to create an App.Serv profile through command
line.
C:\IBM\WebSphere\AppServer\bin>wasprofile.bat -create -profileName
AppSrv04 -profilePath "C:\IBM\WebSphere\AppServer\profiles\AppSrv04"
-template Path "C:\IBM\WebSphere\AppServer\profileTemplates\default"
-nodeName app_node04 -cellName cell04 -hostName krishamurthy
14) Write a complete command to delete a profile.
C:\IBM\WebSphere\AppServer\profiles\AppSrv01\bin>wasprofile.bat
-delete -profileName AppSrv01
15) If you get a problem before creating a logs directory at the time of installation,
at that time where you can check the status of installation
tmp/log.txt
16) What is the difference between managed node and unmanaged node
Manged Node contains node agent, we can administer federated profiles
servers and applications from dmgr admin console. For unmanaged the will
be no nodeagent.
17) What is the impact for the federated profile servers, if DMGR is down.
No impact on servers and applications
18) In which xml file, we can change the port numbers.
Serverindex.xml
19) What is a server.
Server provides a runtime environment for your web apps Or Enterprise
applications.
Server receives user request, process that request and execute that request
and response will be generated to the end users.
20) If we stop the nodeagent, what will be the impact for end users.
There is no impact for end users
21) How to take backup with out stopping servers.
./backupConfig.sh nostop
22) What are the different user registries under global security in 6.0 and 6.1.
Local OS, Custom, LDAP. Federated repository was added in 6.1
23) What is the necessity of global security?
To provide security for the admin console.
24) What is the port number for LDAP server with SSL and without SSL?
389 and 636
25) How to disable Global Security
./wsadmin.sh -conntype NONE
Securityoff exit
26) How to know how many profiles are available.
/AppServer/bin>./wasprofile.sh listProfiles
27) What are the advantages and disadvantages of Local OS,Custom and LDAP user
registries?
Global Security: In 6.0 we have 3 ways to provide security for admin
console.
1) Local os user registry.
2) Custom user registry.
3) LDAP (Light Weight Directory Access Protocol) user registry.
a) Custom user registry: Here we have to create two files named:
Users. Registry
Groups. Registry
We can create this file any where but we have to configure this absolute path to the
application servers.
b) LDAP: It is a mechanism & not a server. Here we are integrating seperate
directory servers.
if SSL is enabled the port number is 636, if it is not enabled 389.
-> In local os user registry we have to create user accounts and that user
accounts have to configure to websphere application servers.
where as in the custom user registry specifying user names and passwords in
a normal file and we are specifying the absolute path of that file into the websphere
application server. whenever we are going for LDAP user registry we have to specify
user id & password & type of directory server, port number (default is 389), if SSL is
enabled we have to specify port number as 636 and we have to specify Base
distinguished name which indicates authentication for users and we have to specify
Bind distinguished name and Bind password which specify authorization for user and
we have to select "Advanced Light Weight Directory Access Protocol user registry
settings" there we have to specify user filter classes and group filter classes
(automatically it will be there) and finally we have to restart the server.
28)What is the full form of JDBC.
such questions cannot be asked in a forum, or its difficult to answer. if i were you, i
wud say, perl scripting, php, python, jython, tcl, jacl, ant, shell, blabla. Feb 7 (2
days ago)
41) when you are on call support when you got a severity 1 ticket, how do you take
action. Explain in detail.
Open the ticket, read the message what the problem is about.
login to targeted server(s), check logs, depending on error, propagate first hand info
to stakeholders. sit on the issue, fix it, close it.
42) What is a fix pack, refresh pack and when you will go for fix pack installation and
when you will go for refresh pack installation?
fix pack fixes certain issues.
refresh pack is a mile stone for a release.
a refresh pack takes you to a release, say
6.0.0.1 is a release. if you apply rp2, it becomes a release 6.0.2. if you apply fp35, it
becomes 6.0.2.35, which is not a release. Feb 7 (2 days ago) Raju
43) when you find in a particular server 'cpu starvation' error message what you will
do?
whenever there is not enough physical memory available to allow the high availability
manager threads to have consistent runtimes. When the CPU is spending the
majority of its time trying to load swapped-out processes while processing incoming
work, thread starvation might occur.
Goto InfoCenter, search for starvation.
To achieve good performance and avoid receiving these error messages, it is
recommended that you allocate at least 512 MB of RAM for each Java process
running on a single machine.
High CPU usage in a large cell configuration when security is enabled
With certain configurations and states, the amount of time spent in discovery
becomes substantial.
If a large the number of processes are defined within a core group, a proportionally
large number of connections must be established to support these processes.
If a large number of inactive processes are defined within a core group, a
proportionally large number of connections are attempted during each discovery
interval.
If global security is enabled, the DCS connections are secured, and the impact of
opening a connection greatly increases .
To decrease the CPU time spent in discovery:
In the administrative console, click Servers > Core groups > Core groups settings ,
and then select the -> DefaultCoreGroup.
Under Additional Properties, click Custom properties > New.
Enter IBM_CS_UNICAST_DISCOVERY_INTERVAL_SECS in the Name field and 120 in
the Value field.
Click OK.
Then click New again and enter IBM_CS_SS_SECURE_TOKEN in the Name field
andfalse in the Value field.
Click OK and then Save to apply these changes to the master configuration.
Restart the server for these changes to take effect.
Transient high availability heartbeat failures und
11.If we said to analyze thread dumps can you do?
Ya!! Why not
44) How comfortable with scripting?
100% pakka comfortable
45) Did you worked with JACL or Jython scripts?
I prefer one scripting style. Why wud I use two scripting styles? At a given point of
time, scripting interface accepts only one language.
46) When you found hung thread error messages what you will do? Will you kill the
process. If yes, in which case you have to kill the process?
Lucky you and lucky me, we have IBM's InfoCenter. Is it not easy to perform a
simple search on InfoCenter like this *hung thread*?
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/index.jsp?
topic=/com.ibm.websphere.nd.multiplatform.doc/info/ae/ae/ttrb_confighangdet.html
Configuring the hang detection policy
The hang detection option for WebSphere Application Server is turned on by default.
You can configure a hang detection policy to accommodate your applications and
environment so that potential hangs can be reported, providing earlier detection of
failing servers. When a hung thread is detected, WebSphere Application Server
notifies you so that you can troubleshoot the problem.
Add the following properties:
Name: com.ibm.websphere.threadmonitor.interval
Value: The frequency (in seconds)
Default: 180 seconds (three minutes).
Name: com.ibm.websphere.threadmonitor.threshold
Value: The length of time (in seconds).
Default: The default value is 600 seconds (ten minutes).
Name: com.ibm.websphere.threadmonitor.false.alarm.threshold
Value: The number of times (T) that false alarms can occur before automatically
increasing the threshold. Feb 7 (2 days ago) Raju
47) Explain about your enivronment, servers, webservers, etc.,
Think about ur company and thier business. Cook a story. Serve it on the table with
some masala, salt and pepper.
48) What is a document server and what is the use of it.
this is the funniest question one can ask.
what is a document server? in general a document server is a repository of
documents in an enterprise.
what is the use of it? its the central repository and depending access polices agency
wide authorized and authenticated *users* can access documents.
ex.,
u have prepared a document on ur environment. u need a place to put that
document so that ur team can access it, ur manager can access it. above that,
another team who wants to read that document can access that, above that, some
infrastructure team can access it, above that datacom people can access it and so
on.
what is the best place to put it?
on ur desk top? or attach to mail? or dump it in a shared location.
if its a shared location, what that could be? will you dump it in a zunkyard shared
location or in a proper shared location? first | < previous | next > | last
report spam reply
49) TYPES OF SEVERIATIES?
Severities will be of different types like Severity 1, 2, 3, 4, 5.
Depending upon the type of issue it will be classified.
50) WHAT TYPE OF ISSUE'S CONTAIN SEVERIATY1 TICKET'S?
Severity 1 tickets are the most rare tickets which will get and
which we have to get in our administration.
If our process is not running smooth, that means your application not responding,
application server is not responding or entire environment falls then we will get
severity 1 ticket.
51.WHAT IS THE DIFF B/W COREDUMP & THREAD DUMP?
there is not much difference between these two.
In thread dump we can find, what are the active threads that are there at that
particular time. Where as core dump contains information about dead locks,
hang threads also
52.WHEN THE SERVER HUNG HOW WILL IDENTIFY IN SYSOUT.LOG?
Its very simple in systemout.log we will find a particular thread is hung from this
many milli seconds will be found. The thread name will be WSVR****
53. HOW TO TAKE BACKUP THE APPLICATION?
Taking backup of the application can be done by using export option
in the admin console or directly from the directory location.
54. WHAT'S THE RELATION B/W WIILY INTROSCOPE & WAS(LIKE
AGENT/AGENTLESS)?
Wily introscope is a third party tool which is used to monitor the server
environments,
not only WAS anything.
55) Difference between Websphere 5.1, 6.1 and 7.0
Profiles
wsadmin scripts
WAS 5.1:JACL is the scripting language which is used
WAS 6.1:JACL will be deprecated from 6.1 and Jython scripting will be used.
WAS 7.0:Same as V 6.1
Posted by TechnoTips at 4:18 AM 0 comments
Reactions:
Thursday, September 25, 2008
create Heapdump using wsadmin
//Refrence of JVM
objectName=AdminControl.queryNames('type=JVM,process=WebSphere_Portal,*')
wsadmin>print objectName
WebSphere:name=JVM,process=WebSphere_Portal,platform=dynamicproxy,node=a
hdp2csmwas78,j2eeType=JVM,J2EEServer=WebSphere_Portal,version=6.0.2.21,type
=JVM,mbeanIdentifier=JVM,cell=wpcell
//genrate heapdump
wsadmin>AdminControl.invoke(objectName, "generateHeapDump")
Posted by TechnoTips at 4:24 AM 0 comments
Reactions:
the reuested url and It will redirect the request to the avaliability of the servers in
the cluster.
The plug-in mainly perform the work load management.If any server is processing
any request then the plug-in will route the request to the avaliability of the servers
based on their weight and based on the algorithams.
3)what are the main point while installing an IHS?
The main use of installing any external web server is to proces the dynamic content
request
4)what the file path of httpd.conf?
/opt/IBM HTTPSERVER/conf/httpd.conf
window
c:\programfiles\IBM HTTP SERVER\conf\httpd.conf
5)What are Java Programming languages?
Servlets,jsp,ENB,Struts,JSF,HIbernate
6)What is Object pool?
How to take back up ? while taking back is it necessary to stop the server?
execute backupConfig.sh command to take the backup ,yes it is required to stop the
servers,
by default when you execute this command it will stop all the servers on the node so
yhe partially
synchronized information will not be saved .
what are the Deployment ways ? steps ?
1.Hot fix
2.wsadmin
3.AdminConsole
4.Using third party tolls like ,Teamsite ,Cruise Control, MKS etc.
1)what is thin driver and thick driver.why it is cal...
thick driver - type 1 and type 2 JDBC drivers are called thick drivers. The reason for
it is - it provides JDBC access via ODBC
drivers. ODBC binary code and in many cases database client code must be loaded
on each client machine that uses such a driver.
and as the program is connected to database by an extra layer in the clint hence
thay are called thick drivers.
Thin drivers: This style of driver converts JDBC calls into the network protocol used
directly by DBMSs allowing a direct call
from the client machine to the DBMS server and providing a practical solution for
intranet access. hence their conenction to DB
is more direct and without any intermediate stage making them thin drivers. type 4
driver.
Basic difference between thin and thick client
Oracle has a thin client driver which mean you can connect to a oracle database
without the Oracle client installed on your machine.
Thick client would need the Oracle Client database drivers etc.. Drivers include JDBCODBC bridge drivers JDBC drivers depending on tns resolution.
Dominic
thin driver is 4 type driver in java which r provide the connectivity between
oracle and java.the main advantage is this driver is we connect the databse to java
without create DSN.and it provide the all the host computer connectivity in the
network.so its r most important driver which we use in the java.
2)What is Connection Pooling
Connection pooling is a place where a set of connections are kept and are
used by the different programers with out creating conncections to the database(it
means there is a ready made connection available for the programmers where he
can use). After using the connection he can send back that connection to the
connection pool. Number of connections in connection pool may vary.
1)How many JDBC drivers are there ?
A) 2
B) 4
C) 3
D) 1
2)Which of the following is false for the Type 1 JDBC bridge driver?
A) A Type 1 driver is a JDBC-ODBC bridge driver
B) This type of driver enables a client to connect to an ODBC database via Java calls
and JDBC
C) Both the database and middle tier need to be Java compliant.
D) ODBC binary code must be installed on each client machine that uses this driver.
Explanation: Neither the database nor the middle tier needs to be java compliant.
3)Which of the following statement is true for the Type 2 JDBC driver?
A) A Type 2 driver converts JDBC calls into calls for a specific database.
B) This driver is referred to as a "native-API, partly Java driver."
C) As with the Type 1 driver, some binary code may be required on the client
machine, which means this type of driver is not suitable for downloading over a
network to a client.
D) All of the above
4)What is the difference between EAR, JAR and WAR file
Answered by Jey on 2005-05-08 11:23:41: In J2EE application modules are
packaged as EAR, JAR and WAR based on their functionality
JAR:
EJB modules which contains enterprise java beans class files and EJB deployment
descriptor are packed as JAR files with .jar extenstion
WAR
Web modules which contains Servlet class files,JSP FIles,supporting files, GIF and
HTML files are packaged as JAR file with .war( web achive) extension
EAR
All above files(.jar and .war) are packaged as JAR file with .ear ( enterprise archive)
extension and deployed into Application Server.
5)Full form of java jar file?
In: JAVA Programming [Edit categories]
JAR = Java ARchive
6)Re: URL of Oracle thin driver.
Topic: JDBC
Luigi Viggiano PREMIUM, Jun 4, 2001 [replies:1]
briefly: jdbc:oracle:thin:@hostname:port:oracle-sid
1. in green the Oracle sub-protocol (can be oracle:oci7:@, oracle:oci8:@,
racle:thin:@, etc...) is related on the driver you are unsign and the protocol to
communicate with server.
2. in red the network machine name, or its ip address, to locate the server where
oracle is running.
3. in blue the port (it is complementary to the address to select the specific oracle
service)
4. in magenta the sid, select on wich database you want to connect.
10) Explain about caching proxy of IBM Web sphere Edge sphere?
A caching proxy can be configured in forward direction or as a proxy. Content
requested by the user is cached by edge before sending or adhering to the query.
Page fragments arising from JSP or servlets are cached by Edge and the caching
process is slow. Performance and scalability of J2EE applications can be increased by
edge.
11) Explain about the network deployment feature present in WAS?
Managing singletons will be a thing of the past and it also provides hot recovery of
singletons which makes you forget about your GC collected singletons. Transaction
logs can stored on a shared file system. For clustering run time operations
deployment manager`s role was eliminated. J2EE failover support and cell
configuration support is also present.
12) Explain about IBM web sphere integration developer?
Web sphere integration developer provides an IDE to build applications based on
service oriented architecture. Web sphere process server and web sphere ESB were
built with WID. WID was built with RAD Eclipse based technology.
13) Explain about compute Grid?
Compute grid is also known as Web sphere batch. Web sphere extended deployment
offers a Java batch processing system called as Compute Grid. This forms an
additional feature to Web sphere network environment. Various features are provided
which help a developer to create, manage and execute batch jobs. Job scheduler,
xJCL, batch container and batch programming controller.
14) Explain about web sphere MQ Real time transport?
This feature is very useful in instant messaging across different clients through
intranet and internet. This supports high volume and high performance across
different clients. It uses the concept of light weight transport which is again based on
IP rather than the queue process.
15) Explain about Web sphere MQ JMS Provider?
Web sphere MQ and Web Sphere Business integration manager Broker are very
useful in providing Java messaging services to wide range of clients (publisher
subscribe, point to point). Java classes are chiefly responsible for translating the API
calls to API`s defined by web sphere. It is very useful to have knowledge of Web
sphere MQ for proper configuration.
16) Explain the attribute CHANNEL in web sphere MQ?
CHANNEL specifies the name of the server connection channel. Generally this is Web
Sphere MQ network abstraction. The default standard used by CHANNEL is SVRCONN
which is the server connection channel. This server is generally used to communicate
to the queue manager by the client.
17) Is the naming of connection factory independent of the name specified by JMS
client?
Yes, the naming of connection factory is independent of the name specified by JMS
client. This is made possible by WAS (Web sphere application server) with its
resource references. It isolates the application from object names. This feature is
important because it gives us the flexibility to change the administered object
without changing the JMS client code.
team members, technical descriptions, usage, etc. This is very important as he will
mention to the technical HR about your project.
7) What was the reason you left your previous job?
While explaining this question you need to make sure that you dont speak about the
negative features of your previous job which made you to leave the company instead
explain about those negative features in a convincing manner and you can state that
those reasons are hindering your growth.
8) What is your goal and what do you like to achieve in the near future?
Explain to him about the goal which you would like to pursue in the near future and
how the company can help you achieve that goal. Have a goal which is reasonable
and achievable because it gives you a feeling of accomplishment.
9) What was your biggest job or project accomplishment?
For this question you would be explaining to him about the most challenging project
you undertook and the benefits you obtained by completing it within the deadline.
This will explain to the interviewer about your necessary skills, management skills
and team play.
10) Can you go to tours often?
When answering this question have it in mind that your answer will be kept in the
record. If you cannot take tours due to various reasons state them in a pleasant
tone. The answer which you give will be kept in the record. Also make it a habit to
take small tours or travelling because every job demands that.
11) What do you know about this organization?
Before answering this question make sure that you do enough research about the
organization before applying to it. Also do remember that the interviewer knows
much more about this organization than you do. Try to have as much information
about the job position also.
12) Did you miss deadlines or target?
Be honest when answering this question because your previous employer will have
everything on record and your current employer may request for it. Explain to
him/her about the deadlines you have met during the process.
1)How to identify unused indexes in DB2 for Linux, UNIX, and Windows
database has gone into production, the existence of too many indexes turns
out to be a cause for decreased database performance. Many indexes mean.
During database application development, developers tend to define a large
number of indexes on tables to guarantee that each and every query performs well.
After application development has been finished and a database has gone into
production, the existence of too many indexes turns out to be a cause for decreased
database performance.
Many indexes mean more work for the database system when executing UPDATE,
INSERT, and DELETE (UID) operations. In addition, regular maintenance activities
like RUNSTATS and REORG also run considerably longer in cases where many indexes
are present. Therefore, to achieve the best database performance, it is critical to be
able to determine which indexes are necessary for query execution and which
indexes you can safely drop without impacting query runtimes. This article explains
several methods that a DB2 for Linux, UNIX, and Windows (DB2 LUW)
database administrator (DBA) can use to identify unused and seldom used indexes.
What is a JAR file?
The JAR file format is based on the popular ZIP file format, and is used for
aggregating many files into one. Unlike ZIP files, JAR files are used not only for
archiving and distribution, but also for deployment and encapsulation of libraries,
components, and plug-ins, and are consumed directly by tools such as compilers and
JVMs. Special files contained in the JAR, such as manifests and deployment
descriptors, instruct tools how a particular JAR is to be treated.
A JAR file might be used:
For distributing and using class libraries
As building blocks for applications and extensions
As deployment units for components, applets, or plug-ins
For packaging auxiliary resources associated with components
The JAR file format provides many benefits and features, many of which are not
provided with a traditional archive format such as ZIP or TAR. These include:
Security. You can digitally sign the contents of a JAR file. Tools that recognize your
signature can then optionally grant your software security privileges it wouldn't
otherwise have, and detect if the code has been tampered with.
Decreased download time. If an applet is bundled in a JAR file, the applet's class files
and associated resources can be downloaded by a browser in a single HTTP
transaction, instead of opening a new connection for each file.
Compression. The JAR format allows you to compress your files for efficient storage.
Package sealing. Packages stored in JAR files can be optionally sealed to enforce
version consistency and security. Sealing a package means that all classes defined in
that package must be found in the same JAR file.
Package versioning. A JAR file can hold data about the files it contains, such as
vendor and version information.
Portability. The mechanism for handling JAR files is a standard part of the Java
platform's core API.
Compressed and uncompressed JARs
The jar tool (see The jar tool for details) compresses files by default. Uncompressed
JAR files can generally be loaded more quickly than compressed JAR files, because
the need to decompress the files during loading is eliminated, but download time
over a network may be longer for uncompressed files.
The META-INF directory
Most JAR files contain a META-INF directory, which is used to store package and
extension configuration data, such as security and versioning information. The
following files or directories in the META-INF directory are recognized and interpreted
by the Java 2 platform for configuring applications, extensions, and class loaders:
MANIFEST.MF. The manifest file defines the extension- and package-related data.
INDEX.LIST. This file is generated by the new -i option of the jar tool and contains
location information for packages defined in an application or extension. It is part of
the JarIndex implementation and used by class loaders to speed up the class loading
process.
xxx.SF. This is the signature file for the JAR file. The placeholder xxx identifies the
signer.
xxx.DSA. The signature block file associated with the signature file stores the public
signature used to sign the JAR file.
The jar tool
To perform basic tasks with JAR files, you use the Java Archive Tool (jar tool)
provided as part of the Java Development Kit. You invoke the jar tool with the jar
command. Table 1 shows some common applications:
Table 1. Common usages of the jar tool
Function
Creating a JAR file from individual files
Command
jar cf jar-file input-file...
cf jar-file dir-name
cf0 jar-file dir-name
uf jar-file input-file...
tf jar-file
xf jar-file
xf jar-file archived-file...
java -jar app.jar
-> Whenever we change port number and restart the server it will be updated in
portdef, no need to change here again.
Profile: A profile is nothing but an environment where we can create Servers. There
are 3 types:
1) Application Profile.
2) Deployment Profile.
3) Custom Profile.
-> The default profile is Application Server profile.
-> The custom profile will give us an empty node.
-> The soap connecter port number of deployment manager is 8879.
-> Independantly a custom profile will have no use. We have to get connected with
dmgr.
-> Before federation we have to check whether, .Dmgr is opening or not.
.Dmgr is under running or not.
In dmgr host we maintain dmgr just to monitoring and configuring the
administration.
->In ND package we have 3 types of Templates:
1) Dmgr Template
2) Default Template
3) Managed Template.
-> By default the dmgr profile won't give any servers. It is not at all a server,
used just to configure.
-> The AppServer gives server1 as default server. In application server we
have no option to create server. It is
just a stand alone profile.
Node: is a collection of servers. it reduces administration burden. It is a single point
of servers. If we start Node, n-number of servers will get started, if we stop all will
be stopped.
Federation: In Dmgr01 we should have an eligible node to create servers but Dmgr
node is not eligible, at that time we can connect App-node which is eligibe to create
servers from the appsrv01 Then we can create servers using App-Node in dmgr01.
If we want to do federation we have to ping the Dmgr Server.
Dmgr was introduced for single point of admin.
In dmgr admin console, number of servers will be there under same
environment.
We can create number of servers under dmgr console using Add-node.
When ever we do federation a node agent will be created to communicate between
Appserv & Dmgr.
Node Agent: It will acts as a communication between which node we are federating.
Cell Profile: is the combination of deployment profile and application profile.
in both 6.0 & 6.1 the cell is available in deployment manager.
Whenever we create cell profile automatically there will be deployment profile &
application profile and federation also will be done automatically.
The complete administration will be under the cell profile only.
Global Security: In 6.0 we have 3 ways to provide security for admin console.
1) Local os user registry.
What is the error HTTP 403 indicates and how to solve these issues?
This is due to SSL certificate or some security settings in the server might have
issues.
Introduction
Your Web server thinks that the HTTP data stream sent by the client (e.g. your Web
browser or our CheckUpDown robot) was correct, but access to the resource
identified by the URL is forbidden for some reason.
This indicates a fundamental access problem, which may be difficult to resolve
because the HTTP protocol allows the Web server to give this response without
providing any reason at all. So the 403 error is equivalent to a blanket 'NO' by your
Web server - with no further discussion allowed.
By far the most common reason for this error is that directory browsing is forbidden
for the Web site. Most Web sites want you to navigate using the URLs in the Web
pages for that site. They do not often allow you to browse the file directory structure
of the site. For example try the following URL (then hit the 'Back' button in your
browser to return to this page):
This URL should fail with a 403 error saying "Forbidden: You don't have permission
to access /accounts/grpb/B1394343/ on this server". This is because our
CheckUpDown Web site deliberately does not want you to browse directories - you
have to navigate from one specific Web page to another using the hyperlinks in those
Web pages. This is true for most Web sites on the Internet - their Web server has
"Allow directory browsing" set OFF.
403 errors in the HTTP cycle
Any client (e.g. your Web browser or our CheckUpDown robot) goes through the
following cycle:
Obtain an IP address from the IP name of your site (your site URL without the
leading 'http://'). This lookup (conversion of IP name to IP address) is
provided by domain name servers (DNSs).
Open an IP socket connection to that IP address.
Write an HTTP data stream through that socket.
Receive an HTTP data stream back from your Web server in response. This data
stream contains status codes whose values are determined by the HTTP
protocol. Parse this data stream for status codes and other useful information.
This error occurs in the final step above when the client receives an HTTP status code
that it recognises as '403'.
Fixing 403 errors - general
You first need to confirm if you have encountered a "No directory browsing" problem.
You can see this if the URL ends in a slash '/' rather than the name of a specific Web
page (e.g. .htm or .html). If this is your problem, then you have no option but to
access individual Web pages for that Web site directly.
It is possible that there should be some content in the directory, but there is none
there yet. For example if your ISP offers a 'Home Page' then you need to provide
some content - usually HTML files - for the Home Page directory that your ISP
assigns to you. Until the content is there, anyone trying to access your Home Page
could encounter a 403 error. The solution is to upload the missing content - directly
yourself or by providing it to your ISP. Once the content is in the directory, it also
needs to be authorised for public access via the Internet. Your ISP should do this as
a matter of course - if they do not, then they have missed a no-brainer step.
If your entire Web site is actually secured in some way (is not open at all to casual
Internet users), then an 401 - Not authorized message could be expected. It is
possible, but unlikely, that your Web server issues an 403 message instead.
Some Web servers may also issue an 403 error if they at one time hosted your site,
but now no longer do so and can not or will not provide a redirection to a new URL.
In this case it is not unusual for the 403 error to be returned instead of a more
helpful error. So if you have recently changed any aspect of your Web site setup (e.g.
switched ISPs), then a 403 message is a possibility. Obviously this message should
disappear in time - typically within a week or two - as the Internet catches up with
whatever change you have made.
If you think that the Web URL *should* be accessible to all and sundry on the
Internet and you have not recently changed anything fundamental in your Web site
setup, then an 403 message indicates a deeper problem. The first thing you can do is
check your URL via a Web browser. This browser should be running on a computer to
which you have never previously identified yourself in any way, and you should avoid
authentication (passwords etc.) that you have used previously. Ideally all this should
be done over a completely different Internet connection to any you have used before
(e.g. a different ISP dial-up connection). In short, you are trying to get the same
behaviour a total stranger would get if they surfed the Internet to your Web page
URL.
If this type of browser check indicates no authority problems, then it is possible that
your Web server (or surrounding systems) have been configured to disallow certain
patterns of HTTP traffic. In other words, HTTP communication from a well-known
Web browser is allowed, but automated communication from other systems is
rejected with an 403 error code. This is unusual, but may indicate a very defensive
security policy around your Web server.
Fixing 403 errors - CheckUpDown
The first question is whether the Web page for your URL is freely available to
everyone on the Internet. If this is not the case, then you may need to provide two
items 2. Web Site User ID and 3. Web Site Password for your CheckUpDown
account - but only if your site uses HTTP Basic Authentication. The Web Master or
other IT support people at your site will know what security and authentication is
used.
If however your Web page is open to all customers and there have been no
fundamental changes recently to how your Web site is hosted and accessed, then an
403 message should only appear if your Web server objects to some aspect of the
access we are trying to get to your Web site. Because it indicates a fundamental
authority problem, we can only resolve this by negotiation with the personnel
responsible for security on and around your Web site. These discussions
unfortunately may take some time, but can often be amicably resolved. You can
assist by endorsing our service to your security personnel. Please contact us (email
preferred) if you see persistent 403 errors, so that we can agree the best way to
resolve them.
If the page cant display error comes then what you will do in the
production system?
a)
There must be some network issue or server not receiving the request.
Need to check the server availability.
What is the error HTTP 404 indicates and how to solve these issues?
The 404 or Not Found error message is an HTTP standard response code indicating
that the client was able to communicate with the server but the server could not find
what was requested..
What is the difference between page not found and HTTP 404? How to solve
these issues?
a)
The Page not found error is, the request is not reaching the server. HTTP
404 errors is request is reaching to server but whatever it is expecting its not found
at expected location
What is meant by ear expander utility?
EAR Expander utility is used to expand the application binaries into any path,
normally we will use this to expand it in other than the default path.
Once expanded we will update the same app binaries from WAS admin console to
update WAS.
The EARExpander expands Ear files into the format desired by the application server
runtime, as described in the application installation instructions. EARExpander can
also collapse the expanded format back to a normal Ear (.jar or .zip) format.
Invoking the tool
The tool is located in the following directory:
product_installation_root/bin/EARExpander.bat
To view syntax, open a command line and invoke the tool without arguments. Here is
a typical result. The line breaks have been changed for better formatting in this
documentation.
C:\seaa0122.02\bin>EARExpander.bat IBM WebSphere Application Server,
Release 4.0 J2EE
J2EE Application Expansion Tool, Version 1.0
Copyright IBM Corp., 1997-2001
Required Argument Missing:ear
Usage: java com.ibm.websphere.install.commands.EARExpander
-ear -expandDir -operation [expansionFlags]
ExpansionFlags indicate whether you want every JAR file expanded, or just the
contained WAR files within the EAR file. The default is all.
Expanding files
The following example command expands the file my.ear into the
product_installation_root/bin/myEAR directory:
EARExpander -ear my.ear -expandDir product_installation_root/bin/myEAR
-operation expand
Collapsing files
Using the collapse -operation reverses the format to normal.
EARExpander -ear my.ear -expandDir product_installation_root/bin/myEAR
-operation collapse
Type each of the above commands on a single line, despite their appearance in this
documentation.
What is meant by JAVA Script?
Java script is a scripting tool to developed web applications.
What is meant by Heap in Java process and what information will be
available in heap file?
a)
Heap is used to collect the garbage for java applications; the Heap file
contains the garbage collected from java process.
What are the available log file in the WAS 6.1
a)
In was there are list of logs available to monitor and troubleshoot. They are
Diagnostic Trace Service
View and modify the properties of the diagnostic trace service. Diagnostic trace
provides detailed information about the execution of WebSphere Application Server
components within this managed process. Changes on the Configuration panel will
apply when the server is restarted. Changes on the Runtime panel will apply
immediately.
JVM Logs
View and modify the settings for the Java Virtual Machine (JVM) System.out and
System.err logs for this managed process. The JVM logs are created by redirecting
the System.out and System.err streams of the JVM to independent log files. The
System.out log is used to monitor the health of the running application server. The
System.err log contains exception stack trace information that is useful when
performing problem analysis. There is one set of JVM logs for each application server
and all of its applications. JVM logs are also created for the deployment manager and
each node manager. Changes on the Configuration panel will apply when the server
is restarted. Changes on the Runtime panel will apply immediately.
Process Logs
View or modify settings for specifying the files to which standard out and standard
error streams write. The process logs are created by redirecting the standard out and
standard error streams of a process to independent log files. Native code writes to
the process logs. These logs can also contain information relating to problems in
native code or diagnostic information written by the JVM. There is one set of process
logs for each application server and all of its applications. Process logs are also
created for the deployment manager and each node manager. Changes on the
Configuration panel will apply when the server is restarted. Changes on the Runtime
panel will apply immediately.
IBM Service Logs
Configure the IBM service log, also known as the activity log. The IBM service log
contains both the WebSphere Application Server messages that are written to the
System.out stream and some special messages that contain extended service
information that can be important when analyzing problems. There is one service log
for all WebSphere Application Server Java virtual machines (JVMs) on a node,
including all application servers. and their node agent (if present). A separate activity
log is created for a deployment manager in its own logs directory. The IBM Service
log is maintained in a binary format. Use the Log Analyzer or Showlog tool to view
the IBM service log.
Resources -> JDBC Providers -> (all providers) -> Data Sources -> (all data sources)
-> Connection Pools
and set the parameters for Minumum connections and Maximum connections to 50.
Statement Cache Size
To change this value, open the WebSphere Admin Console and go to
Resources -> JDBC Providers -> (all providers) -> Data Sources -> (all data sources)
And set the parameter for Statement Cache Size to 500.
Tell about Resource analyser?
a)
Resource analyser is used to analyse the performance of the WAS resources.
It is a monitoring tool comes with WAS.
If you need to configure a process in UNIX what are the steps?
a)
No Idea about this question.
How to find a text in VI editor in UNIX?
a)
Escape / followed by text
Tell about nany process in UNIX?
a)
Nanny process on Windows NT and Windows 2000 is the Windows service
"IBM WS AdminServer".
What is the basic command in UNIX to find network performance?
a)
Netstat
Tell about data source?
Installed applications use JDBC providers to interact with relational databases.The
JDBC provider object supplies the specific JDBC driver implementation class for
access to a specific vendor database. To create a pool of connections to that
database, you associate a data source with the JDBC provider. Together, the JDBC
provider and the data source objects are functionally equivalent to the J2EE
Connector Architecture (JCA) connection factory, which provides connectivity with a
non-relational database.
Data sources allow you to manage a pool of connections to a database
Data sources work as follows:
When a client wants to use a connection, it looks up a data source by name from
a JNDI server.
The data source then returns a connection to the client.
If the data source has no more connections, it may ask the database manager for
more connections (as long as it has not exceeded the maximum number of
connections).
When the client has finished with the connection, it closes the connection.
The data source then returns the connection to the available pool.
You can configure data sources for WebSphere Application Server v6.x by using the
Deployment page in the application deployment descriptor editor or using the
administrative console. For WebSphere Application Server v5.11 test environments
and servers you can configure data sources by using the Data Source page in the
server editor.
What are the profiles available in WAS 6.x? And difference between them?
In WAS 6.1 we have 4 different types of profiles available. They are
Deployment Manager Profile(DMGR):
The deployment manager profile defines a deployment manager in a
distributed server environment
Application Server Profile:
It is a single stand alone application server. This profile gives you an
application server that can run stand alone or un-managed.
Custom Profile
A Custom profile is an empty Node intended for federation to a
deployment manager.
Cell Profile
The application server is federated to the DMGR profile. It is a
combination of DMGR and Application server profiles.
What is the programming model/Module?
JAVA related wage to me..
What is meant by Asymmetric Cluster and how it works?
a)
Clusters are groups of servers that are managed together and participate in
workload management. A cluster can contain nodes or individual application servers.
In an asymmetric cluster, business logic is split into partitions, where each partition
can be the sole accessor of a set of underlying data. As a result, each node in the
cluster can implement it's own local cache (and be the sole accessor of that data),
resulting in high performance reading and writing without the need to maintain a
distributed cache between cluster nodes.
Asymmetric clustering proposes an architecture that is almost opposite to the typical
stateless server farm where the entire app is replicated across machines, some times
using distributed caching products for performance increasing.
What information contains by SERVER INDEX file ?
a)
Server index will have SOAP/Boot strap and all ports and details
What information contains by Plugin-cnf.xml file ?
a)
Plug-in configuration file contains routing information for all applications
mapped to the web server. This file is read by binary plug-in module loaded in the
web server.
Plugin-cnf.xml file will have all the configuration setting to determine whether
a request is for the webserver or the application server. When a request reaches the
web server, the URL is compared to those managed by the plug-in. If a match is
found, the plug-in configuration file contains the information needed to forward that
request to the web container using the web container inbound transport chain.
What is meant by SSL and how does it works?
a)
SSL mean secured socket layer. This is to secure the WebSphere environment.
SSL provides connection security through
-Communication privacy the data on the connection is encrypted
-Communication integritythe protocol includes a built-in integrity check
-Authenticationthe client knows who the server is
-SSL creates a VPN, securing the data using a combination os symmetric and
asymmetric encryption.
Symmetric key encryption:
Symmetric or secret key technology is a model in which two parties have a
shared secret
2) Command line :
By using gsk7cmd command we can achive the SSL configuration.
Gsk7cmd provides the otions like import ,export,list,create options for
certificates
Gsk7cmd cert create db plugin-key.kdb pw password label websphere
pluginkey -dn
3) ikeyman:
By using ikeyman we can open the KDB(key data base) and add the
certificates to the key database.
What is the difference between round robin and random load balancing?
a)
Round robin load balance is nothing but symmetric clustering and random
load balancing nothing but asymmetric clustering
What is the activity log and what it is useful?
The application server creates the activity.log file from the activity of the various
WebSphere Application Server components. you cannot read this log with a text
reader. You ca use this script called, showlog under appserver root.
Ex.,
./WAS_INST_ROOT/bin/showlog PATH_TOACTIVITY_LOG/activity.log
like this
websphe: /software/opt/IBM/WebSphere/AppServer/bin
$ ./showlog ../profiles/AppSrv*/logs/activity.log
This displays ur activity log something like this, just as a sample:
ExtendedMessage:
What are the different roles available in the WAS?
a)
In WAS we have the following roles
Monitor: Least privileged; allows a user to view the WebSphere
configuration and current application server state.
Configuration: Monitor privileges plus the ability to change the
WebSphere configuration.
Operator: Monitor privileges plus ability to change runtime state, such as
starting or stopping servers.
Administrator: Operator, Configuration, and iscadmins privileges, plus
additional privileges granted solely to the administrator role, such as
Modifying the primary administrative users and passwords.
Mapping users and groups to the administrator role
Enabling or disabling administrative and java 2 security
Additional console security roles :
Iscadmins (Integrated solutions console) :
Only available for administration console users
Allows a user to manage users and groups in the federated repository.
Deployer :
Only available for wsadmin users(not for administration console)
Allows a user to change configuration and runtime state on application using
wsadmin
Admin Security Manager:
1) Only available for wsadmin users
2) Allows a user to map users to administrative roles using wsadmin
3) When restricted access to resource authentication data is in effect, users
can also manage authorisation groups.
If memory leakage is there in then where (in which file) we get this
information?
a)
Memory leakage information can get in the process logs ( Native_stdout and
Native_stderrer logs)
How many ways we can federate the Node?
Ans
Before federating any Node we must make sure
Application server should be started on the Node to be added
We need to find the SOAP connector for DMGR( we can find this in
communication section in the detailed page for the application
server(DMGR) default is 8879 )
From the Admin Console:
Select System Administration --> Nodes --> AddNode
Select Managed Node and click next then specify the HostName of the
Node to be added to the cell. Then select the connector type (SOAP or
RMI) and connector port. If security is enabled provide user id and
password and include application (if required).....
ii) Using the AddNode Command:
To use AddNode command do the following
1) Open a command line window on the system that has the running stand
alone application server
2) Change the directory to <Profile_Home>/bin directory of the stand alone
application server installation
3) Execute AddNode Command
Syntax with Ex:
<Profile_Home>/bin>AddNode <DMGR_HOST> <DMGR_SOAP_PORT>
[Options]
Options include like
-conntype [SOAP/RMI]
-includeapps (It includes installed application on the stand alone Node)
Note: We can add Node from DMGR installed system as well, in this option
we need to give the Host name and port number of the stand alone
application servers credentials instead of DMGRs.
How many ways we can synchronise a node?
a)
We can Sync Node in two ways
1) From Command prompt : stop the Node then issue the SynNode
command in the command prompt.
<Node_Host>/bin> SyncNode <DMGR_HOST> <DMGR_PORT> [Options]
-username
-password
-restart
-conntype
-quit
-stopserver
2) From Admin Console:
Select System Administration --> Nodes--> Synchronise (Select the
Particular node to sync)
How many user registries are available in the WAS 6.X?
If we give heap size value same for both min and max then what are the
advantages and what are the disadvantages?
a)
The Java heap parameters influence the behavior of garbage collection.
Increasing the heap size supports more object creation. Because a large heap takes
longer to fill, the application runs longer before a garbage collection occurs. However,
a larger heap also takes longer to compact and causes garbage collection to take
longer.
The JVM has thresholds it uses to manage the JVM's storage.
are reached, the garbage collector gets invoked to free
Therefore, garbage collection can cause significant degradation
Before changing the initial and maximum heap sizes, you
following information:
In the majority of cases you should set the maximum JVM heap size to
value higher than the initial JVM heap size. This allows for the JVM to
operate efficiently during normal, steady state periods within the
confines of the initial heap but also to operate effectively during
periods of high transaction volume by expanding the heap up to the
maximum JVM heap size.
In some rare cases where absolute optimal performance is required
you might want to specify the same value for both the initial and
maximum heap size. This will eliminate some overhead that occurs
when the JVM needs to expand or contract the size of the JVM heap.
Make sure the region is large enough to hold the specified JVM heap.
Beware of making the Initial Heap Size too large. While a large heap size initially
improves performance by delaying garbage collection, a large heap size ultimately
affects response time when garbage collection eventually kicks in because the
collection process takes more time.
What is FFDC?
a)
The first failure data capture (FFDC) log file saves information that is
generated from a processing failure. These files are deleted after a maximum
number of days has passed .
There are two artifacts which are produced by FFDC, the information can be located
in the <Install Root>/logs/FFDC directory:
* Exception Logs:<ServerName>_Exception.log
* Incident
Stream:<ServerName>_<threadid>_<timeStamp>_<SequenceNumber>.txt
Exception Log
row elements
The exception logs contains all of the exception paths which have been encountered
since the server has started. Due to optimizations in the data collection, the table
was created to give an over view of the exceptions which have been encountered in
the server. A entry in the table look like this :
Index Occur Time of last Occurence Exception SourceId ProbeId
ences
----------------------------------------------------------------------1 1 02.04.11 13:12:33:711 CDT java.io.IOException
com.ibm.ws.webcontainer.http.HttpTransport.startTransport 103
The first element in the row is a simply index, this is simply used to determine the
number of rows in the table. In some entries, a '+' may appear in the first column,
this indicates that the row has been added to the table since the last time the entire
table was dunmped.
The second element is the number of occurences. This is useful to see if there is an
unusual number of exceptions which are occurring.
The third element in the row, is a time stamp for the last occurence of the
exeception. This is useful in looking at exceptions which have occurred at about the
same time.
The last element in the row is a combination of values. This consists of the exception
name, a source Id and the probe Id. This information is useful to locate information
in the incident steam about the specific failure.
file content
The make up of the file can be a little confusing when first viewed. The file is a
accumulation of all of the dumps which have occurred over the life of the server.
This means that much of the informaion in the file is out of data, and does not apply
to the current server. The most relevent information is the last (tail) of the file.
It is quite easy to locate the last dump of the exception table. The dump will be
I May 2009
253
I June 2009
289
I July 2009
994
I July 2009
992
I October
2009
995
2) Hot Deployment :
We could copy directly the JAR files to the deployedapps folder in the
websphere we call this method as Hot Deployment
Dropping JSP files, with enabled class reloading ( Not recommended
for Production)
3) Using Wsadmin command:
4) Using Jacl or Jython Scripts:
If you want then I can explain the Web container and EJB container and Web
server and JDBC etc.
Web container
when we receive request from client browser so web container will act as interface
between client request and Servlets and jsp in other words Servlets and jsp will
reside under web container in order to server client request. hence we required web
container in order to invoke Servlets or JSP (Java Server Pages)
EJB Container:
An Enterprise JavaBeans (EJB) container provides a run-time environment for
enterprise beans within the application server. The container handles all aspects of
an enterprise bean's operation within the application server and acts as an
intermediary between the user-written business logic within the bean and the rest of
the application server environment.
One or more EJB modules, each containing one or more enterprise beans, can be
installed in a single container.
The EJB container provides many services to the enterprise bean, including the
following:
Beginning, committing, and rolling back transactions as necessary.
Maintaining pools of enterprise bean instances ready for incoming requests
and moving these instances between the inactive pools and an active state,
ensuring that threading conditions within the bean are satisfied.
Most importantly, automatically synchronizing data in an entity bean's
instance variables with corresponding data items stored in persistent storage.
45)
What is cluster, how request routes between cluster members?
a)
The algorithm which we select for load balance will route the requests. There
are two algorithms
1) Round robin
2) Random
46)
Can you give me two major issues you faced and solved?
a)
The application was having error with SSL , shows bad certificate on the
application right cornor..So customer requested for root cause for
GSK_ERROR_BAD_CERT .
I investigated...... like certificsate mismacth between Plugin and the
WebSphere..
1. I found in the WAS console that, the default personal certs in the node
level of WAS in not reflected in the web servers. Which was added in the
DMGR?
Steps i followed to resolve this are :
1. I noted down the personal certificates serial no from the nodes by
navigating to
Ensures no service interruption of the application. Stops, updates and starts the
application one cluster member at a time, while the other cluster members continue
to run the application
50)
What is JDK version supporting in WAS 6.1?
a) J2RE 1.5.0
51)
How to set plug-in logs ?
a)
In Administrative console
Servers --> Webservers -->Webserver -->log files (configuration tab)(
here we can change the path of the log files (access.log,error.log)
52)
What is the difference between heap dump and thread dump?
a)
Heap dumps anytime you wish to see what is being held in memory Out-ofmemory errors
Heap dumps - picture of in memory objects - used for memory analysis
Java cores - also known as thread dumps or java dumps, used for viewing the thread
activity inside the JVM at a given time. IBM java cores should a lot of additional
information besides just the threads and stacks -- used to determine hangs,
deadlocks, and reasons for performance degradation
System cores
Heap dumps are taken by issuing a "kill -3" against the JVM pid. There is a cost
associated with producing heap dumps. The writing of the heap dump can be cpu
and i/o intensive depending on the size of the configured heap, you can take heap
dumps anytime you wish to see what is being held in memory. Out-of-memory errors
or a good time to view heap dumps. In fact,in most cases heap dumps should be
created when an OOM is triggered. Unless you're an administrator or root you'll need
to own the process you want to kill in order for the command to work.
Depends on the OS.
Java cores also known as thread dumps or java dumps, used for viewing the thread
activity inside the JVM at a given time. Thread dump should also contain a lot of
additional information besides just the threads and stacks used to determine hangs,
deadlocks, and reasons for performance degredation.
The kill -3 command captures JVM signals and dumps the requested diagnostic
material.There are options available to dump the heap in .txt format this files can be
huge and unless you're a genius with lots of time on your hands - don't try to read
the text dump with vi or something...
Use MDD4J or HeapAnalyzer.
For taking heap dumps you need set these environment entries for that JVM using
admin consle(this is one way of doing taking heap dumps, u can also go with jacl or
jython scripts)
IBM_HEAPDUMP TRUE
IBM_HEAPDUMP_OUTOFMEMORY true(if a OOM occurs, a dump is saved to /tmp
IBM_HEAPDUMPDIR appropriate directory.
Now, if you run kill -3 pid, then a heap dump is taken in the specified directory and
also a core dump will be taken. If you didn't specify any environment entries then
only a core dump is taken
53)
How you will check the details of a process if you know only port
number of that process?
First we need to find the socketno of that port by using
Netstat Aan|grep <port_no>
Then we need to find the sid by using the socketno
Rmsock <socketno> protocol
Ex:
#netstat Aan|grep 944
#f100020000fc4398 you get some more information.
#rmsock f100020000fc4398 tcpcb
The socket oxfc4008 is being by process 626888 (Java)
Ps ef|grep 626888
You get the detailed information about the said process.
54)
What are the regular issues you get in production support and how
you resolve them?
a)
Usually we get tickets from the operational team. Some of the call which we
faced are
1)
2)
3)
4)
5)
6)
Out of Memory:
If we get this error we need to check for the standards configured in
the application server. I mean heap settings in the server and if not we
need to resent according to the standards. If you are getting this error
frequently then we need to ask application team to check for the
memory leakage. We can get this statics from the Natice_stdout and
Native_stderr files.
No of connections reached
Check for the recommended connection pool size in the JDBC driver.
Check the unused connections.
Temporarily increase the connection pool size.
After analysing the logs and situation if required then recycle the
application server to resolve the issue.
File System issue:
Check the file system by using DU
Forward to the System admin team and coordinate for the resolution.
Thread Dump:
Create the thread dump by issuing kill-3 command and forward to the
application team for analysis.
100% CPU utilisation:
Check for the CPU utilisation bye using TOPAS command.
If required then kill some of the non important process which are
taking more cpu %
HTTP errors like (HTTP 400,401,403,404,500,502 etc.)
55)
Ans) it consumes large amount of memory in networks with many users, because
each server has a copy of all sessions. And another disadvantage is each change to
a session must be replicated to all application servers.
56)
Difference between horizontal clustering and vertical clustering?
Ans) the main difference between horizontal cluster and vertical cluster are:
1)
We can configure the cluster members on the same node in the vertical
clustering, whereas in horizontal clustering cluster members will be there on
different nodes. In other words A WebSphere cluster consists of having multiple
application servers (cluster member or clones) across a machine (Vertical Cluster)
or across several machines (Horizontal Cluster)
57)
Ans)
58)
Ans) 1) Collector tool is the tool which collects the information about the
websphere application server installation and configuration.
2)
This is available in two versions
a)
Default standalone collector( implemented as a shell script in profle root)
collects almost all the logs and configuration files found on the system, without
distinction
b)
3)
In either case, the result is JAR file that contains a lot of information
by IBM support to diagnose the problem
a)
b)
60)
needed
Ans) Log Analyzer provides interactive interface to WebSphere activity log and
contains on-line diagnoses and resolutions to known problems
Log analyser, the tool that was previously provided for viewing and analyzing the
activity or service log file, is removed from 6.1 release of the IBM WebSphere
application server.
Instead, use IBM log and trace analyser for Eclipse in the application server toolkit,
installable from the launchpad console.
For more information, see 'application server toolkit> detecting and analyzing
runtime problems > log and trace analyzer' in the information center.
Overview
The Log Analyzer, is a separately downloaded feature of WebSphere 3.5.2 and later
(it is now bundled with WebSphere 4.0x. 4.0+ and 5.0 users do not need to
download the the tool). It is designed to assist customers in diagnosing and
resolving common runtime problems.
Starting the Log Analyzer in Windows
Windows users may launch it manually with the command <WebSphere
Root>\bin\waslogbr
Starting the Log Analyzer in Unix
1. Change directory to <serverRoot>/bin; and
2. Invoke shell script waslogbr
./waslogbr
The Log Analyzer is a GUI application, so Unix users will need to launch it from a
machine with a CDE-type environment, or export the display to a GUI client
platform.
Websphere application server provides a number of MBeans, each of which can have
different function and operations available. For ex
a)
b)
An application server MBean migh expose operations such as start and stop
An application MBean might expose operations such as install and uninstall.
What is SSO ?
Ans) Single sign-on (SSO) is a property of access control of multiple, related, but
independent software systems. With this property a user logs in once and gains
access to all systems without being prompted to log in again at each of them.
Single sign-off is the reverse property whereby a single action of signing out
terminates access to multiple software systems.
As different applications and resources support different authentication mechanisms,
single sign-on has to internally translate to and store different credentials compared
to what is used for initial authentication.
63)
Ans)
Tivoli Performance Viewer. The Tivoli Performance Viewer (TPV) enables
administrators and programmers to monitor the overall health of WebSphere
Application Server without leaving the administrative console.
From TPV, you can view current activity or log Performance Monitoring Infrastructure
(PMI) performance data for the following:
In addition to providing a built in viewer for PMI, TPV also allows you to view data for
other products or customer applications that implement custom PMI
66)
Ans) Suns JNDI API is a standard extension to the java platform and it allows the
java application to access naming and directory services. With the help of JNDI java
applications can seamlessly access the heterogeneous enterprise naming and
directory services like DNS, LDAP, and Local file system, or objects in an application
server.
67)
What is trace file & where you get more details in trace or log files?
Ans) Trace file contains the step by step activity details of the WAS process. Trace file
only contains more details than the logfile
68)
What is virtual host and give two different virtual hosts?
Ans) The term Virtual Host refers to the practice of maintaining more than one
server on one machine, as differentiated by their apparent hostname. For example,
it is often desirable for companies sharing a web server to have their own domains,
with web servers accessible as www.company1.com and www.company2.com,
without requiring the user to know any extra path information.
69)
What are difference scripting options in wasadmin engine?
Ans)
a)
b)
Adminconfig
c)
AdminApp
d)
AdminTask
70)
If your logs are not rotating that means your JVM hanged.
What is FFDC? Where you will use?
Ans) FFDC is nothing but first failure data capture. This is generated at the first
time failure of your system. It will be deleted after some time automatically. It is
usefull for diagnosis purpose.
74)
How you get better performance by giving the xnoclassgc in generic
JVM arguments in the JVM ?
Ans) By default the JVM unloads a class from memory when there are no live
instances of that class left, but this can degrade performance. Tuning off class
garbage collection eliminates the overhead of loading and un-loading the same
class multiple times.
If a class is no longer needed, the space that it occupies on the heap is normally
used for the creation of new objects. However if you have an application that
handles requests by creating new instance of a class and if requests for that
application come in at random times, it is possible that when previous requester is
finished, the normal class garbage collection will clear up this class by freeing the
heap space it occupied, only to have re-instantiate the class when the next request
comes along. In this situation you might want to use this option to disable the
garbage collection of classes
Avoid Trouble:
This option should be used with caution, if your application creates dynamically or
uses reflection, because for this type of application, the use of this option can lead
to native memory exhaustion, and cause the JVM to throw an out of memory
exception. When this option is used, if have to redeploy an application you should
always restart the application server to clear the classes and static data from the
previous version the application.
75)
Ans) The Web server plug-in in the Web server is aware of the configuration of all
Web containers and can route around a failed Web container in a cluster.
Dynamic caching
The dynamic cache service improves performance by caching the output of servlets,
commands and JSP files. The dynamic cache works within an application server,
intercepting calls to cacheable objects, for example through a servlet's service()
method or a command's execute() method, and either stores
the object's output to or serves the object's content from the dynamic cache.
Because J2EE applications have high read-write ratios and can tolerate small degrees
of latency in the currency of their data, the dynamic cache can create an opportunity
for significant gains in server response time, throughput, and
scalability. The following caching features are available in WebSphere Application
Server.
Cache replication:
Cache replication among cluster members takes place using the WebSphere internal
replication service. Data is generated one time and copied or replicated to other
servers in the cluster, thus saving execution time and resources.
Cache disk offload:
By default, when the number of cache entries reaches the configured limit for a given
WebSphere server, eviction of cache entries takes place, allowing new entries to
enter the cache service. The dynamic cache includes an alternative feature named
disk offload, which copies the evicted cache entries to disk for potential future
access.
Edge Side Include caching:
The Web server plug-in contains a built-in ESI processor. The ESI processor has the
ability to cache whole pages, as well as fragments, providing a higher cache hit ratio.
The cache implemented by the ESI processor is an in-memory cache, not a disk
cache; therefore, the cache entries are not saved when the
Web server is restarted.
External caching:
The dynamic cache has the ability to control caches outside of the application server,
such as IBM Edge Server, a non-z/OS IBM HTTP Server's FRCA cache, and a nonz/OS WebSphere HTTP Server plug-in ESI Fragment Processor. When external cache
groups are defined, the dynamic cache matches externally cacheable cache entries
with those groups, and pushes cache entries and invalidations out to them. This
allows WebSphere to manage dynamic content beyond the application server. The
content can then be served from the external cache, instead of the application
server, improving savings in performance.
77)
?
Administrator point of view how many containers are there in was 6.1
78)
What is deployment descriptor and how many dedployment
descriptors are available ?
Ans) A deployment descriptor (DD) refers to a configuration file for an artifact
that is deployed to some container/engine.
In the Java Platform, Enterprise Edition, a deployment descriptor describes how a
web application or enterprise application should be deployed. It directs a deployment
tool to deploy a module or application with specific container options, security
settings and describes specific configuration requirements. XML is used for the
syntax of these deployment descriptor files. For web applications, the deployment
descriptor must be called web.xml and must reside in a WEB-INF subdirectory at the
web application root. For Java EE applications, the deployment descriptor must be
named application.xml and must be placed directly in the META-INF directory at the
top level of the application .ear file.
Deployment descriptors describe the contents of deployment units and configure
components and applications to their environment. They also externalize the
relationships between components, so those relationships can be managed without
writing or changing program code. Deployment tools usually automatically generate
deployment descriptors, so you do not have to edit and manage them directly.
There are five types of deployment descriptors, each of which corresponds to a type
of deployment unit:
Ans) 1)
a) Jython depends on the Python commands whereas Jacl(Java command
language) depends on the Tcl commands.
b) Jython syntax seems more natural to programmers used to Java or C, but Jacl
syntax can be more familiar to administrators who are familiar with Tcl
c) Each language has its own style and syntax, but they end up being able to do
the same things
WSADMIN scripting tool can be used in an interactive mode, the main ability for
wsadmin is to provide the ability to run scripts.
80)
81)
Ans)
Only difference in this application installation is optional context root for JAR
and EAR and for WAR it is mandatory. If EAR file is having multiple modules
like JAR,WAR then we can target these files to different application servers.
What is context root?
82)
Ans)
83)
Ans)
84)
Ans)
85)
The context root identifies the web application. By context root only your
configuration file (Plugin-cnf.xml) route the request to the particular
application.
Why you are not giving context root for EAR?
Context root is optional for EAR file. If we will give context root for EAR, we
can access EAR file using that context root, If it uses SSO, we can access thru
SSO login page, If EAR contains .JARs which is ment to access through EJB
applications, then developers might use any of the protocols like IIOP/RMI in
their code/login.
What is the memory requirement for 6.x?
512MB,1 GB is recommended
What is the ticket tracking tool you used?
89)
What is the s/w and h/w requirements to install the WAS 6.x?
Hard ware requirements for the WAS 6.1 installation.
Memory : Minimum 512 MB, Recommended 1GB ( project recommended it
will go up to 4GB to 5GB )
Had disk (File system) : Temp : 10GB,Was install root 10GB,Logs :
10GB
Soft ware requirements for the WAS 6.1 installation.
.
90)
Which version of unix you are using and what is java version which
supports for was 6.x ?
The solution: Change directories to the cdrom/ directory and try the installation
again.
92)
How you will schedule jobs using cron jobs how you will set?
93)
30 6 * * 1,3,5 /usr/bin/calendar
Explain about ssl configuration steps using admin console?
Configuration of SSL in WebSphere :
SSL configuration can be achived in three different ways
1) From Admin console:
Once we get the certificate from CA (Certificate Authority) then we will
import into trust store. To enable security between IHS and Application server
we need to export defaut personal certificates of all nodes and import the
same to the trust store of the IHS.
2) Command line :
By using gsk7cmd command we can achive the SSL configuration.
Gsk7cmd provides the otions like import ,export,list,create options for
certificates
3) ikeyman:
By using ikeyman we can open the KDB(key data base) and add the
certificates to the key database.
Procedure
1. Click Security > SSL certificate and key management > Manage
endpoint security configurations.
2. Select an SSL configuration link on either the Inbound or Outbound tree,
depending on the process you are configuring.
If the scope is already associated with a configuration and alias, the
SSL configuration alias and certificate alias are noted in parentheses.
o If the parenthetical information is not included, then the scope is not
associated. Instead, the scope inherits the configuration properties of
the first scope above it that is associated with an SSL configuration
and certificate alias.
The cell scope must be associated with an SSL configuration because it is at
the top of the topology and represents the default SSL configuration for the
inbound or outbound connection.
o
3. Click SSL configurations under Related Items. You can view and select any
of the SSL configurations that are configured at this scope. You can also view
and select these configuration at every scope that is lower on the topology.
4. Click New to display the SSL configuration panel. You cannot select links
under Additional Properties until you type a configuration name and click
Apply.
5. Type an SSL configuration name. This field is required. The configuration
name is the SSL configuration alias. Make the alias name unique within the
list of SSL configuration aliases that are already created at the selected scope.
The new SSL configuration uses this alias for other configuration tasks.
6. Select a truststore name from the drop-down list. A truststore name refers to
a specific truststore that holds signer certificates that validate the trust of
certificates sent by remote connections during an SSL handshake. If there is
no truststore in the list, see Creating a keystore configuration to create a new
truststore, which is a keystore whose role is to establish trust during the
connection.
7. Select a keystore name from the drop-down list. A keystore contains the
personal certificates that represent a signer identity and the private key that
WebSphere Application Server uses to encrypt and sign data.
o
8. Choose a default server certificate alias for inbound connections. Select the
default only when you have not specified an SSL configuration alias elsewhere
and have not selected a certificate alias. A centrally managed SSL
configuration tree can override the default alias. For more information, see
Central management of Secure Sockets Layer configurations.
9. Choose a default client certificate alias for outbound connections. Select the
default only when the server SSL configuration specifies an SSL client
authentication.
10. Review the identified management scope for the SSL configuration. Make the
management scope in this field identical to the link you selected in Step 2. If
you want to change the scope, you must click a different link in the topology
tree and continue at Step 3.
11. Click Apply if you intend to configure Additional Properties. If not, go to Step
24.
12. Click Quality of protection (QoP) settings under Additional Properties. QoP
settings define the strength of the SSL encryption, the integrity of the signer,
and the authenticity of the certificate.
o
o
17. Click Update selected ciphers to view a list of the available ciphers for each
cipher strength.
18. Click OK to return to the new SSL configuration panel.
19. Click Trust and key managers under Additional Properties.
20. Select a default trust manager for the primary SSL handshake trust decision.
o
o
21. Define a custom trust manager, if appropriate. You can define a custom trust
manager that runs with the default trust manager you select. The custom
trust manager must implement the JSSE javax.net.ssl.X509TrustManager
interface and, optionally, the com.ibm.wsspi.ssl.TrustManagerExtendedInfo
interface to obtain product-specific information.
a. Click Security > SSL certificate and key management >
Manage endpoint security configurations >
SSL_configuration > Trust and key managers > Trust
managers > New.
b. Type a unique trust manager name.
c. Select the Custom option.
d. Type a class name.
e. Click OK. When you return to the Trust and key managers
panel, the new custom trust manager displays in the
Additional ordered trust managers field. Use the left and
right list boxes to add and remove custom trust managers.
Important: If you choose to implement your own key manager, you can
affect the alias selection behavior because the key manager is responsible for
selecting the certificate alias from the keystore. The custom key manager
might not interpret the SSL configuration as the WebSphere Application
Server key manager IbmX509 does. To define a custom key manager, click
Security > Secure communications > SSL configurations >
SSL_configuration > Trust and key managers > Key managers > New.
3
Click OK to save the trust and key manager settings and return to the
new SSL configuration panel.
Results
Important: You can override the default trust manager when you configure at least
one custom trust manager and set the
com.ibm.ssl.skipDefaultTrustManagerWhenCustomDefined property to true. Click
Custom Property on the SSL configuration panel. However, if you change the
default, you leave all the trust decisions to the custom trust manager, which is not
recommended for production environments. In test environments, use a dummy
trust manager to avoid certificate validation. Remember that these environment are
not secure.
What to do next
In this release of WebSphere Application Server, you can associate SSL
configurations with protocols using one of the following methods:
Set the SSL configuration on the thread programmatically
Associate the SSL configuration with an outbound protocol, and target host
and port. For more information, see Associating a Secure Sockets Layer
configuration dynamically with an outbound protocol and remote secure
endpoint
Associate the SSL configuration directly using the alias. For more information,
see Selecting an SSL configuration alias directly from an endpoint
configuration
Manage the SSL configurations centrally by associating them with SSL
configuration groups or zones that are scoped for endpoints. For more
information, see Associating Secure Sockets Layer configurations centrally
with inbound and outbound scopes.
94)
Ans)
a) Profile concept
b) Single installation WAS product supports for multible profile creation
c) Cell profile
95)
Ans) the Web server plug-in in the Web server is aware of the configuration of all
Web containers and can route around a failed Web container in a cluster.
Sessions can be persisted to a database or in-memory using data replication
services.
96)
Explain about web sphere?
97)
98)
IBM web sphere commerce has a single platform which offers complete
ecommerce solutions to developers. It can be very productive if you are
planning to do business with consumers, business and indirectly through
channel partners. This can be used to perform business with consumers,
business and channel partners altogether.
Detail about the architecture of web sphere?
99)
100)
are present in the web sphere they are Network dispatcher, Caching proxy,
Content distribution and application service at the edge.
101) Explain about extended deployment?
Web sphere application server extended deployment increases the
functionality of the server in two main areas they are manageability and
performance. Dynamic virtualization between servers is possible with the help
of XD. A stand alone distributed cache was added to it under the performance
header, it is known as Object Grid.
102) Explain about the security features present in WAS?
Security model for web sphere is primarily based on JAVA EE security model.
It also depends upon the operating system. User authentication and
authorization mechanisms are also provided in WAS. Light weight third party
authentication mechanism is the main security feature present in WAS.
103) Explain about asymmetric clustering?
Asymmetric clustering applications are primarily used in electronic trading
systems employed in banks. Some of the features are, partitions can be
declared during run time and are usually run on a single cluster at a time.
Work specific to a particular can be routed to that cluster.
104) Explain the various Administrator benefits using Web sphere?
Web sphere almost reduces the work of server administrator as he can
manage load on servers efficiently without any hassles. It also gives him
flexibility to divide the load and applications among different server farms. He
can also predict about the incoming load on servers. Email alerts, restart
options, memory leak detection, etc.
105) Explain about caching proxy of IBM Web sphere Edge sphere?
A caching proxy can be configured in forward direction or as a proxy. Content
requested by the user is cached by edge before sending or adhering to the
query. Page fragments arising from JSP or servlets are cached by Edge and
the caching process is slow. Performance and scalability of J2EE applications
can be increased by edge.
106) Explain about the network deployment feature present in WAS?
Managing singletons will be a thing of the past and it also provides hot
recovery of singletons which makes you forget about your GC collected
singletons. Transaction logs can stored on a shared file system. For clustering
run time operations deployment manager`s role was eliminated. J2EE failover
support and cell configuration support is also present.
107) Explain about IBM web sphere integration developer?
Web sphere integration developer provides an IDE to build applications based
on service oriented architecture. Web sphere process server and web sphere
ESB were built with WID. WID was built with RAD Eclipse based technology.
108) Explain about compute Grid?
Compute grid is also known as Web sphere batch. Web sphere extended
JACL and JYTHON are the two scripting language Which WebSphere
supports. Jacl is an implementation of a Tcl interpreter written entirely in
Java.
20) how to connect to the db2 database from websphere studio?
115)
I need the difference btw the two versions of 5.x and 6.x. And in
which field they differ and why we go for 6.x rather than 5.x. and what
are the similarities for both 5.x and 6.x ?
Supports J2EE 1.2, 1.3 and 1.4 specifications
Mixed v5 and v6 nodes must have v6 DMgr (cant add new v5 node)
v6 ND introduces profiles
Each profile has its own user data including WebSphere configuration
116) How you will replace the multible occurance of single word in a text
file with another word ?
Ans) We can replace the word in vi editor by using the following command
:%s/text1 /text2 /g (return)
Text1 will be replaced by text2
117) In a clustered environment I have node1 in cell1 now I need to
configure same node in cell2 . How can I achieve this task ?
Ans) we can configure one node in one cell only. So we can cant configure the same
node in another cell
118) How you will install the WAS?
Ans) WAS we can install in three different methods.
a) Silent mode using responce file
b) Interactive mode
c) Graphical mode
119) How to install fix packs?
Ans) we can apply the fix packs using the update installer. Before we go to apply fix
packs we need to take backup of the existing configuration of our WAS and all
profiles.
To take backup we can use the command
Syntax
The command syntax is as follows:
backupConfig <backup_file> [options]
where backup_file specifies the file to which the backup is written. If you do not
specify one, a unique name is generated.
The QEJBSVR user profile must have *WX authority to the directory path specified in
backup_file. If no path is specified, the QEJBSVR user profile must have *WX
authority to the current working directory.
Parameters
The following options are available for the backupConfig command:
-nostop
Tells the backupConfig command not to stop the servers before backing up
the configuration.
-quiet
Suppresses the progress information that the backupConfig command prints
in normal mode.
-logfile <fileName>
Specifies the location of the log file to which information gets written.
-profileName <profileName>
Defines the profile of the Application Server process in a multi-profile
installation. The -profileName option is not required for running in a single
profile environment. The default for this option is the default profile.
-replacelog
Replaces the log file instead of appending to the current log.
-trace
Generates trace information into the log file for debugging purposes.
-username <name>
Specifies the user name for authentication if security is enabled in the server.
Acts the same as the -user option.
-user <name>
Specifies the user name for authentication if security is enabled in the server.
Acts the same as the -username option.
-password <password>
Specifies the password for authentication if security is enabled in the server.
-help
Prints a usage statement.
-?
Prints a usage statement.
Usage scenario
The following example demonstrates correct syntax:
backupConfig
The following example creates a new file that includes the current date:
WebSphereConfig_2003-04-22.zip
The following example creates a file called myBackup.zip, and does not stop any
servers before beginning the backup process.
backupConfig myBackup.zip -nostop
to restore the backed configuration we can use the command
Syntax
The command syntax is as follows:
restoreConfig <backup_file> [options]
where backup_file specifies the file to be restored. If you do not specify one, the
command will not run.
Parameters
The following options are available for the restoreConfig command:
-help
Prints a usage statement.
-location <directory_name>
Specifies the directory where the backup file is restored.
The location defaults to the app_server_root/config directory.
The location defaults to the profile_root/config directory.
-logfile <fileName>
Specifies the location of the log file to which trace information is written. By
default, the log file is named restoreConfig.log and is created in your logs
directory.
-nostop
Tells the restoreConfig command not to stop the servers before restoring
the configuration.
-password <password>
Specifies the password for authentication if security is enabled in the server.
-profileName
Defines the profile of the Application Server process in a multiple profile
installation. The -profileName option is not required for running in a single
profile environment. The default for this option is the default profile.
-quiet
Be aware that if you restore the configuration to a directory that is different from the
directory that was backed up when you performed the backupConfig command, you
may need to manually update some of the paths in the configuration directory.
124) How you will start the server & how you will stop from command
line?
Ans) stopserver and startserver are the commands to stop and start from the
command line
125) How to check the physical memory (RAM) in the system?
Ans) bootinf r will give you the physical memory details of the unix box
126) What is the first signal you find when memory leakage is there in the
application?
Ans) If you have memory leakage in your application code then you get frequently
OUT OF MEMORY EXCEPTION error.
127) How to apply fix packs to WAS?
a) Using update installer we can apply the fix packs. We need to make sure that
update installer which is installed should be compatible with WAS. And also we
need to take backup of all profiles and configuration.
128) What are the performance monitor tools in WAS?
Ans) Websphere provides integrated tools to monitor and tune system and
application performance:
Source Systems of the performance data :
1) Performance Monitoring Infrastructure (PMI):
Core performance data collection technology for websphere application server.
Supports the Jave 2 Platform, Enterprise Edition (J2EE) Management Reference
Implimentation (JSR-077)
2) Request Metrics :
Technology to trace each individual transaction and record its responce time at
different stages as it flows through the application server. Supports externalisation of
data to standard log files and /or an Application Responce Management (ARM) agent.
Integrated Tools :
a) Tivoli Performance viewer (TPV)
Enables administrators to monitor the overall health of websphere
application server. It is accessed from within the administrative console
b) Request Metrics ( Tool)
Enables you to track individual transactions,recording the processing
time in each of the major websphere application server components.
Output viewed in standard logs or using an application responce
measurement( ARM) based tool
c) Performance advisor
Analze collected performance data and provide configuration
recommendations to improve the application server performance.
Output viewed in TPV or in administrative console runtime messages
d) Performace servlet
Provideds simple retrival of performance data in XML format. Acced
through a browser.
129) What information you get with the command psef|grep httpd ?
Ans) we get the all webserver instance informations with process id.
130) How you will check the web server status
Ans) by using the following command we can check the all instances of the
webserver
$ ps ef| grep httpd
131)
If you enable global security every time we need to provide userid
and password while stopping the servers. It is bit security issues it will
disclose to any one while typing the password. So I need to avoid the
typing os my user id and password to stop the servers in security
enables environment. How can we achive this task ?
Ans) We can achive this task by storing the credentials in the following mentioned
files
For SOAP connector soap.client.profs
For RMI connector sas.client.profs
132) I have a standalone application server, in that server1 crashed
because of some reasons. Now I need to configure server2 on the same
node how can I achieve this task?
Ans) To configure server2 there is no dependency on the server1 status. Because we
are depending on the node to configure the server2 on standalone server on
theserver1.
133) How can you control the web browser requests only to particular ip
address?
Ans) using Virtual hosts (need to cross verify the answer)
134) If you want to know detailed information for a particular port when
you know only port number then how you will check?
Ans) we need to follow the steps mentioned below to know the detailed information
about the process running on the particular port
$ netstat Aan|grep <Port_no>
Socket will be listed, using that socket we can get SID
$rmsock <socket_no> <protocol>
Ex:
$netstat Aan|grep 944
f10002000fc4398
$rmsock f10020000fc4398 tcpcb
the socket oxfc4008 is being by process 626888(java)
$ps ef| grep 626888
135) How you will find how much heap is used by each JVM?
Ans) Using PMI we can see the percentage of the memory used by JVM
136) Explain how request served by WAS explain complete step by step?
Ans) First request comes to the webserver
137) Explain the architecture in the cell, node & profile point of view?
These replication settings can be configured in the following location in the admin
console
Amin console -- > servers -- > application servers -- > [all servers] ->webcontainer settings -- > session management -- > distributed environment
settings
Options are :
None,Database and memeory to memory replication
Memory-to-memory replication
WebSphere Application Server supports session replication to another WebSphere
Application Server instance. This support is referred to as memory-to-memory
session replication. In this mode, sessions can replicate to one or more WebSphere
Application Server instances to address HTTP Session single point of failure (SPOF).
The WebSphere Application Server instance in which the session is currently
processed is referred to as the owner of the session. In a clustered environment,
session affinity in the WebSphere Application Server plug-in routes the requests for a
given session to the same server. If the current owner server instance of the session
fails, then the WebSphere Application Server plug-in routes the requests to another
appropriate server in the cluster. In a peer-to-peer cluster, the hot failover feature
causes the plug-in to failover to a server that already contains the backup copy of
the session, avoiding the overhead of session retrieval from another server
containing the backup. In a client/server cluster, the server retrieves the session
from a server that has the backup copy of the session. The server now becomes the
owner of the session and affinity is now maintained to this server.
There are three possible modes. You can set up a WebSphere Application Server
instance to run in:
Server mode: Only store backup copies of other WebSphere Application
Server sessions and not to send out copies of any session created in that
particular server
Client mode: Only broadcast or send out copies of the sessions it owns and
not to receive backup copies of sessions from other servers
Both mode: Simultaneously broadcast or send out copies of the sessions it
owns and act as a backup table for sessions owned by other WebSphere
Application Server instances
You can select the replication mode of server, client, or both when configuring the
session management facility for memory-to-memory replication. The default is both.
This storage option is controlled by the mode parameter.
The memory-to-memory replication function is accomplished by the creation of a
data replication service instance in an application server that talks to other data
replication service instances in remote application servers. You must configure this
data replication service instance as a part of a replication domain. Data replication
service instances on disparate application servers that replicate to one another must
be configured as a part of the same domain. You must configure all session
managers connected to a replication domain to have the same topology. If one
In this
basic peer-to-peer topology, each server Java Virtual Machine (JVM) can:
Host the Web application leveraging the HTTP session
Send out changes to the HTTP session that it owns
Receive backup copies of the HTTP session from all of the other servers in the
cluster
This configuration represents the most consolidated topology, where the various
system parts are collocated and requires the fewest server processes. When using
this configuration, the most stable implementation is achieved when each node has
equal capabilities (CPU, memory, and so on), and each handles the same amount of
work.
Session hot failover
A new feature called session hot failover has been added to this release. This feature
is only applicable to the peer-to-peer mode. In a clustered environment, session
affinity in the WebSphere Application Server plug-in routes the requests for a given
session to the same server. If the current owner server instance of the session fails,
then the WebSphere Application Server plug-in routes the requests to another
appropriate server in the cluster. For a cluster configured to run in the peer-to-peer
mode this feature causes the plug-in to failover to a server that already contains the
backup copy of the session, therefore avoiding the overhead of session retrieval from
another server containing the backup.
You must upgrade all WebSphere Application Server plug-in instances that front the
Application Server cluster to version 6.0 to ensure session affinity when using the
peer-to-peer mode.
Memory-to-memory topology: Client/server function
The following figure depicts the client/server mode. There is a tier of applications
servers that host Web applications using HTTP sessions, and these sessions are
replicated out as they are created and updated. There is a second tier of servers
without a Web application installed, where the session manager receives updates
from the replication clients.
In this case we are isolating the handling of backup data from local data;
aside from isolating the moving parts in case of a catastrophic failure in one
of them, you again free up memory and processing in the servers processing
the Web application
Isolation for stopping and starting
You can recycle a backup server without affecting the servers running the
application (when there are two or more backups, failure recovery is
possible), and conversely recycle an application JVM without potentially losing
that backup data for someone.
Consolidation
There is most likely no need to have a one-to-one correspondence between
servers handling backups and those processing the applications; hence, you
are again reducing the number of places to which you transfer the data.
Disparate hardware:
While you run your Web applications on cheaper hardware, you may have one
or two more powerful computers in the back end of your enterprise that have
the capacity to run a couple of session managers in replication server mode;
allowing you to free up your cheaper Web application hardware to process the
Web application.
Timing consideration: Start the backup application servers first to avoid
unexpected timing windows. The clients attempt to replicate information
and HTTP sessions to the backup servers as soon as they come up. As a
result, HTTP sessions that are created prior to the time at which the servers
come up might not replicate successfully.
141) If admin console is not accessible then what we will do in base
installation?
Ans) in base also we have the WSADMIN scripting tool. We can connect to wsadmin
by mentioning NONE connection type .After connecting to wsadmin we fire a
command securityoff. It will disable the security after that we can login to the admin
console and reset the passwords.
142)
Ans) from the database team we get the user id to configure the datasource.
143) How you configure LDAP with WAS?
Ans) To configure the console server, do the following steps:
1. Start the WebSphere(R) Application Server service on the console server.
2. Refer to Configuring the J2EE Application in the IBM Tivoli(R) Business Systems
Manager Administrator's Guide for information on how to configure the
console server.
3. To enable WebSphere Application Server to work with Tivoli Business Systems
Manager, you must map WebSphere Application Server roles to Tivoli Business
Systems Manager groups. Refer to the IBM Tivoli Business Systems Manager
Administrator's Guide for information.
4. If you are using the LocalOS user registry, you do not need to do anything
else. If you are using LDAP, see Configuring WebSphere Application Server to
use LDAP. If you are upgrading and plan to use LDAP, do not following the
instructions in Configuring WebSphere Application Server to use LDAP yet.
You can switch to LDAP later in the process.
Configuring WebSphere Application Server to use LDAP
To configure WebSphere Application Server to use LDAP, you need some information
from your security administrator. Following is an example of the type of information
and sample answers that you need to do the steps in this section:
This is just an example. Your security administrator knows what information you
need.
The following steps assume that you configured your LDAP server on the
ldapserver.abc.com host and that your users and groups for Tivoli Business Systems
Manager and the WebSphere Application Server that is hosting Tivoli Business
Systems Manager are defined under the name ou=tbsm,o=abc in the directory. The
Secure Sockets Layer (SSL) between the LDAP server and WebSphere Application
Server is not configured.
This is a sample configuration based on this example and uses the default values
where appropriate.
1. In the WebSphere Administrative Console, expand Security -> User
Registries in the left-hand navigation pane and click LDAP. The LDAP User
Registry page opens.
2. In the Server User ID and Server User Password fields, type the user ID
and password from your LDAP directory that the WebSphere Application
Server runs under. Type the ID either as userid or as a distinguished name
similar to uid=userid,ou=tbsm,o=abc.
3. In the Type field, select the type of LDAP server you want to use.
4. In the Host field, type the hostname of your directory server. For this
example use ldapserver.abc.com.
5. In the Port field, select the default value of 389.
6. In the Base Distinguished Name field, type the name of the container
object in the LDAP that contains your Tivoli Business Systems Manager users.
For this example, type ou=tbsm,o=abc.
7. In the Bind Distinguished Name and Bind Password fields, type the
distinguished name and password for a user ID that is authorized to run
queries on your LDAP server. If your server allows anonymous queries, you
can leave these fields clear.
For example, the IBM(R) Directory Server default setting allows anonymous
queries. You can leave this field blank. The Active Directory default setting
requires authentication to run queries, so you need to supply the appropriate
values.
8. In the Search Timeout field, accept the default value of 120.
9. In the Reuse Connection field, accept the default setting. The check box
should be selected.
10. In the Ignore Case field, follow the recommendations for your LDAP server.
If IBM Directory Server is selected as the LDAP directory server, select this
check box. Otherwise, this field is optional and can left unchecked when a
case sensitive authorization check is required. Note however that this value
does not affect how Tivoli Business Systems Manager treats distinguished
names stored in the Tivoli Business Systems Manager database. Internally,
Tivoli Business Systems Manager treats distinguished names as case
insensitive. For example, if the user registry is configured to be case
sensitive, you can create users with distinguished names cn=John Doe,
ou=Raleigh, o=IBM, c=US and cn=john doe, ou=raleigh, o=ibm, c=us.
However, when searching for resources assigned to John Doe (for example
ownership notes), all notes assigned to John Doe and john doe will be
returned. To eliminate any problems, configure the user registry to be case
insensitive or ensure that all users are created with unique distinguished
names that are different in more than just case.
11. Accept the default SSL settings to run without the SSL.
12. Click Apply to accept the changes.
13. The WebSphere Administrative Console might switch to the Global Security
page. If so, navigate back to the LDAP User Registry window (see Step 1 for
directions). Click Advanced LDAP Settings near the bottom of the window.
14. Click Configuration and click the General Properties tab.
15. The User ID Map field specifies a filter that is used to determine the User's
Full Name in Tivoli Business Systems Manager. In the User ID Map field,
specify the attribute from the LDAP that you want to display for the full name
of the user. For example, to use the cn attribute, specify *:cn. If you are
using Active Directory, specify *:displayName.
16. Verify the following settings:
o Active Directory:
User Filter: (&(sAMAccountName=%v)(objectclass=user)) - The
User Filter field determines what part of the LDAP entry must
match the logon ID of the user.
Group Filter: (&(cn=%v)(objectclass=group))
17. Click OK. You might have to restart the console and WebSphere Application
Server to see any changes you make.
If the page does not display automatically, navigate to the Security ->
Global Security page.
18. From the Global Security page, use all the default values except the following
values:
o Enabled: checked
o Active User Registry: LDAP
19. Click OK.
WebSphere Application Server validates your setup. The messages at the top
of the screen indicate your results. Yellow warning messages are typical. If an
round, red error message is displayed, it means that WebSphere Application
Server could not validate the Server ID you gave with the LDAP. Verify that
this and the other LDAP parameters are correct for your LDAP server and
repeat the Global Security configuration steps until the validation is
successful.
20. Click Save at the top of the window.
Ans)
Ans) Developement team will develope the code and test in the Developement env.
Then we will create Test Env. And then put the server into Production.
161)
Silent mode how it will work and if you get any errors then how you
will rectify it?
Ans) Silent mode of installation will also have the log file, where we can check the
errors
162) Explaing about configuration of IBM Tivoli directory server?
Ans) Dont have Experience.
163) What is your last project architecture?
Ans)
164) How many servers are there & in which environment?
Ans)
165) How many types of Garbage collections?
http://www.petefreitag.com/articles/gctuning/