5.3 Upgrading the Driver

The driver upgrade process involves upgrading the installed driver packages, updating the driver files, and Change-Log.

This section provides general instructions for updating a driver. For information about updating the driver to a specific version, search for that driver patch in the NetIQ Patch Finder Download Page and follow the instructions from the Readme file accompanying the driver patch release.

NOTE:If you are using encrypted attributes, ensure that the driver cache file is empty before Change-Log module is upgraded. You can do this by preventing changes to eDirectory or by stopping the inbound synchronization to eDirectory through iMonitor until the upgrade is completed.

Complete the following steps to upgrade a driver:

5.3.1 Upgrading the Installed Packages

  1. Download the latest available packages.

    To configure Designer to automatically read the package updates when a new version of a package is available, click Windows > Preferences > NetIQ > Package Manager > Online Updates in Designer. For more information about managing packages, see the NetIQ Designer for Identity Manager Administration Guide.

  2. Upgrade the installed packages.

    1. Open the project containing the driver.

    2. Right-click the driver for which you want to upgrade an installed package, then click Driver > Properties.

    3. Click Packages.

      If there is a newer version of a package, there is check mark displayed in the Upgrades column.

    4. Click Select Operation for the package that indicates there is an upgrade available.

    5. From the drop-down list, click Upgrade.

    6. Select the version that you want to upgrade to, then click OK.

      NOTE:Designer lists all versions available for upgrade.

    7. Click Apply.

    8. (Conditional) Fill in the fields with appropriate information to upgrade the package, then click Next.

      Depending on which package you selected to upgrade, you must fill in the required information to upgrade the package.

    9. Read the summary of the packages that will be installed, then click Finish.

    10. Review the upgraded package, then click OK to close the Package Management page.

      For detailed information, see the Upgrading Installed Packages in the NetIQ Designer for Identity Manager Administration Guide.

5.3.2 Applying the Driver Patch

The driver patch updates the driver files. You can install the patch as a root or non-root user.

Prerequisites

Before installing the patch, complete the following steps:

  1. Take a back-up of the current driver configuration.

  2. Stop the driver instance.

  3. Stop the Identity Vault.

  4. In a browser, navigate to the NetIQ Patch Finder Download Page.

  5. Under Patches, click Search Patches.

  6. Specify Identity Manager nn Bidirectional eDirectory Driver nn in the search box.

  7. Download and unzip the contents of the patch file to a temporary location on your server.

    For example, IDM45_Bidirectional_4020.zip.

Applying the Patch as a Root User

In a root installation, the driver patch installs the driver files in the default locations on Linux. On Windows, you need to manually copy the files to the default locations.

  1. Update the driver files:

    • Linux: Open a command prompt and run the following command to upgrade the existing RPM:

      rpm -Uvh <Driver Patch File Temporary Location>/linux/novell-DXMLEdirDrv.rpm

      For example, rpm -Uvh <IDM45_Bidirectional_4020.zip>/linux/novell-DXMLEdirDrv.rpm

    • Windows: Navigate to the <Extracted Driver Patch File Temporary Location>\windows folder and copy the EdirDriverShim.jar file to <IdentityManager installation>\NDS\lib folder.

      For example, copy EdirDriverShim.jar from <Extracted IDM45_Bidirectional_4020.zip>\windows folder to <IdentityManager installation>\nds\lib folder.

  2. (Conditional) Update the Change-Log module.

    1. Start the Identity Vault.

    2. Extend the schema.

      • Linux: Open a command prompt and run the following command: 

        ndssch –h xxx.xxxx.xxx.xxx –t TREE_NAME admin.xxxxx /xxxx/dirxmlchangelogfp/schema/clschema.sch

        For example,

        ndssch –h 192.99.78.51 –t edir_tree1 admin.sa.system <password> dirxmlchangelogfp/schema/clschema.sch

      • Windows: Run the following command:

        ice -S SCH -f input.sch -D LDAP -s <server> -d <DN of Admin user> -w <password>

        For example,

        ice -S SCH -f schema.sch -D LDAP -s 192.99.78.51 -d cn=user,o=company -w <password>

    3. Stop the Identity Vault.

    4. Upgrade the Change-Log files.

      • Linux: Upgrade the existing RPM by running the following command: 

        rpm –Uvh --noscripts <Driver Patch File Temporary Location>/linux_64/novell-DXMLChlgx.rpm

        IMPORTANT: If --noscripts option is not specified in the command, the upgrade fails and lists the existing and new RPMs when you issue the version check command. In this case, uninstall or erase all the RPMs starting from new RPMs followed by the existing RPM and reinstall the new Change-Log RPM.

      • Windows: Navigate to the <Extracted Driver Patch File Temporary Location>\windows-x64 folder and perform the following actions:

        1. Copy the following files to <IdentityManager installation>\nds folder:

          • dirxmllib.dll

          • dxevent.dll

          • xclldap.dll

          • clschema.sch

          • clutil.bat

        2. Copy the following files to <IdentityManager installation>\nds\lib folder:

          • clutil.jar

          • ldap.jar

  3. Start the Identity Vault.

  4. Start the driver instance.

Applying the Patch as a Non-Root User

  1. Verify that <non-root eDirectory location>/rpm directory exists and contains the file, _db.000.

    The _db.000 file is created during a non-root installation of the Identity Manager engine. Absence of this file might indicate that Identity Manager is not properly installed. Reinstall Identity Manager to correctly place the file in the directory.

  2. To set the root directory to non-root eDirectory location, enter the following command in the command prompt:

    ROOTDIR=<non-root eDirectory location>

    This will set the environmental variables to the directory where eDirectory is installed as a non-root user.

  3. To install the driver files, enter the following command:

    rpm --dbpath $ROOTDIR/rpm -Uvh --relocate=/usr=$ROOTDIR/opt/novell/eDirectory --relocate=/etc=$ROOTDIR/etc --relocate=/opt/novell/eDirectory=$ROOTDIR/opt/novell/eDirectory --relocate=/opt/novell/dirxml=$ROOTDIR/opt/novell/dirxml --relocate=/var=$ROOTDIR/var --badreloc --nodeps --replacefiles <rpm-location>

    For example, to install the Bidirectional eDirectory driver RPM, use this command:

    rpm --dbpath $ROOTDIR/rpm -Uvh --relocate=/usr=$ROOTDIR/opt/novell/eDirectory --relocate=/etc=$ROOTDIR/etc --relocate=/opt/novell/eDirectory=$ROOTDIR/opt/novell/eDirectory --relocate=/opt/novell/dirxml=$ROOTDIR/opt/novell/dirxml --relocate=/var=$ROOTDIR/var --badreloc --nodeps --replacefiles /home/user/novell-DXMLEdirDrv.rpm