NetIQ Identity Manager 4.6 Service Pack 2 provides new features, improves usability, and resolves several previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable input. We hope you continue to help us ensure that our products meet all your needs. You can post feedback in the Identity Manager Community Forums on NetIQ Communities, our online community that also includes product information, blogs, and links to helpful resources.
The documentation for this product and the latest release notes are available on the NetIQ Web site on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Identity Manager Documentation Web site.
Identity Manager 4.6.2 provides the following key features, enhancements, and fixes in this release:
This release introduces the following features:
In addition to the existing operating systems, this service pack adds support to Windows Server 2016.
To install and configure the supported Identity Manager components on Windows Server 2016, you must upgrade your current version of Identity Manager to 4.6 SP2. However, this restriction does not apply to Remote Loader. You can install Remote Loader 4.6 on this platform.
To install Identity Manager 4.6 components on Windows Server 2016, see Section 4.0, Installing Identity Manager 4.6 on Windows Server 2016.
This service pack continues to support both Designer and Designer (LDAP). NetIQ strongly recommends you to use Designer (LDAP). Designer 4.6 will be deprecated in the future.
To upgrade to Designer (LDAP) 4.6.2, first install Designer (LDAP) 4.6 and apply this service pack on the installed package. For more information, see Upgrading Designer.
This service pack provides updates for the following components in Identity Manager:
Identity Manager engine
Identity applications
Designer for Identity Manager
Designer (LDAP) for Identity Manager
NetIQ Self Service Password Reset (SSPR)
NetIQ One SSO Provider (OSP)
This service pack updates the following components to support Java Development Kit 8 Update 152 (jdk8u152) or Java Runtime Environment 1.8 Update 152 (jre8u152).
Identity Manager engine
Identity applications, running on Apache Tomcat
Identity Reporting, running on Apache Tomcat
Designer
Designer (LDAP)
Analyzer (32-bit Java only)
This service pack updates the Java version for the Identity Manager engine.
NOTE:You can download Java 1.8 Update 152 directly from the Oracle Site.
The method of updating Java for the identity applications depends on whether you choose to update this component using the Identity Applications update utility packaged with this service pack or manually. The update utility automatically updates your current Java version. However, you need to update the Java version in the manual update process.
You need to manually update your current Java version for Identity Reporting, Designer, and Analyzer. For more information, see Section 3.4, Installing Java 1.8 Update 152.
This service pack requires Apache Tomcat 8.5.23. For updating your current version of Tomcat, ensure you are updating the identity applications by using the Identity Applications Update utility packaged in the IDM46-Apps-SP-2.zip file, the utility automatically updates Tomcat.
This service pack requires NetIQ One SSO Provider 6.1.6 at a minimum.
Support for the following operating systems will be deprecated from Identity Manager 4.7:
Red Hat Enterprise Linux 6
SUSE Linux Enterprise Server 11
Microsoft Windows 2008
Open Enterprise Server 11
NetIQ remains committed to support the current versions of Identity Manager on these platforms throughout the end of their support lifecycles.
NetIQ Identity Manager includes software fixes that resolve several previous issues in the Identity Manager engine and plug-ins.
You can now edit or start a stopped driver on a Japanese Windows 7 operating system.(Bug 1053888)
When using LDAP 636 and NTLS type (SSL CertificateDNS) connections on Japanese locales, Identity Manager displays correct password expiration notification. (Bug 1044295)
When you set a referential attribute for priority synchronization and if the referenced object is not available, the driver no longer reports an error. (Bug 953206)
A timestamp that was initially reported as a signed integer is correctly displayed as a signed integer after editing it.(Bug 1046121)
Identity Manager does not report any error when you view the driver status log.(Bug 1026451)
This service pack resolves an issue where an event loops back when a Reciprocal attribute is written to the Identity Vault.(Bug 1024370)
The Password Management plug-ins are correctly uninstalled from iManager without errors.(Bug 1021537)
While synchronizing passwords, Identity Manager plug-ins no longer duplicate GCVs in the Active Directory driver. (Bug 997118)
The patch installer recognizes the version of the Remote Loader and also suggests the installation paths that it finds in the file system.(Bug 1048204)
NetIQ Identity Manager includes software fixes that resolve several previous issues in the identity applications.
Carriage returns are no longer stripped from the flow data functions when the data items are evaluated by the identity applications.(Bug 1065342)
The Print Preview pop-up window in the workflow request form no longer displays empty fields.(Bug 1040560)
This service pack enhances identity applications to execute ECMAScripts similar to version 4.5.(Bug 1050604)
The global query does not return the desired response if a workflow has text separated with colons.(Bug 1062273)
When you select SQL File for Database option during identity applications installation, the file contains column definition.(Bug 1058676)
The identity applications are enhanced to preserve a page preference in the dashboard. (Bug 1038727)
Identity Manager Dashboard displays correct status of a failed resource removal operation.(Bug 1063784)
The search option within the entitlement values no longer lists different values for a new request in Identity Manager Dashboard.(Bug 1057739)
Identity Manager Dashboard removes the need for public trustee rights for a non-administrator user to view custom permission items in the Applications page of Identity Manager Dashboard. (Bug 1061542)
When invoking a PRD, Identity Manager Dashboard no longer displays blank pages and errors on OSP timeout.(Bug 1039651)
You no longer need to remove the Permission Index directory when featured items are not loaded. The identity applications have been enhanced to remove the dependency of loading the featured items from the availability of permission index.(Bug 1037189)
Edits made to the resource name override property are displayed correctly in Identity Manager Dashboard.(Bug 1050828)
A workflow pre-activity now executes correctly without duplication from Identity Manager Dashboard.(Bug 1042046)
The OSP configuration now supports adding additional redirect URIs. This enhancement resolves the NetIQ Access Manager Gateway rewrite issue.(Bug 1050413)
When you try to select one line in the picklist in Internet Explorer 11, multiple lines are no longer selected.(Bug 1036468)
Non-administrator users with trustee rights can successfully view the custom permission items in the Applications page of Identity Manager Dashboard. (Bug 1026444)
The task page performance is improved when you set the page size preference to 100.(Bug 1060008)
NetIQ Identity Manager includes software fixes that resolve several previous issues in Designer and Designer (LDAP).
When comparing driverset configuration, the differences in the linked GCV resources are correctly updated in the Identity Vault.(Bug 1050233)
The Identity Vault added a new CN=System object for a role under the IT Roles container every time role-related information was reconciled with the Identity Vault. This issue is fixed now. (Bug 1040796)
While editing a policy object in Designer (LDAP), the DN of the policy is correctly displayed in LDAP format along with the tree component.(Bug 1053180)
Designer (LDAP) sets a correct OID for attributes that are created without specifying an ANS1 ID. These attributes are correctly deployed to the Identity Vault.(Bug 1052245)
When comparing a policy set where the order of a policy has changed, Designer marks the changed policy as changed. However, it no longer marks the DN component names that differ in case between Identity Vault and Designer (LDAP) as changed.(Bug 1049824)
Regardless of whether you are making an online or offline Designer update, Designer removes the need of adding a trailing slash in the update URL.(Bug 1058250)
Importing and exporting to a configuration file operations no longer update the shared library.(Bug 1052918)
Designer includes the correct URL to download the packages when working in offline mode. You can now successfully download the packages from the specified URL.(Bug 1026317)
When comparing a driverset attribute with a linked GCV resource, Designer shows correct GCV linkages and lists the virtual DirXML-GlobalConfig attribute.(Bug 1050220)
The Package Manger feature is enhanced to correctly handle downgrading of a non-base package that contains roles and resources to a non-base package containing application configuration content.(Bug 1054961)
Policy Builder of Designer loads without any delay. (Bug 1050966)
When PRDs are compared, Designer correctly displays the value of the XMLData attribute. The case sensitivity of URLs in the PRDs no longer causes any issue. (Bug 1043091)
While copying a package that contain an upgrade settings prompt, the prompt resource is correctly renamed to reflect the new package short name. (Bug 1052262)
Argument Builder of Designer (LDAP) has been enhanced to work properly when you set a mapping table attribute in the Mapping Table DN field.(Bug 1049887)
The difference in DN that caused Designer (LDAP) to show incorrect result when a User Application driver was compared has been resolved. When you compare and reconcile the driver again, Designer (LDAP) shows correct status in the compare summary dialog.(Bug 1044479)
Designer and Designer (LDAP) successfully import, compare, and deploy a policy if the policy has a space in its name.(Bug 1044592)
Designer (LDAP) successfully imports and compares a driver from the Identity Vault that has a rule whose name contains a slash.(Bug 1049214)
Designer (LDAP) can now add new attributes to an auxiliary class without any errors. You can also successfully delete duplicate attributes or classes from the Identity Vault before deploying it.(Bug 1052712)
This service pack requires the following product versions:
|
Requirement |
Description |
|---|---|
|
NetIQ Identity Manager 4.6 |
This includes Identity Manager engine, Identity Applications, Identity Reporting, Sentinel Log Management for Identity Governance and Administration, Designer, and Analyzer |
|
NetIQ eDirectory 9.1 |
eDirectory 9.1 requires iManager 3.1. Upgrade your iManager to 3.1 to support eDirectory 9.1. |
|
NetIQ eDirectory 8.8.8 Patch 9 Hot Fix (HF)2, 8.8.8 Patch 10, or 8.8.8 Patch 10 HF1 or 8.8.8 Patch 11 |
For considerations about upgrading eDirectory, see the supported upgrade paths from Section 3.1, Supported Upgraded Paths. IMPORTANT:Identity Manager 4.6 with eDirectory 8.8.8.x is not supported on Windows Server 2016. |
|
NetIQ eDirectory 9.0.2 HF2, 9.0.3, 9.0.3 HF1, or 9.0.4 |
For considerations about upgrading eDirectory, see the supported upgrade paths from Section 3.1, Supported Upgraded Paths. IMPORTANT:NetIQ eDirectory 9.0.4 at a minimum for Windows Server 2016. |
|
NetIQ iManager 3.1 |
You must install iManager 3.1 to support eDirectory 9.1. Ensure that you update your existing plug-ins to the latest versions for the iManager version you are using. NetIQ recommends you to clear the browser cache soon after upgrading the Identity Manager plug-ins. |
|
NetIQ iManager 2.7.7 Patch 9 at a minimum |
You must install iManager 2.7.7 Patch 11 or later to support eDirectory 8.8.8.x. Ensure that you update your existing plug-ins to the latest versions for the iManager version you are using. IMPORTANT:If you are planning to upgrade eDirectory 8.8.x to 9.0.1 or later, ensure that iManager is upgraded to 3.x. iManager 2.7.7.x is not supported on Windows Server 2016. NetIQ recommends you to clear the browser cache soon after upgrading the Identity Manager plug-ins. |
|
NetIQ iManager 3.0.2 at a minimum |
You must install iManager 3.x to support eDirectory 9.0.1 or later. Ensure that you update your existing plug-ins to the latest versions for the iManager version you are using. IMPORTANT:NetIQ iManager 3.0.4 or later for Windows Server 2016. |
|
NetIQ Self Service Password Reset 4.2.0.1, at a minimum |
|
|
NetIQ One SSO Provider 6.1.6, at a minimum |
|
For more information about the software requirements, see “Selecting an Operating System Platform for Identity Manager” in the NetIQ Identity Manager Setup Guide.
Review the supported upgrade paths and the order of installation before starting to upgrade your current version.
You need to be on Identity Manager 4.6 or 4.6.1 to upgrade to Identity Manager 4.6.2. If you are currently on Identity Manager 4.5.6 or a prior version, you must first upgrade to 4.6 and then upgrade to 4.6.2 version.
The upgrade process requires you to upgrade the Identity Manager components in a specific order. NetIQ recommends that you review this information from the release notes for your current version.
|
Base Version |
Upgraded Version |
|---|---|
|
Identity Manager engine, eDirectory, and identity applications |
|
|
Identity Manager 4.6/4.6.1 with eDirectory 9.0.2 HF2 or later |
Identity Manager 4.6.2 with eDirectory 9.0.4 or later |
|
Identity Manager 4.6 with eDirectory 8.8.8 SP9 HF2 |
Identity Manager 4.6.1 with eDirectory 8.8.8 SP10 to Identity Manager 4.6.2 with eDirectory 8.8.8 SP11 Identity Manager 4.6.2 with eDirectory 9.0.4 or later |
|
Remote Loader |
|
|
Identity Manager 4.6/4.6.1 with Remote Loader 4.6 |
Identity Manager 4.6.2 with Remote Loader 4.6.2 |
|
Identity Manager Designer |
|
|
Designer 4.6/4.6.1 |
Designer 4.6.2 |
|
Designer (LDAP) 4.6/4.6.1/4.6.1.1 |
Designer (LDAP) 4.6.2 |
|
Identity Applications 4.6/4.6.1/4.6.1.1 |
Identity Applications 4.6.2 |
|
Identity Reporting 4.6/4.6.1 |
Identity Reporting 4.6.2 |
You must install the components in the following order, depending on your current version:
Identity Manager Engine
Sentinel Log Management for IGA
Remote Loader
Designer
NOTE:You can directly upgrade from both NCP and LDAP-based versions of Designer 4.6.
You can perform an auto-update or download the updates from the Designer Auto-Update Site. For more information about updating Designer, see Section 3.7, Updating Designer.
Sentinel Log Management for IGA
Identity Applications (for Advanced Edition)
Identity Reporting
One SSO Provider
Self Service Password Reset
Before beginning the installation, review the following considerations to help you plan the installation:
This service pack includes the Identity Applications Update utility. This utility automatically updates your currently installed identity applications, Tomcat, and Java version. If you are not using the update utility, you need to manually update each of these components. For more information, see Section 3.6, Updating the Identity Applications.
This service pack updates the Java version to 1.8.0_152 for the Identity Manager engine. You need to manually update your current Java version for Identity Reporting, Designer, and Analyzer. For more information, see Section 3.4, Installing Java 1.8 Update 152.
For Identity Manager Standard Edition, update Java 1.8 Update 152 before installing Identity Reporting.
This service pack includes a IDM_engine_rl_IDM4.6.2.zip for updating the Identity Manager engine. Install this package on the Identity Manager engine server. For more information, see “Hotfixing the Identity Manager Engine and Remote Loader” in the NetIQ Identity Manager Setup Guide.
This service pack provides support for Java version 1.8.0_152 for Identity Manager components.
This service pack certifies Java 1.8.0_152 (JDK 8u152 or JRE 8u152) for use with the Identity Manager engine and Identity Applications. The later versions of Java 1.8 are also supported. To install Java 1.8 Update 152, see the readme files from the following download pages:
This service pack updates Designer to support Java 1.8 Update 152.
On the server where you installed Designer, download and install the Java 8 Update 152 files in a local directory.
Open the Designer.ini file located in the Designer installation directory.
Update the Java path in the Designer.ini file.
This service pack updates Analyzer to support Java 1.8 (32-bit).
On the server where you installed Analyzer, create a directory for Java 1.8.
For example, opt/netiq/jdk1.8.0_152.
Download and install the Java 1.8 files in this directory.
Open the Analyzer.ini file located in the Analyzer installation directory.
Update the Java path in the Analyzer.ini file.
Replace the existing (jre) folder with the Java 1.8 folder in the installation directory.
This service pack includes a SentinelLogManagementForIGA8.1.tar.gz file for updating the Sentinel Log Management for Identity Governance and Administration (IGA) component. Download this package on the server where Sentinel Log Management for IGA is installed and perform the steps listed in the readme file.
This service pack includes an update to Identity Applications and the following supporting software:
Identity Applications 4.6.2
Apache Tomcat 8.5.23
Java 1.8 Update 152
You can install the service pack by using the Identity Applications update utility or manually update the components. All the updates are available in the IDM46-Apps-SP-2.zip file. Download the file to the server where you deployed the identity applications and perform the steps listed in the readme files. After installing the service pack, perform the following actions:
This service pack requires you to update your existing PostgreSQL database version. For example, if you are running the PostgreSQL database on a SLES 11 SP4 server, upgrade the database to 9.4.14 version. For other supported platforms, upgrade the PostgreSQL database to 9.6.5 version. To update the database, perform the steps listed in the readme file from the download page.
To update the path of the keystore in the Configuration Update utility, perform the steps listed in the readme file from the download page.
To ensure a proper integration between Identity Manager Dashboard and Identity Governance, perform the steps listed in the readme file from the download page.
(Conditional) This applies only when you perform a silent update of Identity Applications and the NETIQ_DATABASE_CONFIG_ADMIN is different of NETIQ_DATABASE_ADMIN (for example idmadmin and postgres). In this case, the schema may not update correctly. If the schema is not updated, run the liquibase command with the NETIQ_DATABASE_CONFIG_ADMIN credentials.
The command can be found in the following files:
Linux: /opt/netiq/idm/apps/UserApplication/NetIQ-Custom-Install.log
Windows: C:\netiq\idm\apps\UserApplication\NetIQ-Custom-Install
For example:
Linux: /opt/netiq/idm/apps/jre/bin/java -Xms256m -Xmx256m -Dlog4j.configuration=file:///opt/netiq/idm/apps/tomcat/conf/userapp-log4j.xml -Dwar.context.name=IDMProv -Ddriver.dn="cn=UserApplication,cn=Driver Set,o=system" -Duser.container="o=data" -jar /opt/netiq/idm/apps/UserApplication/liquibase.jar --databaseClass=liquibase.database.core.PostgresDatabase --driver=org.postgresql.Driver --classpath=/opt/netiq/idm/apps/postgres/postgresql-9.4.1212.jdbc42.jar:/opt/netiq/idm/apps/tomcat/webapps/IDMProv.war --changeLogFile=DatabaseChangeLog.xml --url="jdbc:Postgresql:// localhost:5432/idmuserappdb?compatible=true" --contexts="prov,newdb,updatedb" --logLevel=info --username=******** --password=******** update >> /opt/netiq/idm/apps/UserApplication/db.out
Windows: "C:\netiq\idm\apps\jre\bin\java" -Xms256m -Xmx256m -Dlog4j.configuration=file:C:\netiq\idm\apps\tomcat\conf\userapp-log4j.xml -Dwar.context.name=IDMProv -Ddriver.dn="cn=UserApplication,cn=driverset1,o=system" -Duser.container="o=data" -jar "C:\netiq\idm\apps\UserApplication\liquibase.jar" --databaseClass=liquibase.database.core.PostgresDatabase --driver=org.postgresql.Driver --classpath="C:\netiq\idm\apps\postgres\postgresql-9.4.1212.jdbc42.jar;C:\netiq\idm\apps\tomcat\webapps\IDMProv.war" --changeLogFile=DatabaseChangeLog.xml --url="jdbc:postgresql://localhost:5432/idmuserappdb?compatible=true" --contexts="prov,newdb,updatedb" --logLevel=info --username=******** --password=******** update >> C:\netiq\idm\apps\UserApplication\db.out
This service pack provides an update to Designer 4.6 and Designer 4.6 (LDAP). Download the Designer 4.6.2 updates from one of the following links for your version of Designer.
Designer provides an built-in auto-update feature that notifies you of new features available at the Designer Download Site. This feature allows you to download Designer package and patch updates when the computer that has Designer installed and is connected to the Internet.
You also can perform an offline update of Designer when the computer that has Designer installed and is not connected to the Internet. To perform an offline update, first download the required content from the Designer and Package Update Web sites on a local or remote computer and then point Designer to the directory containing the downloaded files.
Launch Designer.
From Designer main menu, click Help > Check for Designer Updates.
Click Yes to accept the Designer updates.
Restart Designer for the changes to take effect.
To update Designer in an offline mode, create an offline copy of the Designer update files and then configure Designer to read the patch updates from the files copied to the local directory.
To create an offline copy of the Designer update files:
Log in to the computer that has Designer installed and create a local directory.
Download the latest patch zip file for Designer version from the specified location and unzip the files into the local directory.
To configure Designer to read the patch updates from the local directory:
Launch Designer.
From Designer’s main menu, click Window > Preferences.
Click NetIQ > Identity Manager and select Updates.
Select Do not check for updates and deselect all the other check boxes.
For URL, specify file:///media/<path_to_update>/updatesite1_0_0/
For a Linux mounted ISO, use the following URL format:
file:///media/designer450offline/updatesite1_0_0/
Click Apply, then click OK.
From Designer’s main menu, click Help > Check for Designer Updates.
Select the required updates and click Yes to accept and update the Designer.
Restart Designer for the changes to take effect.
This service pack provides support for NetIQ Self Service Password Reset 4.2.0.1. You can upgrade to higher versions by downloading it from the download page.
To enable SSL connections, perform the steps listed in the readme file from the download page.
IMPORTANT:If you are using Windows Server 2016, all Identity Manager components must be upgraded to 4.6.2. For more information on the order of component updates, see Section 3.2, Upgrade Order.
Perform the following steps to install Identity Manager 4.6 on Windows Server 2016:
Download the Identity_Manager_4.6_Win2k16.iso from the download site.
Mount the ISO file.
Install all Identity Manager components from the ISO file.
For more information on installing the Identity Manager components, follow the instructions from the NetIQ Identity Manager Setup Guide.
NOTE:NetIQ does not support this installation through integrated installation program.
Upgrade all Identity Manager components to 4.6.2.
To upgrade from Identity Manager 4.6 or 4.6.1 on Windows 2012 to Identity Manager 4.6.2 on Windows Server 2016, perform the following steps:
Upgrade eDirectory to 9.0.4.
Upgrade iManager to 3.0.4.
Upgrade all the Identity Manager components to 4.6.2.
Upgrade the host operating system to Windows Server 2016.
NetIQ strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
Section 5.1, Date Picker Button Appears Inspite of Selecting to Hide This Control
Section 5.3, Task Page Responds Slowly When the Page Size Has a High Value
Section 5.6, Remote Loader Not Installed Despite Selected During Installation
Section 5.9, Filter Resource Changes Are Not Automatically Applied to the Package
Issue: When you use the field.hide() function along with the Date Picker control to hide the Date Picker button in the process request form, the button appears along with other controls in the same row. (Bug 1064914)
Workaround: Add a line break on and before the Date Picker field while creating the process request form. The line break displays the Date Picker field in a separate row.
Issue: When a user does not have all permissions and you invoke a workflow for that user without provisioning all permissions for an assignment by using the SOAP provisioning endpoint, the identity applications report an IllegalStateException error.(Bug 1041902)
Workaround: Perform the following actions:
Navigate to the ism-configuration.properties file.
Open the file in a text editor.
Locate WorkflowSevice/SOAP-End-Points-Accessible-By-ProvisioningAdminOnly in the file and set it to false.
Restart the Tomcat server.
Issue: The Task page properly responds if the value of the page size is set to 100. If the value exceeds 100, the performance slows down.(Bug 1067071)
Workaround: It is recommended to set the page size to 10, 20, or 50 for a good performance.
Issue: If you resynchronize a user in the Role and Resource Service driver, the driver checks the user attributes in the filter and synchronizes them, but it does not recalculate the roles and resources assigned to the user. (Bug 1093450)
Workaround: There is no workaround at this time.
Issue: On an upgraded Identity Manager 4.6.2 setup, if you compare differences between PRDs and XML data, Designer shows them as unequal.(Bug 1042157)
Workaround: Redeploy the already deployed User Application driver.
NOTE:This issue is noticed only the first time the driver is compared.
Issue: By default, the installation program selects the following Remote Loader options, but does not install this component:
32-Bit Remote Loader Service
64-Bit Remote Loader Service
.NET Remote Loader Service
If you proceed with the installation, it displays an error. (Bug 1068453)
Workaround: Deselect the Remote Loader options and then proceed with the installation.
Issue: When Designer is configured to use a proxy server to access the Identity Manager server, Designer fails to authenticate with the Identity Manager server.
Workaround: Perform the following actions:
Click Window > Preferences General > Network Connections.
Change the Active Provider setting from Direct to Manual.
Select HTTP or HTTPS protocol under the Proxy entries section. Do not select SOCKS protocol.
In the Edit Proxy Entry window, provide the IP address of the Identity Vault for your connection (HTTP or HTTPS), then click OK.
Click Add Host under the Proxy bypass section.
In the Proxy bypass hosts window that opens, provide the IP address of the Identity Vault, then click OK.
Issue: If you installed Identity Applications on Linux or Windows, the catalina.out file does not rotate the log.
Workaround on Linux: Perform the following actions:
Open a text editor and create a netiq-tomcat file at /etc/logrotate.d/ with the following entries:
/opt/netiq/idm/apps/tomcat/logs/catalina.out {
copytruncate
daily
dateext
dateformat -%Y-%m-%d
rotate 25
notifempty
missingok
compress
su novlua novlua
}Verify that logrotate is scheduled to run at midnight.
Verify that novlua user and novlua group permissions are set for the catalina.out file.
Verify that the log is correctly rotated.
Run the following command:
/usr/sbin/logrotate -d /etc/logrotate.d/netiq-tomcat
You should see messages similar to the below in the screen.
reading config file /etc/logrotate.d/netiq-tomcat Handling 1 logs rotating pattern: /opt/netiq/idm/apps/tomcat/logs/catalina.out after 1 days (25 rotations) empty log files are not rotated, old logs are removed switching euid to 485 and egid to 0 considering log /opt/netiq/idm/apps/tomcat/logs/catalina.out log does not need rotating switching euid to 0 and egid to 0
Workaround on Windows: There is no workaround at this time.
Issue: If a driver contains a package that includes a filter resource, any changes made to the filter resource are not reflected in the driver filter. For example, when a new class or an attribute is added to the filter, the changes are not merged with the driver filter.
Workaround: Manually synchronize the changes with the package.
In the Outline view, right-click the filter resource and select Sync to Package.
Select the package where you want to add the filter resource and click OK.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal/.
Copyright © 2017 NetIQ Corporation, a Micro Focus company. All Rights Reserved.