This update is applicable for an Identity Manager Driver for Office 365 and Azure Active Directory running Identity Manager 4.7.x. The driver version will be changed to 188.8.131.52 after the patch is applied.
Identity Manager 4.7.x
Upgrading the Driver
The driver upgrade process involves the following tasks:
Upgrading the Driver Packages
- Upgrading the driver packages
- Updating the driver files
- Download the following packages
- Azure AD Default Configuration package
- Package Name: MFAZUREDCFG
- Version: 1.1.0
- Build Date: 20190322
- Build Number: 120731
Azure AD Exchange Default Configuration package
- Package Name: MFAZUREXDCFG
- Version: 1.1.0
- Build Date: 20190122
- Build Number: 121437
Open the project containing the driver.
Right-click the driver for which you want to upgrade an installed package, then click Driver > Properties.
A check mark indicates a newer version of a package in the Upgrades column.
Click Select Operation for the package that indicates there is an upgrade available.
From the drop-down list, click Upgrade.
Select the version that you want to upgrade to, then click OK.
NOTE: Designer lists all versions available for upgrade.
(Conditional) Fill in the fields with appropriate information to upgrade the package, then click Next.
Depending on which package you selected to upgrade, you must fill in the required information to upgrade the package.
Read the summary of the packages that will be installed, then click Finish.
Review the upgraded package, then click OK to close the Package Management page.
Updating the Driver Files
- Take a back-up of the current driver configuration.
- (Conditional) If the driver is running locally, stop the driver instance and the Identity Vault.
- (Conditional) If the driver is running with a Remote Loader instance, stop the driver and the Remote Loader instance.
- Download and unzip the contents of the IDM4.7_AzureAD_5110.zip file to a temporary location on your computer.
- (Conditional) To update the driver files as a root user:
- On the server where you want apply the driver patch, log in as root.
- Navigate to the extracted <IDM4.7_AzureAD_5110.zip> directory and perform one of the following actions for your platform:
- Copy the AZDriverShim.jar and RestLib.jar files to your driver installation folder. For example, \NetIQ\IdentityManager\NDS\lib (local installation) or \Novell\RemoteLoader\64bit\lib (remote installation).
- Update the Windows Exchange Service.
- Stop the IDMExchangeOnline service from Windows services console (services.msc).
- Navigate to windows/ExchangeService in the extracted <IDM4.7_AzureAD_5110.zip> folder and copy the ExchServerHost.exe and IDMExchServer.dll files to the Windows Exchange Service installation folder in your file system. For example, C:\NetIQ\ExchangeServerHost.
(Conditional) To update the driver files as a non-root user:
(Conditional) If the driver is running locally, start the Identity Vault and the driver instance.
- Verify that /rpm directory exists and contains _db.* file.
The _db.* file is created during a non-root installation of the Identity Manager engine. Absence of this file might indicate that Identity Manager is not properly installed. Reinstall Identity Manager to correctly place the file in the directory.
- To set the root directory to the location of non-root Identity Vault, enter the following command in the command prompt:
ROOTDIR=<non-root eDirectory location>
This will set the environmental variables to the directory where Identity Vault is installed as a non-root user.
- To install the driver files, enter the following command:
For example, to install the REST driver RPM, use this command:
rpm --dbpath $ROOTDIR/rpm -Uvh --relocate=/usr=$ROOTDIR/opt/novell/eDirectory --relocate=/etc=$ROOTDIR/etc --relocate=/opt/novell/eDirectory=$ROOTDIR/opt/novell/eDirectory --relocate=/opt/novell/dirxml=$ROOTDIR/opt/novell/dirxml --relocate=/var=$ROOTDIR/var --badreloc --nodeps --replacefiles /home/user/netiq-DXMLRESTAzure.rpm
where /opt/novell/eDirectory is the location where non-root eDirectory is installed and /home/user/ is the home directory of the non-root user.
(Conditional) If the driver is running with a Remote Loader instance, start the Remote Loader instance and the driver instance.
Technical Support Information
Issues Fixed in This Release
- Bug 1125734 - Ability to escape HTML characters for passwords when Graph or Exchange APIs are called
- Bug 1114633 - Powershell psexecute commands work properly when the driver is in Hybrid mode
- Bug 1114631 - Licenses in a "PendingInput" status are no longer removed
- Bug 1115732 - Irrelevant trace messages will no longer display for successful user add and user restoration using exchange service events
- Bug 1114635 - Ability to rename Mail-Enabled security groups on the Subscriber channel
- Enhancement 1114628 - Extended support for synchronizing the usercertificate attribute from the Identity Vault to Azure AD
- Enhancement 1125877 - Extended support for supporting the unified groups