3.2 Updating Containers on a Single Server

The containers must be updated in the following order:

3.2.1 Updating Identity Manager Engine Container

  1. Create a credentials.properties file under the shared volume /data with the following content.

    ID_VAULT_ADMIN="<ID_VAULT_ADMIN>"
ID_VAULT_PASSWORD="<ID_VAULT_PASSWORD>"

    where, ID_VAULT_ADMIN must be in dot format.

    For example,

    ID_VAULT_ADMIN="admin.sa.system"
ID_VAULT_PASSWORD="novell"

  2. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  3. Run the following command to load the image:

    docker load --input IDM_482_identityengine.tar.gz

  4. Update the container using the following command:

    docker run -d --network=host --name=engine-container -v /etc/hosts:/etc/hosts -v /data:/config -e SILENT_INSTALL_FILE=/config/credentials.properties --stop-timeout 100 identityengine:idm-4.8.2

3.2.2 Updating Remote Loader Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_remoteloader.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=rl-container -v /data:/config --stop-timeout 100 remoteloader:idm-4.8.2

    The driver files can be found at the /opt/novell/eDirectory/lib/dirxml/classes/ directory of the container.

  4. Start the Remote Loader instances.

3.2.3 Updating Fanout Agent Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_fanoutagent.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=foa-container -v /data:/config --stop-timeout 100 fanoutagent:idm-4.8.2

  4. Start Fanout Agent.

3.2.4 Updating iManager Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_iManager323.tar.gz

  3. Ensure that the iManager.env file is created and present in the /data directory.

    # Certificate Public Key Algorithm
# Allowed Values: RSA, ECDSA256, ECDSA384
CERTIFICATE_ALGORITHM=RSA
# Cipher Suite
# Allowed Values:
# For RSA - NONE, LOW, MEDIUM HIGH
# For ECDSA256 - SUITEB128ONLY
# For ECDSA384 - SUITEB128, SUITEB192
CIPHER_SUITE=NONE
# Tomcat Server HTTP Port
TOMCAT_HTTP_PORT=8080
# Tomcat Server SSL Port
TOMCAT_SSL_PORT=8743
# iManager Authorized User (admin_name.container_name.tree_name)
AUTHORIZED_USER=

  4. Update the container using the following command:

    docker run -d --network=host --name=iman-container -v /data:/config -v /data/iManager.env:/etc/opt/novell/iManager/conf/iManager.env --stop-timeout 100 imanager:3.2.3

  5. To install the Identity Manager plug-ins, perform the following steps:

    1. Log in to iManager.

      https://identitymanager.example.com:8743/nps/

    2. Click Configure.

    3. Click Plug-in Installation and then click Available NetIQ Plug-in Modules.

    4. Select all the plug-ins from the NetIQ Plug-in Modules list and then click Install.

    To obtain the plug-ins offline, perform the following steps:

    1. Download the Identity_Manager_4.8.2_Linux.iso from the NetIQ Downloads website.

    2. Mount the downloaded.iso.

    3. From the mounted location, navigate to the /iManager/plugins directory and obtain the required plug-ins.

    Alternatively, you can install the plug-ins from the iManager plug-ins website.

  6. Restart the iManager container.

    docker restart iman-container

3.2.5 Updating OSP Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_osp.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=osp-container -v /data:/config --stop-timeout 100 osp:idm-4.8.2

  4. Run the following command to log in to the container:

    docker exec -it <container> <command>

    For example,

    docker exec -it osp-container bash

  5. Navigate to the /opt/netiq/idm/apps/configupdate/ directory.

  6. Modify the configupdate.sh.properties file.

  7. Set the value of the no_nam_oauth parameter to false.

  8. Save the configupdate.sh.properties file.

  9. Run the following command to exit the container.

    exit

3.2.6 Updating PostgreSQL Container

NOTE:

  • (Conditional) This procedure applies only if you are updating PostgreSQL from the Identity Manager 4.8 version to the 4.8.2 version.

    In other words, do not update the PostgreSQL container if you have already deployed the PostgreSQL version (12.2) shipped with the Identity Manager 4.8.1 containers release. This release does not support any new version of the PostgreSQL container.

  • Before you update the PostgreSQL container, ensure that you stop the dependent containers such as Identity Applications and/or Identity Reporting.

  1. On the Docker host, navigate to any location. For example:

    cd /tmp

  2. Run the following command to take a back up of the existing PostgreSQL container data.

    docker exec postgresql-container pg_dumpall -U postgres > dump.sql

  3. Stop the PostgreSQL container.

    docker stop <container name>

    For example,

    docker stop postgresql-container

  4. Delete the PostgreSQL container.

    docker rm <container name>

  5. Delete the existing PostgreSQL data directory.

    rm -rf /data/postgres

  6. (Conditional) Delete the PostgreSQL Docker image.

    docker rmi <image ID>

  7. Create a sub-directory under the shared volume /data, for example, postgres.

    mkdir postgres

  8. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  9. Run the following command to load the image:

    docker load --input IDM_482_postgres.tar.gz

  10. Update the container using the following command:

    docker run -d --network=host --name=postgresql-container -e POSTGRES_PASSWORD=<password> -v /data/postgres:/var/lib/postgresql/data --stop-timeout 100 postgres:12.2-alpine

    For example,

    docker run -d --network=host --name=postgresql-container -e POSTGRES_PASSWORD=novell -v /data/postgres:/var/lib/postgresql/data --stop-timeout 100 postgres:12.2-alpine

  11. Copy the data file you backed up on the Docker host (Step 2) to the new PostgreSQL data directory.

    cp /tmp/dump.sql /data/postgres

  12. Run the following command to log in to the container:

    docker exec -it <container> <command>

    For example,

    docker exec -it postgresql-container bash

  13. Navigate to the /var/lib/postgresql/data/ directory.

  14. Restore the data backed up in Step 2 to the new PostgreSQL container.

    psql -U postgres < dump.sql

  15. Run the following command to exit the container.

    exit

3.2.7 Updating Identity Applications Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_identityapplication.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=idapps-container -v /data:/config --stop-timeout 100 identityapplication:idm-4.8.2

3.2.8 Updating Form Renderer Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_formrenderer.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=fr-container -v /data:/config --stop-timeout 100 formrenderer:idm-4.8.2

3.2.9 Updating ActiveMQ Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_activemq.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=amq-container -v /data:/config --stop-timeout 100 activemq:idm-4.8.2

3.2.10 Updating Identity Reporting Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_identityreporting.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=rpt-container -v /data:/config --stop-timeout 100 identityreporting:idm-4.8.2

3.2.11 Updating SSPR Container

  1. From the location where you have extracted the Identity_Manager_4.8.2_Containers.tar.gz file, navigate to the Identity_Manager_4.8.2_Containers directory.

  2. Run the following command to load the image:

    docker load --input IDM_482_sspr.tar.gz

  3. Update the container using the following command:

    docker run -d --network=host --name=sspr-container -v /data/sspr:/config --stop-timeout 100 sspr/sspr-webapp:latest