You can install Identity Manager Engine as a non-root user to enhance the security of your Linux server. You cannot install Identity Manager Engine as a non-root user if you installed the Identity Vault as root. You need to perform the following steps to install the Identity Manager Engine as a non-root user:
Update NICI. For more information, see Updating NICI.
Update eDirectory as a non-root user. For more information, see Updating eDirectory as a Non-root User.
Update Identity Manager Engine as a non-root user. For more information, see Updating Identity Manager Engine as a Non-root User.
Ensure that you are logged-in as a root user before updating NICI.
Navigate to the /<location where you have mounted the ISO>/IDVault/setup directory.
Run the following command:
rpm -Uvh nici64-3.2.0-00.x86_64.rpm
A non-root user can upgrade eDirectory using the new version of the tarball. Perform the following steps to upgrade eDirectory as a non-root user:
Log in as a non-root user.
Navigate to the /<location where you mounted the ISO>/IDVault/ directory.
Copy the eDir_NonRoot.tar.gz file to a non-root home directory.
Run the following command to extract the .tar.gz file.
tar -zxvf eDir_NonRoot.tar.gz
(Conditional) Ensure the below paths are set in <non-root home directory>/.bash_profile so that below path's are not required to be set for each time user logs in a session
export LD_LIBRARY_PATH=<non-root home directory>/eDirectory/opt/novell/eDirectory/lib64:<non-root home directory>/eDirectory/opt/novell/eDirectory/lib64/nds-modules:<non-root home directory>/eDirectory/opt/novell/lib64:$LD_LIBRARY_PATH
export PATH=<non-root home directory>/eDirectory/opt/novell/eDirectory/bin:<non-root home directory>/eDirectory/opt/novell/eDirectory/sbin:/opt/novell/eDirectory/bin:$PATH
export MANPATH=<non-root home directory>/eDirectory/opt/novell/man:<non-root home directory>/eDirectory/opt/novell/eDirectory/man:$MANPATH
export TEXTDOMAINDIR=<non-root home directory>/eDirectory/opt/novell/eDirectory/share/locale:$TEXTDOMAINDIR. <non-root home directory>/eDirectory/opt/novell/eDirectory/bin/ndspath
Restart eDirectory.
ndsmanage stopall
ndsmanage startall
Perform this action only if you have installed Identity Manager Engine as a non-root user. You can perform the update through an interactive or silent mode.
Perform the follow steps to perform a non-root interactive update of Identity Manager Engine:
Download and mount the Identity_Manager_4.8.4_Linux.iso for non-root user to access.
Log in as a non-root user.
Run the following command from the location where you have mounted the Identity_Manager_4.8.4_Linux.iso:
./install.sh
Select Identity Manager Engine and press Enter.
Specify the non-root install location for Identity Vault.
For example, /home/user/eDirectory/.
Specify Y to complete the update.
Perform the follow steps to perform a non-root silent update of Identity Manager Engine:
Copy the silent.properties file from the /<ISO mounted location>/ to a folder accessible by the non-root user.
In the silent.properties file, edit the following:
Set the value for the below properties to true:
INSTALL_ENGINE
IDVAULT_SKIP_UPDATE
Specify the value of the NONROOT_IDVAULT_LOCATION parameter as /home/<non-root username>/eDirectory, where <non-root username> indicates the name of the non-root user.
Navigate to the location where you mounted the ISO.
Run the following command:
./install.sh -s -f /<location where you copied the silent.properties file to in step 1>/silent.properties