5.2 Migrating from Generic Linux 2.2.x to 2.3 on SLES

5.2.1 Migrating Agent

Before installing the Privileged User Manager Agent 2.3 for SLES base installation package, uninstall the current generic linux agent RPM.

NOTE:As no persistent data is stored on the Privileged User Manager agent, backing up of data is not required. However, if a Framework Manager package is deployed to this host, see Section 5.2.2, Migrating Framework Manager for upgrade instructions.

To uninstall an earlier version of the Generic Linux agent and install the Privileged User Manager 2.3 SLES agent:

  1. Use the following command to query for novell-npum RPM

    rpm -qa | grep novell-npum

  2. Use the following command to uninstall novell-npum RPM

    rpm -e novell-npum

  3. Remove or rename the /opt/novell/npum structure.

  4. Specify one of the following commands to install the RPMs depending on your architecture:

    rpm -i novell-pum-2.3-i586.rpm

    rpm -i novell-pum-2.3-x86_64.rpm

  5. After the installation is complete, Verify that the service is running by viewing the log file. The log file is located in /var/opt/novell/npum/logs/unifid.log, if the default install location was accepted.

    If the agent installed correctly, services should be listening on 0.0.0.0:29120.

  6. Use the following command to register the agent with the Framework Manager. Specify the following command from the machine where the agent is installed:

    /opt/novell/npum/sbin/unifi regclnt register

    The following information is required:

    The registration server hostname: Specify the hostname or IP address of the Framework Manager.

    The registration server port: Accept the default unless another application is using the default port. After the host is registered, this port cannot be modified.

    The name or IP address of this host: Specify the DNS name or IP address, by using any other agent in the Framework can resolve the location of this machine on your network.

    The name of this agent: Specify the name of the agent when it was created in the Framework Console. For more information, see Creating a Host Name for Each Agent.

  7. Provide a valid username and password for the Framework Manager are required to complete the registration of the agent.

  8. Verify that the registration is successful by viewing the host details on the Framework Console.

5.2.2 Migrating Framework Manager

Prerequisites

  • Make sure if you have a functioning Primary and Backup Manager for each module.

  • Stop the Privileged User Manager daemon process and take a complete backup of the /opt/novell/npum directory structure.

  • (Conditional) The Audit Manager data is not synchronized. You must perform additonal steps if the server you are upgrading is an Audit Manager. For more information, see

Synchronizing Audit Manager

If the server you are upgrading is an audit manager, perform the following steps before you upgrade to Privileged User Manager 2.3:

  1. On the Audit Manager, disable any encryption of the audit databases.

    1. Click Reporting on the home page of the console.

    2. Click Audit Settings in the task pane.

    3. Change the Audit Log settings for cmdctrl audit database file. Set Protection to none.

    4. Stop Priviledge User Manager

  2. Create a manual backup of the following databases from the /opt/novell/npum/service/local/audit folder:

    • audit.ldb

    • cmdctrl*.db

  3. After the new SLES manager is installed, you can copy these files back to the new SLES data folder /var/opt/novell/npum/service/local/audit after the new SLES manager is installed

Uninstall and Install Framework Manager

To uninstall an earlier version of Generic Linux Framework Manager and install the Privileged User Manager 2.3 SLES Framework Manager:

  1. Specify the following command to query for novell-npum RPM.

    rpm -qa | grep novell-npum

  2. Specify the following command to unistall novell-npum RPM

    rpm -e novell-npum

  3. Install novell-pum and novell-pum-manager packages.

    For more information on installation see, Section 3.1.4, SLES Framework Manager Installation .

  4. (Conditional) For Audit Managers, copy the Audit Manager databases that were manually backed up into the /var/opt/novell/npum/service/local/audit after the new SLES manager was installed.

  5. Use the following command to register the Privileged User Manager 2.3 for SLES Manager with the Primary Framework Manager. This command must be issued from the Privileged User Manager 2.3 for SLES Manager.

    /opt/novell/npum/sbin/unifi regclnt register

    The following items of information are required:

    The registration server hostname: The hostname or IP address of the Framework Manager.

    The registration server port: Accept the default unless another application is using this port. After the host is registered, this port cannot be modified.

    The name or IP address of this host: The DNS name or IP address by which any other agent in the Framework can resolve the location of this machine on your network.

    The name of this agent: The name of the agent when it was created in the Framework Console (refer to Creating a Host Name for Each Agent).

  6. When the above details areprovided, a valid username and password for the Framework Manager are required to complete the registration of the manager.

  7. Verify that the registration is successful by viewing the host details on the Framework Console.

  8. All databases except for the Audit database will be synchronized to the Privileged User Manager 2.3 server as backup databases. It might take sometimefor the synchronization to be completed.