NetIQ Identity Manager 4.8 Bundle Installer patch must be applied if you want to install Identity Manager 4.8 and upgrade to 4.8.7 simultaneously using the idm_bundle_installer.sh script. This script is applicable for the fresh installation of Identity Manager on all RHEL and SLES platforms. This document outlines why you should install this patch.
NOTE:This version of the bundle installer script is expected to run on all server wherever you want Identity Manager 4.8.7 to be installed/configured as a full installer. Make sure that you install the patch on every server.
This patch resolves the following upgrade issue:
Installing Identity Manager is a two-step process, first install and configure Identity Manager 4.8, then upgrade to Identity Manager 4.8.7. The installation can fail because eDirectory 9.2.0 bundled with Identity Manager 4.8 iso is not supported on RHEL 9 platform.
Identity Manager 4.8.7 supports Java 11 for all its components, except Identity Reporting. Identity Reporting will continue to use Java 8. It is recommended that you install Identity Reporting on a standalone server.
New service would be created with the following name:
For Windows, NetIQ Identity Reporting Service
For Linux, netiq-tomcat-jre8
You must configure the Data Collection Service (DCS) driver with the following changes:
Update the port number of DCS server, if Identity Reporting is installed along with Identity Engine and Identity Applications.
In configuration update utility, under IDM SSO Client, check the OAuth redirect URI of Reporting Client and Data Collection Service in the following format respectively:
https://<host name>:<port>/IDMRPT/oauth.html
https://<host name>:<port>/idmdcs/oauth.html
(Conditional) If you make any changes in the configuration update utility, start the Tomcat using the following command:
systemctl start netiq-tomcat-jre8.service
(Conditional) If Identity user applications and Identity Reporting are on the same server, and if the NetIQ Access Manager (NAM) is used to configure servers as reverse proxy, then perform the following steps:
In NAM, create a new proxy service in the reverse proxy list of the Access gateway with the newly published DNS name.
Go to the new proxy service's Web Server Addresses and update the Identity Reporting port in the Connect Port.
Save and update the reverse proxy.
Bookmarks added on your browsers need to be updated because the port for Identity Reporting may change.(TBD)
Java 11 does not support the lib/ext directory inside JAVA_HOME. So from this release onwards netiq-jrex rpm will backup the contents from lib/ext to lib/org_ext directory.
NOTE:Before installing Identity Vault, make sure that you completed the required prerequisites in the NetIQ eDirectory Installation Guide.
IMPORTANT:The disk space required for the bundle image is 12GB.
Download the Identity_Manager_4.8_Linux.iso and Identity_Manager_4.8.7_Linux.iso from the Software license and download site.
Create directories for mounting the downloaded .iso files.
Mount the downloaded .iso files onto the respective directories.
Download the Identity_Manager_4.8_BundleInstaller_1.1.0.zip file onto the target Linux server from the Software license and download site.
Extract the downloaded .zip file and navigate to the extracted folder.
(Conditional) Run the following command if the script file is in dos format:
dos2unix idm_bundle_installer.sh
Run the idm_bundle_installer.sh script using the following command:
bash idm_bundle_installer.sh
Provide the inputs for the following prompts:
Table 1
|
Prompts |
Description |
|---|---|
|
Enter Identity Manager 4.8 iso mount location |
Specify the mount location of Identity Manager of 4.8 iso. |
|
Enter Identity Manager 4.8.x iso mount location |
Specify the mount location of Identity Manager of 4.8.x iso. |
|
Enter the location to copy the contents of 4.8 and 4.8.x iso |
Specify the location to copy the ISO contents. |
Please wait as it may take sometime to copy the ISO contents.
Once the ISO contents are copied, proceed with the instructions displayed on the console.
Run the following command to proceed with the installation:
./install.sh
For more information, see the Installing Identity Manager in the NetIQ Identity Manager Setup Guide for Linux.
Run the following command to continue with the configuration:
./configure.sh
For more information, see the Configuring the Identity Manager Components in the NetIQ Identity Manager Setup Guide for Linux.
(Conditional) For Identity Application, after installation start tomcat again by running the following command:
systemctl start netiq-tomcat.service
(Conditional) For Identity Reporting, after installation start tomcat again by running the following command:
systemctl start netiq-tomcat-jre8.service
NetIQ Corporation strives to ensure our products provide quality solutions for your enterprise software needs. The following issue is currently being researched. If you need further assistance with any issue, contact Technical Support.
More information about this issue and workaround are available in this TID KB 7023559.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal/.
© 2023 NetIQ Corporation. All Rights Reserved.