Access Manager Appliance 4.5 Hotfix 1 (4.5.0.1) supersedes Access Manager Appliance 4.5.
For the list of software fixes and enhancements in the previous release, see Access Manager Appliance 4.5 Release Notes.
For information about Access Manager support lifecycle, see the Product Support Lifecycle page.
This release includes the fix for the following issues:
Apache Vulnerability in Access Gateway (CVE-2019-2011).
Access Gateway does not log the AMEVENTID values in the Apache or Embedded Service Provider log file. (Bug 1133573)
To ensure that you have the Access Manager 4.5 files before upgrading to Access Manager 4.5.0.1, verify the existing Access Manager version by clicking Troubleshooting > Version.
IMPORTANT:In a cluster setup, ensure that you install the hotfix on each node of the Access Manager setup.
The hotfix helps in upgrading to the latest Access Manager with ease.
If you have multiple components installed on the same system, the hotfix installation process will take care of updating all the binaries of these components. For example, if you have both Identity Server and Administration Console installed on a system, installing the hotfix takes care of updating the binaries of Identity Server and Administration Console.
IMPORTANT:Ensure that you are currently on Access Manager 4.5 before upgrading to Access Manager 4.5.0.1.
To download Access Manager Appliance 4.5.0.1, perform the following steps:
Go to NetIQ Downloads Page.
Under Patches, click Search Patches.
Specify AM_4501.zip in the search box and download the file.
Save the hotfix file to the server running Access Manager. If you have multiple servers in your set up, ensure that you copy this zip file to all the servers.
NOTE:This hotfix is not required for Analytics Server.
You can upgrade to Access Manager 4.5 Hotfix 1 by using the proceeding steps. This requires few manual interventions to continue the upgrade process. If you do not require any manual intervention while upgrading to the hotfix, see Section 3.3, Silent Hotfix Upgrade.
NOTE:This installation is not applicable for Analytics Server.
Extract the hotfix file by using the unzip AM_4501.zip command.
After extraction, the following files and folders are created in the AM_4501 folder:
Table 1 Files and folders created in the AM_4501 folder after extracting the hotfix installer ZIP file
File/Folder Name |
Description |
---|---|
rpm |
Contains rpm files for the hotfix to run on a Linux server. |
Patchtool |
Contains logging properties file and files necessary for the hotfix to run on a Windows server. |
installPtool.sh |
Script to install the hotfix and the hotfix tool on a Linux server. |
installPatch.sh |
Script to install the hotfix tool and the updated binaries on a Linux server. |
installPtool.cmd |
Script to install the hotfix on a Windows server. |
Log in as the root user.
(Conditional) To automate the hotfix installation, perform the steps mentioned in Section 3.3, Silent Hotfix Upgrade, else continue with Step 4.
Go to the location where you have extracted the hotfix files.
Run the installPatch.sh command.
This command installs the hotfix and the bundled binaries.
NOTE:To manage the Access Manager hotfix file, refer Managing Hotfix.
If the hotfix is already installed, the installer exits with a message.
Perform the following steps to automate the installation of the hotfix.
Go to /opt/novell/nam/patching/bin/ and add the following in the patch file:
-Dcom.netiq.nam.patching.enableautomation=true
This updates the patch file as following:
/opt/novell/java/bin/java -cp ../lib/*: \
-Dcom.netiq.nam.patching.enableautomation=true -Djava.util.logging.config.file=logging.properties com.netiq.nam.patching.PatchInstaller $@
Run the following command at /opt/novell/nam/patching/bin/:
./patch -i /<path where you extracted the hotfix>/AM_4501/AM_4501-5.patch
After the hotfix is installed, go to the following folder:
/opt/novell/nam/patching/bin
Use the following options to manage the Access Manager hotfix file:
Option |
Description |
Command on Linux server |
---|---|---|
-qa |
Lists all installed hotfixes. |
patch.sh -qa |
-q |
Lists details of an installed hotfix. |
patch.sh –q Example: patch.sh –q AM_4501-5 |
-i |
Installs a hotfix. During installation of a hotfix, all running services are stopped temporarily. After a hotfix is installed, all services are restarted and details of the operation are written to log files. |
patch.sh –i <location and hotfix name> Example: patch.sh –i /opt/novell/nam/Patches/AM_4501/AM_4501-5.patch |
-e |
Removes an installed hotfix. The hotfix maintains content relationship among hotfixes. So, if you have installed hotfix 1 and hotfix 2, hotfix 1 cannot be removed without removing hotfix 2. This is because hotfix 2 contains details of hotfix 1 as well.During the hotfix process, all the running services are stopped temporarily. |
patch.sh –e <hotfix name> Example: patch.sh –e AM_4501-5 |
-qpl |
Lists details of a hotfix that is not installed. If you want to view the changes that are included in the hotfix file without installing it on your server, use this option |
patch.sh –qpl <location and hotfix name> Example: patch.sh –qpl /opt/novell/nam/Patches/AM_4501/ AM_4501-5.patch |
-v |
Verifies integrity of a hotfix. |
patch.sh –v <location and hotfix name> Example: patch.sh –v /opt/novell/nam/Patches/AM_4501/ AM_4501-5.patch |
-t |
Verifies if services can be restored by the installer. Use this option to stop/start all services after the installation of hotfix. |
patch.sh –t <location and hotfix name> Example: patch.sh –t /opt/novell/nam/Patches/AM_4501/ AM_4501-5.patch |
After upgrading to Access Manager 4.5.0.1, verify that the version number of the component is indicated as 4.5.0.1-5. To verify the version number, perform the following steps:
In Administration Console Dashboard, click Troubleshooting > Version.
Verify that the Version field displays 4.5.0.1-5.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information website.
For general corporate and product information, see the NetIQ Corporate website.
For interactive conversations with your peers and NetIQ experts, become an active member of our community. The NetIQ online community provides product information, useful links to helpful resources, blogs, and social media channels.
For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.netiq.com/company/legal/.
Copyright © 2019 NetIQ Corporation, a Micro Focus company. All Rights Reserved.