New Ranks & Badges For The Community!
Notice something different? The ranks and associated badges have gone "Star Fleet". See what they all mean HERE
Highlighted
Absent Member.
Absent Member.
497 views

New Install with IDM 4.5.1 Patches


With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
supported to replace the files from IDM 4.5 One SSO Provider (OSP)
4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications
4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
iac-datasource-factory.jar) patches *_before_* starting Tomcat for the
1st time? I was thinking this would save a few steps of having to
delete the appropriate folders per the patch instructions.

The Self Service Password Reset 3.2.0.3 patch, the documentation says
this can be done with the sspr.war file. But was wondering if the same
process could be used with the recently released IDM v4.5.1 patches on a
new installation?

Thank you in advance!


--
rsimonsatidentropy
------------------------------------------------------------------------
rsimonsatidentropy's Profile: https://forums.netiq.com/member.php?userid=3816
View this thread: https://forums.netiq.com/showthread.php?t=53620

Labels (1)
0 Likes
7 Replies
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
>
> With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
> supported to replace the files from IDM 4.5 One SSO Provider (OSP)
> 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications
> 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
> iac-datasource-factory.jar) patches *_before_* starting Tomcat for the
> 1st time? I was thinking this would save a few steps of having to
> delete the appropriate folders per the patch instructions.
>
> The Self Service Password Reset 3.2.0.3 patch, the documentation says
> this can be done with the sspr.war file. But was wondering if the same
> process could be used with the recently released IDM v4.5.1 patches on a
> new installation?


Steve will have the best view on this. Key issue is if there are DB
changes under the covers between 4.5, 4.5.02, and 4.5.1.

The OSP.war and sspr.war file as far as I can tell just expand, so first
expansion is fine. (I know that first WAR expansion on User App does at
least one thing (Issues permission role requests for RRSD to process for
defined Admin users), so I would not try this with UA.).

The RRSD patch, same thing, should not matter if the new shim starts the
first time or the second time.



0 Likes
Highlighted
Micro Focus Expert
Micro Focus Expert

SSPR as delivered on the 4.5 media has a special configuration for
integration with IDM that is not in the standalone build. So you might want
to merge its WEB-INF/SSPRConfiguration.xml into 3.2.0.3 before starting up
tomcat. Something like:
# sspr update
pushd .
TMP_DIR=$(mktemp -d)
cd $TMP_DIR
unzip /opt/netiq/idm/apps/tomcat/webapps/sspr.war
WEB-INF/SSPRConfiguration.xml
cp WEB-INF/SSPRConfiguration.xml WEB-INF/SSPRConfiguration.xml.bak
xsltproc /install/silentinstall/sspr-customizations.xslt
WEB-INF/SSPRConfiguration.xml.bak > WEB-INF/SSPRConfiguration.xml
cp -v /install/unpacked/sspr_3.2.0.3/sspr.war
/opt/netiq/idm/apps/tomcat/webapps
chown -c novlua:idvadmin /opt/netiq/idm/apps/tomcat/webapps/sspr.war
/opt/novell/jdk1.8.0_25/bin/jar -uvf
/opt/netiq/idm/apps/tomcat/webapps/sspr.war WEB-INF/SSPRConfiguration.xml
popd
test -n $TMP_DIR && echo rm -r $TMP_DIR

Norbert



>>> On 04.06.2015 at 18:39, Geoffrey

Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
> On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
> >
> > With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
> > supported to replace the files from IDM 4.5 One SSO Provider (OSP)
> > 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications
> > 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
> > iac‑datasource‑factory.jar) patches *_before_* starting Tomcat for

the
> > 1st time? I was thinking this would save a few steps of having to
> > delete the appropriate folders per the patch instructions.
> >
> > The Self Service Password Reset 3.2.0.3 patch, the documentation says
> > this can be done with the sspr.war file. But was wondering if the same


> > process could be used with the recently released IDM v4.5.1 patches on


> a
> > new installation?

>
> Steve will have the best view on this. Key issue is if there are DB
> changes under the covers between 4.5, 4.5.02, and 4.5.1.
>
> The OSP.war and sspr.war file as far as I can tell just expand, so first


>
> expansion is fine. (I know that first WAR expansion on User App does at


>
> least one thing (Issues permission role requests for RRSD to process for


>
> defined Admin users), so I would not try this with UA.).
>
> The RRSD patch, same thing, should not matter if the new shim starts the


>
> first time or the second time.
>
>
>
>
>
>

--
Norbert
0 Likes
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

Is that how they delivered the OSP config? Built the WAR with a
preconfigured xml file and then a stylesheet to update it. Clever. I
had wondered.

Do you hve a copy of the XSLT? I do not see it on my IDM 4.5 Dvd
install. Possibly Install Anywhere extracts it but I am not sure how to
get the files out of the Install Anywhere binaries installer.

On 6/19/2015 4:02 PM, Norbert Klasen wrote:
> SSPR as delivered on the 4.5 media has a special configuration for
> integration with IDM that is not in the standalone build. So you might want
> to merge its WEB-INF/SSPRConfiguration.xml into 3.2.0.3 before starting up
> tomcat. Something like:
> # sspr update
> pushd .
> TMP_DIR=$(mktemp -d)
> cd $TMP_DIR
> unzip /opt/netiq/idm/apps/tomcat/webapps/sspr.war
> WEB-INF/SSPRConfiguration.xml
> cp WEB-INF/SSPRConfiguration.xml WEB-INF/SSPRConfiguration.xml.bak
> xsltproc /install/silentinstall/sspr-customizations.xslt
> WEB-INF/SSPRConfiguration.xml.bak > WEB-INF/SSPRConfiguration.xml
> cp -v /install/unpacked/sspr_3.2.0.3/sspr.war
> /opt/netiq/idm/apps/tomcat/webapps
> chown -c novlua:idvadmin /opt/netiq/idm/apps/tomcat/webapps/sspr.war
> /opt/novell/jdk1.8.0_25/bin/jar -uvf
> /opt/netiq/idm/apps/tomcat/webapps/sspr.war WEB-INF/SSPRConfiguration.xml
> popd
> test -n $TMP_DIR && echo rm -r $TMP_DIR
>
> Norbert
>
>
>
>>>> On 04.06.2015 at 18:39, Geoffrey

> Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
>> On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
>>>
>>> With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
>>> supported to replace the files from IDM 4.5 One SSO Provider (OSP)
>>> 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications
>>> 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
>>> iac‑datasource‑factory.jar) patches *_before_* starting Tomcat for

> the
>>> 1st time? I was thinking this would save a few steps of having to
>>> delete the appropriate folders per the patch instructions.
>>>
>>> The Self Service Password Reset 3.2.0.3 patch, the documentation says
>>> this can be done with the sspr.war file. But was wondering if the same

>
>>> process could be used with the recently released IDM v4.5.1 patches on

>
>> a
>>> new installation?

>>
>> Steve will have the best view on this. Key issue is if there are DB
>> changes under the covers between 4.5, 4.5.02, and 4.5.1.
>>
>> The OSP.war and sspr.war file as far as I can tell just expand, so first

>
>>
>> expansion is fine. (I know that first WAR expansion on User App does at

>
>>
>> least one thing (Issues permission role requests for RRSD to process for

>
>>
>> defined Admin users), so I would not try this with UA.).
>>
>> The RRSD patch, same thing, should not matter if the new shim starts the

>
>>
>> first time or the second time.
>>
>>
>>
>>
>>
>>


0 Likes
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

Geoffrey Carman wrote:

> Is that how they delivered the OSP config? Built the WAR with a preconfigured xml file and then a stylesheet to update it. Clever.


Yes that is quite clever.
Alex McHugh - Knowledge Partner - Stavanger, Norway
Who are the Knowledge Partners
If you appreciate my comments, please click the Like button.
If I have resolved your issue, please click the Accept as Solution button.
0 Likes
Highlighted
Micro Focus Expert
Micro Focus Expert

Hi Geoffry,
I wrote this XSLT (http://paste.opensuse.org/25785891) to customize the
out-of-the-box settings for our environment.

Norbert



>>> On 19.06.2015 at 23:11, Geoffrey

Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
> Is that how they delivered the OSP config? Built the WAR with a
> preconfigured xml file and then a stylesheet to update it. Clever. I
> had wondered.
>
> Do you hve a copy of the XSLT? I do not see it on my IDM 4.5 Dvd
> install. Possibly Install Anywhere extracts it but I am not sure how to


>
> get the files out of the Install Anywhere binaries installer.
>
> On 6/19/2015 4:02 PM, Norbert Klasen wrote:
> > SSPR as delivered on the 4.5 media has a special configuration for
> > integration with IDM that is not in the standalone build. So you might


> want
> > to merge its WEB‑INF/SSPRConfiguration.xml into 3.2.0.3 before

starting
> up
> > tomcat. Something like:
> > # sspr update
> > pushd .
> > TMP_DIR=$(mktemp ‑d)
> > cd $TMP_DIR
> > unzip /opt/netiq/idm/apps/tomcat/webapps/sspr.war
> > WEB‑INF/SSPRConfiguration.xml
> > cp WEB‑INF/SSPRConfiguration.xml WEB‑INF/SSPRConfiguration.xml.bak
> > xsltproc /install/silentinstall/sspr‑customizations.xslt
> > WEB‑INF/SSPRConfiguration.xml.bak > WEB‑INF/SSPRConfiguration.xml
> > cp ‑v /install/unpacked/sspr_3.2.0.3/sspr.war
> > /opt/netiq/idm/apps/tomcat/webapps
> > chown ‑c novlua:idvadmin /opt/netiq/idm/apps/tomcat/webapps/sspr.war
> > /opt/novell/jdk1.8.0_25/bin/jar ‑uvf
> > /opt/netiq/idm/apps/tomcat/webapps/sspr.war

> WEB‑INF/SSPRConfiguration.xml
> > popd
> > test ‑n $TMP_DIR && echo rm ‑r $TMP_DIR
> >
> > Norbert
> >
> >
> >
> >>>> On 04.06.2015 at 18:39, Geoffrey

> > Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
> >> On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
> >>>
> >>> With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
> >>> supported to replace the files from IDM 4.5 One SSO Provider (OSP)
> >>> 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications


> >>> 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
> >>> iac‑datasource‑factory.jar) patches *_before_* starting Tomcat for


> > the
> >>> 1st time? I was thinking this would save a few steps of having to
> >>> delete the appropriate folders per the patch instructions.
> >>>
> >>> The Self Service Password Reset 3.2.0.3 patch, the documentation says


> >>> this can be done with the sspr.war file. But was wondering if the

same
> >
> >>> process could be used with the recently released IDM v4.5.1 patches on


> >
> >> a
> >>> new installation?
> >>
> >> Steve will have the best view on this. Key issue is if there are DB
> >> changes under the covers between 4.5, 4.5.02, and 4.5.1.
> >>
> >> The OSP.war and sspr.war file as far as I can tell just expand, so

> first
> >
> >>
> >> expansion is fine. (I know that first WAR expansion on User App does


> at
> >
> >>
> >> least one thing (Issues permission role requests for RRSD to process

> for
> >
> >>
> >> defined Admin users), so I would not try this with UA.).
> >>
> >> The RRSD patch, same thing, should not matter if the new shim starts

> the
> >
> >>
> >> first time or the second time.
> >>
> >>
> >>
> >>
> >>
> >>

>
>
>
>

--
Norbert
0 Likes
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

On 6/30/2015 6:40 PM, Norbert Klasen wrote:
> Hi Geoffry,
> I wrote this XSLT (http://paste.opensuse.org/25785891) to customize the
> out-of-the-box settings for our environment.


Clever. But do you mean that the installer does this, or this is a
tweak you add on afterwards?


> Norbert
>
>
>
>>>> On 19.06.2015 at 23:11, Geoffrey

> Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
>> Is that how they delivered the OSP config? Built the WAR with a
>> preconfigured xml file and then a stylesheet to update it. Clever. I
>> had wondered.
>>
>> Do you hve a copy of the XSLT? I do not see it on my IDM 4.5 Dvd
>> install. Possibly Install Anywhere extracts it but I am not sure how to

>
>>
>> get the files out of the Install Anywhere binaries installer.
>>
>> On 6/19/2015 4:02 PM, Norbert Klasen wrote:
>>> SSPR as delivered on the 4.5 media has a special configuration for
>>> integration with IDM that is not in the standalone build. So you might

>
>> want
>>> to merge its WEB‑INF/SSPRConfiguration.xml into 3.2.0.3 before

> starting
>> up
>>> tomcat. Something like:
>>> # sspr update
>>> pushd .
>>> TMP_DIR=$(mktemp ‑d)
>>> cd $TMP_DIR
>>> unzip /opt/netiq/idm/apps/tomcat/webapps/sspr.war
>>> WEB‑INF/SSPRConfiguration.xml
>>> cp WEB‑INF/SSPRConfiguration.xml WEB‑INF/SSPRConfiguration.xml.bak
>>> xsltproc /install/silentinstall/sspr‑customizations.xslt
>>> WEB‑INF/SSPRConfiguration.xml.bak > WEB‑INF/SSPRConfiguration.xml
>>> cp ‑v /install/unpacked/sspr_3.2.0.3/sspr.war
>>> /opt/netiq/idm/apps/tomcat/webapps
>>> chown ‑c novlua:idvadmin /opt/netiq/idm/apps/tomcat/webapps/sspr.war
>>> /opt/novell/jdk1.8.0_25/bin/jar ‑uvf
>>> /opt/netiq/idm/apps/tomcat/webapps/sspr.war

>> WEB‑INF/SSPRConfiguration.xml
>>> popd
>>> test ‑n $TMP_DIR && echo rm ‑r $TMP_DIR
>>>
>>> Norbert
>>>
>>>
>>>
>>>>>> On 04.06.2015 at 18:39, Geoffrey
>>> Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
>>>> On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
>>>>>
>>>>> With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
>>>>> supported to replace the files from IDM 4.5 One SSO Provider (OSP)
>>>>> 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications

>
>>>>> 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
>>>>> iac‑datasource‑factory.jar) patches *_before_* starting Tomcat for

>
>>> the
>>>>> 1st time? I was thinking this would save a few steps of having to
>>>>> delete the appropriate folders per the patch instructions.
>>>>>
>>>>> The Self Service Password Reset 3.2.0.3 patch, the documentation says

>
>>>>> this can be done with the sspr.war file. But was wondering if the

> same
>>>
>>>>> process could be used with the recently released IDM v4.5.1 patches on

>
>>>
>>>> a
>>>>> new installation?
>>>>
>>>> Steve will have the best view on this. Key issue is if there are DB
>>>> changes under the covers between 4.5, 4.5.02, and 4.5.1.
>>>>
>>>> The OSP.war and sspr.war file as far as I can tell just expand, so

>> first
>>>
>>>>
>>>> expansion is fine. (I know that first WAR expansion on User App does

>
>> at
>>>
>>>>
>>>> least one thing (Issues permission role requests for RRSD to process

>> for
>>>
>>>>
>>>> defined Admin users), so I would not try this with UA.).
>>>>
>>>> The RRSD patch, same thing, should not matter if the new shim starts

>> the
>>>
>>>>
>>>> first time or the second time.
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>

>>
>>
>>
>>


0 Likes
Highlighted
Absent Member.
Absent Member.

On 06/30/2015 07:51 PM, Geoffrey Carman wrote:
> On 6/30/2015 6:40 PM, Norbert Klasen wrote:
>> Hi Geoffry,
>> I wrote this XSLT (http://paste.opensuse.org/25785891) to customize the
>> out-of-the-box settings for our environment.

>
> Clever. But do you mean that the installer does this, or this is a
> tweak you add on afterwards?
>
>
>> Norbert
>>
>>
>>
>>>>> On 19.06.2015 at 23:11, Geoffrey

>> Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
>>> Is that how they delivered the OSP config? Built the WAR with a
>>> preconfigured xml file and then a stylesheet to update it. Clever. I
>>> had wondered.
>>>
>>> Do you hve a copy of the XSLT? I do not see it on my IDM 4.5 Dvd
>>> install. Possibly Install Anywhere extracts it but I am not sure how to

>>
>>>
>>> get the files out of the Install Anywhere binaries installer.
>>>
>>> On 6/19/2015 4:02 PM, Norbert Klasen wrote:
>>>> SSPR as delivered on the 4.5 media has a special configuration for
>>>> integration with IDM that is not in the standalone build. So you might

>>
>>> want
>>>> to merge its WEB‑INF/SSPRConfiguration.xml into 3.2.0.3 before

>> starting
>>> up
>>>> tomcat. Something like:
>>>> # sspr update
>>>> pushd .
>>>> TMP_DIR=$(mktemp ‑d)
>>>> cd $TMP_DIR
>>>> unzip /opt/netiq/idm/apps/tomcat/webapps/sspr.war
>>>> WEB‑INF/SSPRConfiguration.xml
>>>> cp WEB‑INF/SSPRConfiguration.xml WEB‑INF/SSPRConfiguration.xml.bak
>>>> xsltproc /install/silentinstall/sspr‑customizations.xslt
>>>> WEB‑INF/SSPRConfiguration.xml.bak > WEB‑INF/SSPRConfiguration.xml
>>>> cp ‑v /install/unpacked/sspr_3.2.0.3/sspr.war
>>>> /opt/netiq/idm/apps/tomcat/webapps
>>>> chown ‑c novlua:idvadmin /opt/netiq/idm/apps/tomcat/webapps/sspr.war
>>>> /opt/novell/jdk1.8.0_25/bin/jar ‑uvf
>>>> /opt/netiq/idm/apps/tomcat/webapps/sspr.war
>>> WEB‑INF/SSPRConfiguration.xml
>>>> popd
>>>> test ‑n $TMP_DIR && echo rm ‑r $TMP_DIR
>>>>
>>>> Norbert
>>>>
>>>>
>>>>
>>>>>>> On 04.06.2015 at 18:39, Geoffrey
>>>> Carman<geoffreycarmanNOSPAM@NOSPAMgmail.com> wrote:
>>>>> On 6/4/2015 10:54 AM, rsimonsatidentropy wrote:
>>>>>>
>>>>>> With a *_new_* install of IDM v4.5 using Tomcat on Linux, is it
>>>>>> supported to replace the files from IDM 4.5 One SSO Provider (OSP)
>>>>>> 4.5.0.2 (osp.war and ospconf*.jar) and IDM 4.5 Identity Applications

>>
>>>>>> 4.5.1 (dash.war, IDMProv.war, landing.war, homepagelogging.xml and
>>>>>> iac‑datasource‑factory.jar) patches *_before_* starting Tomcat for

>>
>>>> the
>>>>>> 1st time? I was thinking this would save a few steps of having to
>>>>>> delete the appropriate folders per the patch instructions.
>>>>>>
>>>>>> The Self Service Password Reset 3.2.0.3 patch, the documentation says

>>
>>>>>> this can be done with the sspr.war file. But was wondering if the

>> same
>>>>
>>>>>> process could be used with the recently released IDM v4.5.1
>>>>>> patches on

>>
>>>>
>>>>> a
>>>>>> new installation?
>>>>>
>>>>> Steve will have the best view on this. Key issue is if there are DB
>>>>> changes under the covers between 4.5, 4.5.02, and 4.5.1.
>>>>>
>>>>> The OSP.war and sspr.war file as far as I can tell just expand, so
>>> first
>>>>
>>>>>
>>>>> expansion is fine. (I know that first WAR expansion on User App does

>>
>>> at
>>>>
>>>>>
>>>>> least one thing (Issues permission role requests for RRSD to process
>>> for
>>>>
>>>>>
>>>>> defined Admin users), so I would not try this with UA.).
>>>>>
>>>>> The RRSD patch, same thing, should not matter if the new shim starts
>>> the
>>>>
>>>>>
>>>>> first time or the second time.
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>
>>>
>>>
>>>

>

Greetings Geoffrey,
What we did in the installer is not what Norbert has outlined.

--

Sincerely,
Steven Williams
Lead Software Engineer
NetIQ
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.