IDM 7.2.1

Migrate your configuration

This chapter covers the steps required to migrate your IDM configuration to IDM 7.2.1.

There is no automated way to migrate a customized configuration to IDM 7.2.1, so you must migrate customized configuration files manually. Assuming you are upgrading from IDM 7.1.x, there are three ways to do this:

  • Use the new IDM 7.2.1 configuration files as a base, and copy any customizations you have made to the new files.

    This is the preferred option, particularly if you have used version control on your configuration and can determine the exact changes you have applied.

  • Use your existing configuration files as a base, and add any new IDM 7.2.1 configuration to your existing files.

  • Use your existing configuration "as is" with no IDM 7.2.1 changes.

In most cases, a customized IDM 7.1.x configuration will work without further modification on IDM 7.2.1.

Migrate configuration files

For customized files in your project’s conf/ directory, check that the customizations are compatible with the changes outlined in Incompatible changes. If there are no incompatible changes, either copy your old configuration files to your IDM 7.2.1 installation, or copy any customization into the corresponding new configuration files.

If you create custom configuration files, ForgeRock recommends not using spaces or special characters in the filenames, in accordance with the OSGi specification.

Migrate boot.properties

On the IDM 7.2.1 installation, edit the resolver/boot.properties file to match any customizations that you made on your IDM 7.1.x server. Specifically, check the following elements:

  • The HTTP, HTTPS, and mutual authentication ports.

    If you changed the default ports in your IDM 7.1.x deployment, make those same changes in the new boot.properties file.

  • Check that the keystore and truststore passwords match the current passwords for the keystore and truststore of your existing IDM deployment.

Migrate security settings

Copy the contents of your IDM 7.1.x security/ folder to the IDM 7.2.1 installation.

If you do not copy your old truststore and keystore files to your new instance, you will be unable to decrypt anything that was encrypted by your old instance of IDM.

Migrate custom scripts

Migrate any custom scripts or default scripts that you have modified to the script directory of your IDM 7.2.1 instance. In general, custom and customized scripts should be located in the openidm/script directory of your existing IDM deployment.

For custom scripts, review Incompatible changes. If you are confident that the scripts will work as intended on IDM 7.2.1, copy these scripts to the new instance.

If you modified a default IDM script, compare the default versions of the IDM 7.1.x and IDM 7.2.1 scripts. If nothing has changed between the default versions, review your customizations against Incompatible changes. If a default script has changed since the IDM 7.1.x release, test that your customizations work with the new default script. If you are confident that your changes will work as intended on the new version, copy the customized scripts to the new script directory.

If you modify any shell scripts, such as startup.sh, you must migrate your changes manually to the new version of the script.

Migrate custom bundles

If your existing deployment includes any custom JAR files in the bundles directory, migrate these to the new deployment. Pay particular attention to any files that support JDBC database drivers.

Migrate provisioner files

Change any customized provisioner configurations in your existing deployment to point to the connectors that are provided with IDM 7.2.1. Specifically, make sure that the connectorRef properties reflect the new connector versions, where applicable. For example:

"connectorRef" : {
    "bundleName": "org.forgerock.openicf.connectors.ldap-connector",
    "bundleVersion": "[1.4.0.0,1.6.0.0)",
    "connectorName": "org.identityconnectors.ldap.LdapConnector"
},

Alternatively, copy the connector .jar files from your existing deployment into the openidm/connectors directory of the new installation.

Migrate UI customizations

If you have customized the admin UI, review any custom UI files from your IDM 7.1.x deployment (generally in the openidm/ui/admin/extension directory), and compare them against the corresponding IDM 7.2.1 files.

For each customized file, copy the corresponding default IDM 7.2.1 UI files to a openidm/ui/admin/extension directory on the new instance.

Apply your customizations to files in the new openidm/ui/admin/extension directory.

Copyright © 2010-2022 ForgeRock, all rights reserved.