NetIQ Access Manager 5.0 Installation and Upgrade Guide

NetIQ Access Manager 5.0 Installation and Upgrade Guide

Planning Your Access Manager Environment

Deployment Models

Access Manager Versus Access Manager Appliance

Network Requirements

System Requirements

Recommended Installation Scenarios

Deploying Access Manager on Public Cloud

Installing Access Manager Components in NAT Environments

Setting Up Firewalls

Using Certificates for Secure Communication

Protecting an Identity Server Through Access Gateway

Installing Access Manager Components on On-Premises Servers

Installing Administration Console

Installing Administration Console

Logging In to Administration Console

Enabling Administration Console for Multiple Network Interface Cards

Installing Identity Server

Prerequisites for Installing Identity Server

Installing Identity Server

Verifying Identity Server Installation

Translating Identity Server Configuration Port

Installing Access Gateway

Feature Comparison of Different Types of Access Gateways

Installing Access Gateway Appliance

Installing Access Gateway Service

Verifying Access Gateway Installation

Installing Analytics Server

Installing Packages and Dependent RPMs on RHEL for Access Manager

Uninstalling Components

Uninstalling Identity Server

Reinstalling an Identity Server to a New Hard Drive

Uninstalling Access Gateway

Uninstalling Administration Console

Uninstalling Analytics Server Service

Uninstalling Access Manager Containers

Uninstalling the Analytics Server Containers

Installing Access Manager Components on Cloud

Deploying Access Manager on Microsoft Azure

Prerequisites for Deploying Access Manager on Microsoft Azure

Deployment Procedure

(Optional) Azure Load Balancer

Deploying Access Manager on Amazon Web Services EC2

Prerequisites for Deploying Access Manager on AWS

Deployment Procedure

Auto Scaling Access Manager on AWS

Monitoring Access Manager in AWS Using CloudWatch

Deploying Access Manager in Multiple AWS Regions

Installing Access Manager Containers

Planning Access Manager Container Deployment

What Is Docker and Why Should You Use It

Basic Terminologies of Kubernetes

Planning your Access Manager Deployment on Kubernetes

Deploying Access Manager on On-Premises Linux Servers

Prerequisites for Deploying Access Manager Containers on On-Premises Linux Servers

Deploying Access Manager Containers on On-Premises Linux Servers

Deploying Analytics Server Containers on On-Premises Linux Servers

Deploying Access Manager Containers on AWS

Prerequisites for Deploying Access Manager Containers on AWS

Deploying Access Manager Containers on AWS

Deploying Analytics Server Containers on AWS

Deploying Access Manager Containers on Azure Kubernetes Services

Prerequisites for Deploying Access Manager Containers on Azure Kubernetes Services

Deploying Access Manager Containers on Azure Kubernetes Services

Deploying Analytics Server Containers on Azure Kubernetes Services

Scaling Access Manager Components

Scaling Identity Server

Scaling Access Gateway

Upgrading or Migrating Access Manager

Prerequisites for Upgrading or Migrating Access Manager

Maintaining Customized JSP Files for Identity Server

Maintaining Customized JSP Files for Access Gateway

Upgrading Administration Console

Upgrading Identity Server

Upgrading Identity Server

(Conditional) Upgrading the Database Schema for Risk Service

Upgrading Access Gateway

Upgrading Access Gateway Appliance

Migrating Access Gateway Appliance

Upgrading Access Gateway Service

Upgrading Analytics Server

Upgrade Analytics Server Cluster

Upgrading Access Manager Containers

Upgrading Access Manager Containers

Upgrading Analytics Server Containers

Post Upgrade Considerations

Database Schema Changes for Risk Service

Configuration Files-specific Changes

Changes in Identity Server and Access Gateway Processes

Schema Changes of Attributes

Getting the Latest OpenSSL Updates for Access Manager

Installing or Updating Security Patches for Access Gateway Appliance

Updating Security Patches for Access Gateway Service

Upgrade Assistant

Migrating Access Manager from Windows to RHEL

Migrating Administration Console from Windows to RHEL

Migrating Identity Server from Windows to RHEL

Migrating Access Gateway from Windows to RHEL

Troubleshooting Installation and Upgrade

Troubleshooting Installation

Secondary Administration Console Installation Fails

(RHEL) The Health Status of Administration Console, Identity Server, and Access Gateway after Installation Is Not Green

Troubleshooting Identity Server Import and Installation

Access Gateway Appliance Installation Fails Due to an XML Parser Error

Troubleshooting Access Gateway Import

Troubleshooting Access Manager Container Deployment

Troubleshooting Analytics Server

Rsyslog Fails to Start After Access Manager Installation

Troubleshooting Upgrade

Access Gateway Throws a 403 Forbidden Page Error for a Resource Protected by a Form Fill Policy

Troubleshooting Administration Console Upgrade

Upgrading Secondary Administration Console Fails with an Error

Issue in SSL Communication between Access Gateway and Web Applications

Customized Login Pages Are Missing After Upgrading Access Manager

The Email OTP JSP Page Does Not Render Properly on Internet Explorer 11

X509 Authentication Does Not Work and Throws HTTP 500 Error After Upgrade

Changes Required in server.xml for Apache Tomcat 8.5.51 after Upgrading to Access Manager 4.5 Service Pack 2

Access Gateway Fails to Start After Upgrading SLES 11 SP3 to SLES 12

Java Communication Channel Processes Run as Non-Root User After Upgrading to Access Manager 5.0

Rsyslog Fails to Start After Access Manager Upgrade

(Kubernetes) OSP/OAuth2-based Authentication Fails after Upgrading Access Manager

Troubleshooting Upgrade Assistant

Configuring Administration Console Ports 9000 and 9001 to Listen on the Specified Address

Recommendations for Scaling Access Manager Components in Public Cloud

Scaling Up the Access Manager Nodes

Scaling Down the Access Manager Nodes

Denormalizing SQL Database