Upgrade configuration

Upgrade configuration

After we install the upgrade software on an ISAM appliance, we must complete several configuration tasks. Review the following tasks, and perform the ones that are appropriate for your installation.

Upgrade task See

Run isamcfg to obtain configuration settings for WebSEAL and Security Verify Access. Use the isamcfg tool

If we use DB2 as an external runtime database Upgrade a DB2 external runtime database (appliance versions earlier than 9.0.0.0)
Upgrade external databases with the dbupdate tool (appliance at version 9.0.0.0 and later)

If we use Oracle as an external runtime database Upgrade an Oracle external runtime database (appliance versions earlier than 9.0.0.0)
Upgrade external databases with the dbupdate tool (appliance at version 9.0.0.0 and later)

After an upgrade, the setting for one-time password authentication is set to run in backward compatibility mode. Disable this mode. Set backward compatibility mode for one-time password

If you customized any template files, upgrade them. Update template files

The new role membership features in later versions of the appliance are granted the permission of None by default. Configure the permissions for these new role membership features, if necessary. Manage roles of users and groups

To limit the number of OAuth tokens per user per definition, update the mapping rule. Update PreTokenGeneration to limit OAuth tokens

Review and update some existing web reverse proxy instance point of contact settings for the Advanced Access Control runtime. Review existing web reverse proxy instance point of contact settings

After completing the appropriate configuration tasks, go to Getting started with Advanced Access Control.

Upgrade external databases with the dbupdate tool (appliance at version 9.0.0.0 and later)

Upgrade a DB2 external runtime database (appliance versions earlier than 9.0.0.0)

Upgrade an Oracle external runtime database (appliance versions earlier than 9.0.0.0)

Set backward compatibility mode for one-time password

Update template files

Update PreTokenGeneration to limit OAuth tokens

Review existing web reverse proxy instance point of contact settings

Upgrade the signing algorithms of existing policy servers

Parent topic: Advanced Access Control configuration

Upgrade task	See
Run isamcfg to obtain configuration settings for WebSEAL and Security Verify Access.	Use the isamcfg tool
If we use DB2 as an external runtime database	Upgrade a DB2 external runtime database (appliance versions earlier than 9.0.0.0) Upgrade external databases with the dbupdate tool (appliance at version 9.0.0.0 and later)
If we use Oracle as an external runtime database	Upgrade an Oracle external runtime database (appliance versions earlier than 9.0.0.0) Upgrade external databases with the dbupdate tool (appliance at version 9.0.0.0 and later)
After an upgrade, the setting for one-time password authentication is set to run in backward compatibility mode. Disable this mode.	Set backward compatibility mode for one-time password
If you customized any template files, upgrade them.	Update template files
The new role membership features in later versions of the appliance are granted the permission of None by default. Configure the permissions for these new role membership features, if necessary.	Manage roles of users and groups
To limit the number of OAuth tokens per user per definition, update the mapping rule.	Update PreTokenGeneration to limit OAuth tokens
Review and update some existing web reverse proxy instance point of contact settings for the Advanced Access Control runtime.	Review existing web reverse proxy instance point of contact settings