What are the Vigilent Security Agent for iSeries version 7.5 system requirements for upgrading to IB (NETIQKB42768)

  • 7742768
  • 02-Feb-2007
  • 08-Oct-2007

Resolution

goal
What are the Vigilent Security Agent for iSeries version 7.5 system requirements for upgrading to IBM OS V5R3?

goal
What do I need to do and what must I consider when upgrading to IBM OS V5R3?

fact
VigilEnt Security Agent for iSeries 7.5

fix
  • First, ensure that you are on at least version 7.5 with the associated PTFs.  If you have upgraded to version 8.0, see Knowledge Base article NETIQKB50204.  It is important to apply at least  PTF 1C02003 and 1C02009 (or their successors).  To find the version of VigilEnt Security Agent for iSeries currently installed:
    1. From a command line, type PSMENU, press Enter and check the versions for PSAudit and PSSecure (located to the right of the menu options for each).
    2. To determine the existence of PTF 1C02003 and/or 1C02009, type DSPPTF 1PSC001 from a command line.  The PTF numbers will be in the PTF ID column.  There are additional PTFs available for version 7.5 by download from https://www.netiq.com/support/vsa/extended/hotfixes_iseries.asp or by e-mail request to Technical Support at support@netiq.com.
  • Steps 1 - 6 below should be completed prior to beginning the V5R3 OS upgrade: 
    1. Permanently apply all NetIQ PTFs using the following instructions:
      1. Type APYPTF from a command line to apply the PTFs.  It is not necessary to IPL in doing this. The command can be entered and run interactively.
      2. From a command line, complete the following:

        APYPTF LICPGM(1PSA001) press F4 to prompt and indicate the following:

        Product . . . . . . . . . . . . > 1PSA001                                F4 for list
        Release . . . . . . . . . . . . *ONLY                                     *ONLY, VxRxMx
        PTF numbers to select . . . . . *ALL                                 Character value, *ALL
        + for more values
        PTF numbers to omit . . . . . .                                         Character value
        + for more values
        Extent of change . . . . . . . . *PERM                                *TEMP, *PERM
        Delayed PTFs . . . . . . . . . . *NO                                    *NO, *YES, *IMMDLY


        Note:  Do the same for license programs 1PSC001, 1PSD001, 1PSI001, 1PSP001, 1PSS001 and 1PSV001. It is possible there will be no PTFs for some of them.

    2. Type WRKREGINF from a command line and scroll down to Exit Point QIBM_QTMT_WSG - WSG Server Sign-On Validation if it exists on your machine.  If it is not present.
      , skip to step 5 below.
    3. Select Option 8=Work with exit programs.
    4. If you see Exit Program NW0001E in library PSCOMMON , select Option 4 to remove it. Beginning with OS V5R2, this Exit Point is no longer registered. The OS upgrade de-registers it, but it cannot do this if there is an Exit Program associated with it.
    5. Look at Exit Point QIBM_QTG_DEVINIT and make note of the exit program if one is registered. Some OS/400 upgrades remove the exit program. Once you have finished the OS upgrade, you will want to put the Exit Program that you noted back on this Exit Point if it is missing.
    6. If you are using PSSecure, Profile and Password Management to monitor user profiles, you need to remove the Q* entry from the 'Exclusions' list and hold the PSPROFILE job (if you have it scheduled). The V5R3 upgrade can remove and replace one of the IBM "Q" profiles.  To remove the entry:
      1. Type WRKJOBSCDEand look for job PSPROFILE. If it is scheduled, put it on HOLD.
      2. From PSMENU, select Option 2 - PSSecure Option 2 Profile and Password Management.
      3. Select Option 1 General Options Menu, press Enter.
      4. Select Option 17 User Profile Exclusions, press Enter. 
      5. Remove the entry for Q*.
  • Once the upgrade is finished, go back through these steps to put the "Q*" entry back in the list and release the PSPROFILE scheduled job (if one existed). If you are not using PPM, this step might not be necessary but it is recommended.
  • Be sure to obtain and apply NetIQ PTF 1C02009 (or its successor), which allows the ZPSE subsystem to be started, resolves an issue with the RRM Collected Entries report and enables Vigilent Password Manager (VPM) to function properly with the platform.  This PTF can be applied if on at least V5R1 but is not required until V5R3. Be sure to download the IBM file noted in the Special Instructions/Notes and execute all instructions that accompany the file once you have upgraded to V5R3.
.


Additional Information

Formerly known as NETIQKB42768