These release notes accompany the delivery of the Symantec VIP Enterprise Gateway (VIP EG) version 9.4.1 release. This release is an optional upgrade for implementation of VIP Enterprise Gateway v9.3.x, but is mandatory for implementations of VIP Enterprise Gateway v9.4.0
Not
e
:
This mandatory patch is not available through the LiveUpdate server. You must apply this patch manually.
What’s New in VIP Enterprise Gateway 9.4.1
T
he VIP EGV 9.4.1 Mandatory patch addresses the following issues issues introduced in VIP Enterprise Gateway v9.4.0. These issues do not affect VIP Enterprise Gateway v9.3.x; however, you may choose to install this patch
to upgrade directly to VIP Enterprise Gateway v9.4.1:
·
Abnormal termination of the Validation server when a user enters password that contains less than six characters in the Password field
·
VIP SelfService Portal IdP does not start if you have used UserPrincipal Name (UPN) in the User DN field while configuring the User Store in VIPEG V 9.4.0
·
LDAP Synchronization does not work when you customize the HTTP Proxy serverfor header access restrictions.
·
Abnormal termination of LiveUpdate client that results in the non-responsive Download page.
Pre-requisites
Before you apply the VIP EG V 9.4.1 patch, you must have installed and configured VIP Enterprise Gateway v9.3.x or v9.4.0
Upgrading to the VIP EG V 9.4.1 Patch Manually
This section describes how to download the updates from VIP Manager and upgrade to the VIP EG V 9.4.1 patch manually. The <VRSN_MAUTH_HOME> directory in the following procedures refers to the directory where VIP EG is installed.
On Windows: Upgrading from VIP EG 9.3.x
Not
e
:
Y
ou must run the command prompt as an user with administrator privileges to apply the updates manually
.
·
Download the
VIP EG_Upgrade_9_3_x_to_9.4.1_WINDOWS.zip
f
ile from VIP Manager. Unzip the file and extract the contents to a temporary location (for example,
C:\temp\
).
·
B
a
c
kup the
<
VRSN_MAUTH_HOME>\tools\actionScript.jar file.
·
C
opy the
actionScript.jar
f
ile from the temporary folder (for example,
C:\temp\
VIPEG_Upgrade_9_3_x_to_9.4.1_WINDOWS
)
and paste it in the
<VRSN_MAUTH_HOME>\tools
f
older.
·
(T
o upgrade from V 9.3.x to V 9.4.1 directly
) Use a standard text editor to add the following line (in bold) to the
<VRSN_MAUTH_HOME>\tools\actionScript.bat
f
ile:
if "%OS%" == "Windows_NT" setlocal
setVRSN_MAUTH_HOME=
if "%VRSN_MAUTH_HOME%"=="" goto usage
Set the path to the directory where VIP EG is installed as the value for VRSN_MAUTH_HOME.
For example, if you have installed VIP EG at C:\Program Files(x86)\Symantec\VIP_Enterprise_Gateway, the value for VRSN_MAUTH_HOME will be as follows:
setVRSN_MAUTH_HOME=C:\ProgramFiles(x86)\Symantec\VIP_Enterprise_Gateway
·
Fr
om the
<
VRSN_MAUTH_HOME>\tools
di
r
ectory,run the following command from a CommandLine:
actionscript.bat<temporary location of the patch files> 9.4.1
Y
ou must use quotation marks around the path if it includes spaces
F
o
r example,
actionscript.bat"C:\temp\
VIPEG_Upgrade_9_3_x_to_9.4.1_WINDOWS"
9.4.1
T
he VIP EGV 9.4.1 patch is now applied and a directory with backup files is created at the directory one level up of the
<VRSN_MAUTH_HOME>
directory
·
When the VIP EG console is available after you upgrade to VIP EG V 9.4.1, sign-in to the console and start the required services.
On Windows: Upgrading from VIP EG 9.4.0
Not
e
:
Y
ou must run the command prompt as an user with administrator privileges to apply the updates manually
.
·
Download the
VIPEG_Upgrade_9_4_0_to_9.4.1_WINDOWS.zip
f
ile from VIP Manager. Unzip the file and extract the contents to a temporary location (for example,
C:\temp\
).
·
B
a
c
kup the
<
VRSN_MAUTH_HOME>\tools\actionScript.jar file.
·
C
opy the
actionScript.jar
f
ile from the temporary folder(for example,
C:\temp\ VIPEG_Upgrade_9_4_0_to_9.4.1_WINDOWS
)
and paste it in the
<VRSN_MAUTH_HOME>\tools
f
older.
·
U
sea standard text editor to open the
actionScript.bat
f
ile that is existing in the
<VRSN_MAUTH_HOME>\tools
directory and ensure that the file contains the path highlighted below:
if "%OS%" == "Windows_NT" setlocal
setVRSN_MAUTH_HOME=
if "%VRSN_MAUTH_HOME%"=="" goto usage
Set the path to the directory where VIP EG is installed as the value for VRSN_MAUTH_HOME.
For example, if you have installed VIP EG at C:\Program Files(x86)\Symantec\VIP_Enterprise_Gateway, the value for VRSN_MAUTH_HOME will be as follows:
setVRSN_MAUTH_HOME=C:\ProgramFiles(x86)\Symantec\VIP_Enterprise_Gateway
·
Fr
omthe
<
VRSN_MAUTH_HOME>\tools
di
r
ectory, run the following command from a Command Line:
actionscript.bat<temporarylocationofthepatchfiles>9.4.1
Y
ou must use quotation marks around the path if it includes spaces
F
o
r example,
actionscript.bat"C:\temp\VIPEG_Upgrade_9_4_0_to_9.4.1_WINDOWS"9.4.1
T
he VIP EGV 9.4.1 patch is now applied and a directory with backup filesis created at the directory one level up of the
<VRSN_MAUTH_HOME>
directory
·
When the VIP EG console is available after you upgrade to VIP EG V 9.4.1, sign-in to the console and start the required services
On Linux: Upgrading from VIP EG 9.3.x
Not
e
:
The user who does this upgrade must be the same user who installed the previous version of VIP EG.
·
Download the
VIPEG_Upgrade_9_3_x_to_9.4.1_LINUX.tar
f
ile from VIPManager. Extract the contents to a temporary location (for example,
/home/temp/
).
·
B
a
c
kup the
<
VRSN_MAUTH_HOME>\tools\actionScript.jar file.
·
Copy the actionScript.jar file from the temporary folder (for example, /home/temp/VIPEG_Upgrade_9_3_x_to_9.4.1_LINUX) and paste it in the <VRSN_MAUTH_HOME>/tools directory.
·
From the <VRSN_MAUTH_HOME>/tools directory, run the following command using a shell prompt:
actionscript.sh <temporary location of the patch files> 9.4.1
You must use quotation marks around the path if it includes spaces.
For example, actionscript.sh "/home/temp/VIPEG_Upgrade_9_3_x_to_9.4.1_LINUX " 9.4.1
The VIP EG V 9.4.1 patch is applied and a directory with backup files is created at the directory one level up of the <VRSN_MAUTH_HOME> directory.
·
Start the VIP Enterprise Gateway service and other required services manually.
On Linux: Upgrading from VIP EG 9.4.0
Not
e
:
The user who does this upgrade must be the same user who installed the previous version of VIP EG.
·
Download the VIPEG_Upgrade_9_4_0_to_9.4.1_LINUX.tar file from VIP Manager. Extract the contents to a temporary location (for example, /home/temp/).
·
Back up the <VRSN_MAUTH_HOME>/tools/actionScript.jar file.
·
Copy the actionScript.jar file from the temporary folder (for example, /home/temp/VIPEG_Upgrade_9_4_0_to_9.4.1_LINUX) and paste it in the <VRSN_MAUTH_HOME>/tools directory.
·
Ensure that the VRSN_MAUTH_HOME path is set in your actionScript.sh script.
For example, if you have installed VIP EG at /opt/Symantec/VIP_Enterprise_Gateway, the value for
VRSN_MAUTH_HOME will be as follows:
export VRSN_MAUTH_HOME=/opt/Symantec/VIP_Enterprise_Gateway
·
From the <VRSN_MAUTH_HOME>/tools directory, run the following command using a shell prompt:
actionscript.sh <temporary location of the patch files> 9.4.1
You must use quotation marks around the path if it includes spaces.
For example, actionscript.sh "/home/temp/VIPEG_Upgrade_9_4_0_to_9.4.1_LINUX " 9.4.1
The VIP EG V 9.4.1 patch is applied and a directory with backup files is created at the directory one level up of the <VRSN_MAUTH_HOME> directory.
·
Start the VIP Enterprise Gateway service and other required services manually
Rolling Back VIP EG 9.4.1
Rolling back returns your VIP EG installation to your previous version. This section describes the following roll back processes:
The <VRSN_MAUTH_HOME> directory in the following procedures refers to the directory where VIP EG is installed.
Rolling Back to VIP EG V 9.3.x
Complete the following steps to roll back VIP EG V 9.4.1 to the VIP EG V 9.3.x:
Not
e
:
When you upgraded VIP EG to version 9.4.1, the restore script (restoreVIPEG93.vbs for Windows and
restoreVIPEG93.sh for Linux) was copied to the backup directory
For example, on the Windows platform, you can find the restoreVIPEG93.vbs file at: C:\....\Symantec\VIP_Enterprise_Gateway9.3.bak\tools\restoreVIPEG93.vbs
To restore VIP EG V 9.3.x, you require the following:
·
Installation .zip (Windows) or .tar (Linux) files and documentation for VIP Enterprise Gateway 9.3.x.
·
The path to the backup directory that was created when you upgraded to VIP Enterprise Gateway 9.4.1.
Typically, this is C:\Program Files\Symantec\VIP_Enterprise_Gateway9.3.bak (Windows) or /opt/ Symantec/VIP_Enterprise_Gateway9.3.bak (Linux).
·
After you uninstall VIP EG V 9.4.1, complete the following procedures to restore VIP Enterprise Gateway 9.3.x:
1.
Reinstall VIP Enterprise Gateway version 9.3 using the appropriate installation scripts. You must reinstall in the same directory where it was originally installed.
2.
After you install VIP Enterprise Gateway 9.3, stop the VIP Enterprise Gateway service.
3.
Navigate to the VIP_Enterprise_Gateway9.3.bak\tools directory and run the restore script based on the platform on which you have installed VIP Enterprise Gateway:
Ø
On Windows, run restoreVIPEG93.vbs.
Ø
On Linux, run restoreVIPEG93.sh.
4.
You are prompted for the path to the 9.3.bak backup directory, and for the path where you installed VIP Enterprise Gateway 9.3.
5.
Restart the VIP Enterprise Gateway service and other required services. Your previous version of VIP EG is restored after you perform this procedure.
Rolling Back to VIP EG V 9.4.0
Complete the following steps to roll back VIP EG V 9.4.1 to the VIP EG V 9.4.0:
·
From the <VRSN_MAUTH_HOME>\tools directory, run the restoreScript from a Command Line as follows:
-
On Windows: Run the <VRSN_MAUTH_HOME>\tools\restoreScript.bat 9.4.1 command.
-
On Linux: Run the <VRSN_MAUTH_HOME>>/tools/restoreScript.sh 9.4.1 command.
·
When the VIP EG console is available after you roll back to the previous version, sign-in to the console and start the required services
The software described in this book is furnished under a license agreement and maybe used only in accordance with the terms of the agreement.
Last updated May 8, 2014
Legal Notice
Copyright© 2014 Symantec Corporation. All rights reserved
Symantec, the Symantec Logo, andthe Check mark Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. VeriSign, VeriSign Trust, and other related marks are the trademarks or registered trademarks of VeriSign, Inc. or its affiliates or subsidiaries in the U.S. and other countries and licensed to Symantec Corporation. Other names maybe trademarks of the irrespective owners. The product described in this document is distributed under licenses restricting its use, copying, distribution,and decompilation/reverse engineering.No part of thisdocument may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.
THE DOCUMENTATION IS PROVIDED “AS IS” AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANT ABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT,ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BELIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.
The Licensed Software and Documentation are deemed to be commercial computer software as defined in F A R
12.212 and subject to restricted rights as defined inFAR Section 52.227-19 "Commercial Computer Software- Restricted Rights"and DFARS 227.7202, et seq. “Commercial Computer Software and Commercial Computer Software Documentation”, as applicable, and any successor regulations. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement.This document may describe features and/or functionality not present in your software or your service agreement. Contact your account representative to learn more about what is available with this Symantec® product.
Symantec Corporation
Thanks for your feedback. Let us know if you have additional comments below. (requires login)