Patch 5 (and later) includes the updateschema.sh script to load the following files to update the Directory Server service schema:
AddLDAPFilterCondition.xml
amPolicyConfig_mod_ldfc.xml
accountLockoutData.xml
accountLockout.ldif
idRepoServiceAddAttrSchemaRequest_Cache.xml
wsf1.1_upgrade.xml
amAuth_mod.xml
amAuthCert_mod.xml
In previous Access Manager patch releases, you were required to load these files manually.
To run the updateschema.sh script:
Log in as or become superuser (root).
Change to the patch directory.
Run the script. For example, on Solaris systems:
# cd /120954-07 # ./updateschema.sh
On Windows systems, the script is updateschema.pl.
When the script prompts you, enter these items:
Directory Server host name and port number
Directory Server admin user DN and password
amadmin DN and password
The script validates your entries and then loads the files. The script also writes the following log file:
Solaris systems: /var/opt/SUMWam/logs/AM70Patch.upgrade.schema.timestamp
Linux systems: /var/opt/sun/identity/logs/AM70Patch.upgrade.schema.timestamp
After the script finishes, restart the Access Manager web container.
Note If you back out patch 5, the schema changes added by the updateschema.sh script are not removed from Directory Server. However, you do not need to remove these schema changes manually because they will not affect Access Manager functionality or usability after the patch is backed out.