Caché Upgrade Checklists - InterSystems Documentation

More documents

Recommendations

Info

Caché 5.1 Upgrade ChecklistService NameMinimalNormalLockedDown%Service_DDPNoNoNo%Service_ECPNoNoNo%Service_LATNoNoNo%Service_MSMActivateNoNoNo%Service_MonitorNoNoNo%Service_ShadowNoNoNo%Service_TelnetNoNoNo%Service_WeblinkNoNoNo11.1.6 Emergency AccessAs a contingency, Caché provides a special emergency access mode that can be used under certain dire circumstances, suchas severe damage to security configuration information or “unavailability” of any users with the %Admin_Manage:U or%Admin_Security:U privileges. (Although Caché attempts to prevent this situation by ensuring that there is always atleast one user with the %All role, that user may not be available or may have forgotten his or her password.)When Caché is running in emergency access mode, only a single user (the “emergency user”) is permitted. Caché is startedin emergency access mode through a command-line switch, which passes a user name and password for the emergencyuser. This user name does not have to be previously defined within Caché. (In fact, even if the user name is defined inCaché, the emergency user is conceptually a different user.) The emergency user name and password are only valid for asingle invocation of emergency mode.The user starting Caché in emergency access mode must have operating-system level system management privileges. (OnWindows systems, the user must be a member of the Administrators group. On UNIX® systems, the user must be root. OnOpenVMS systems, the user must have a system UIC.) Caché authenticates this user by checking his or her operating systemlevel characteristics. When Caché is started in emergency access mode:• The emergency user is the only permitted user. Any attempt by another user to log in will fail.• The emergency user automatically has the %All role.• The Console and CSP services are enabled. All other services are disabled. This does not affect the enabled or disabledstatus of services in the configuration; only the current “in memory” information about services is affected.• Caché password authentication is used and unauthenticated access is forbidden for all services.• If possible, auditing is enabled for all events. Caché startup proceeds even if this is not possible.11.1.7 Configuration File ChangesOne consequence of the new capabilities added in version 5.1 is that major differences have been made to the form andcontent of the configuration file that provides many of the initialization values when Caché starts up. This section does notdetail every change in the configuration file, only the more apparent ones.Note:As of this version, the parameter file MUST be named cache.cpf.228 Caché Upgrade Checklists
Administrators11.1.7.1 New Parameter ReferenceIf a site controls operation by editing the .cpf, each of these controls must be examined to make sure they are still applicable.Administrators are strongly urged to review the Caché Parameter File Reference book for the current organization, and thevalid parameters and their allowed settings.11.1.7.2 Startup Check for Configuration ChangesCaché configuration information is stored outside of Caché and (by design) can be modified when Caché is not running.Therefore, a special protective option have been added to this version. Rather than protecting the contents of the configurationfile, Caché controls the ability to start the system or modify the configuration of a running system. This protection is enabledby turning Configuration Security on. (Of course, the configuration file can and should be protected outside of Caché bystrictly limiting at the operating system level the ability of users to modify that file.)During startup, if Caché detects that the configuration (.cpf) file has changed since the last time the Caché instance wasstarted, the user running startup will be asked to enter a username and password. This data will be used to verify that theuser is authorized to start Caché with altered configuration parameters. If the user is successfully authenticated, and theuser has %Admin_Manage:Use, Caché will be started with the new configuration parameters.Otherwise, Caché will start with the values of the last known configuration. When this happens, the configuration filesupplied will be copied to cache.cpf_rejected (overwriting any file by that name), and the configuration parameters actuallyused to start Caché will be written to the file specified as the configuration file.11.1.8 Low-level Management InterfacesIn addition to the new Management Portal, system administrators can exercise low-level control over the security of Cachésystems through character-oriented utilities. The available routines are described in The CHUI-Based Management Routines.11.1.9 Web Server ChangesThe evolution of security capability in Caché 5.1 has affected the way hypertext information is served to browsers.11.1.9.1 The Caché Private Web Server is Now ApacheEach installation of Caché 5.1 also installs an instance of Apache as its private web server. Sites may change the configurationto use a different one, but Caché will always install its private server regardless.11.1.9.2 Default Port ChangesBy default, Caché now chooses as the superserver port number the first unused port at or after 1972. Applications whichdepended on the value, 1972, may fail to contact the superserver. In addition, Caché now uses a separate port number forits private web server. The value chosen is the first unused port at or after 8972. Despite both ending in “72”, the two portnumber are not correlated; the superserver port might be 1973 and the web server port number could be 8977.During a custom installation, user may explicitly set both the superserver port and the private WebServer port numbers.11.1.9.3 CSPGateway ChangesCaché version 5.1 has changed the CSPGateway implementation on two of the platforms.Support Removed for OpenVMSThe CSPGateway is no longer supported on OpenVMS. The material referencing it has been removed from the OpenVMSinstallation script and the code is no longer part of the product for OpenVMS.Note:Any existing CSP Gateway files will be removed during a upgrade from a previous version.Caché Upgrade Checklists 229
Page 1 and 2:
Caché Upgrade ChecklistsVersion 20
Page 3 and 4:
Table of ContentsAbout This Book ..
Page 5 and 6:
5.2.15 MultiValue Changes .........
Page 7 and 8:
10 Caché 5.2 Upgrade Checklist ...
Page 9:
List of TablesTable 5-1: Non-Proces
Page 13 and 14:
1General Upgrade InformationBackgro
Page 15:
Upgrading CachéThe application ser
Page 18 and 19:
Caché 2012.1 Upgrade ChecklistUpon
Page 20 and 21:
Caché 2012.1 Upgrade Checklist2.1.
Page 22 and 23:
Caché 2012.1 Upgrade ChecklistNote
Page 24 and 25:
Page 26 and 27:
Caché 2012.1 Upgrade Checklist•
Page 28 and 29:
Caché 2012.1 Upgrade ChecklistClas
Page 30 and 31:
Page 32 and 33:
Page 34 and 35:
Page 36 and 37:
Page 38 and 39:
Caché 2012.1 Upgrade Checklist= 1,
Page 40 and 41:
Caché 2012.1 Upgrade Checklistself
Page 42 and 43:
Page 44 and 45:
Page 46 and 47:
Page 48 and 49:
Page 50 and 51:
Page 52 and 53:
Page 54 and 55:
Caché 2011.1 Upgrade Checklist2. R
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62:
Page 65 and 66:
Developerscan be compiled at the sa
Page 67 and 68:
Developers3.2.6 Studio Changes3.2.6
Page 69 and 70:
Developers3.2.7.6 Changes to Java M
Page 71 and 72:
Developers3.2.8.8 SQL Statement Pro
Page 73 and 74:
DevelopersClassMethod SquareIt(valu
Page 75 and 76:
Developers3.2.9.5 Session Events An
Page 77 and 78:
Developers3.2.13.2 Changes To Catal
Page 79 and 80:
Developers3.2.14.7 jBase CHAIN Hand
Page 81 and 82:
Developers2. zenLaunchPopupWindow s
Page 83:
Developers3.2.17 %Installer Changes
Page 86 and 87:
Caché 2010.2 Upgrade ChecklistNote
Page 88 and 89:
Caché 2010.2 Upgrade ChecklistThe
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
Caché 2010.2 Upgrade Checklist2. I
Page 100 and 101:
Page 102 and 103:
Page 105 and 106:
5Caché 2010.1 Upgrade ChecklistPur
Page 107 and 108:
AdministratorsGMHEAP Defaults Incre
Page 109 and 110:
Developers5.2.1 General Operational
Page 111 and 112:
Developers5.2.2.3 Remove $ZUTIL Fun
Page 113 and 114:
DevelopersCodeDescriptionClassPrope
Page 115 and 116:
DevelopersTable 5-2: Process- & Sys
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Developers5.2.5.2 Class DeletionsTh
Page 123 and 124:
DevelopersClass%Installer.Namespace
Page 125 and 126:
DevelopersClass%MV.SelectList%Resul
Page 127 and 128:
DevelopersClass Name%CPT.CalloutDum
Page 129 and 130:
DevelopersClass NameConfig.ECPConfi
Page 131 and 132:
Developers5.2.6.2 Superclass Availa
Page 133 and 134:
Developers5.2.6.11 Change In Suppor
Page 135 and 136:
Developers5.2.8.4 Reserved Word Che
Page 137 and 138:
Developers• ModulesPrior to this
Page 139 and 140:
6Caché 2009.1 Upgrade ChecklistPur
Page 141 and 142:
AdministratorsPrior Version Mapping
Page 143 and 144:
Administrators^CacheAuditD(, ) = $l
Page 145 and 146:
Developers6.1.6.5 Weblink No Longer
Page 147 and 148:
DevelopersPotential confusion arise
Page 149 and 150:
Developers6.2.5.4 XML DOM Internal
Page 151 and 152:
Developers• %Monitor.System.Dashb
Page 153 and 154:
Developers• %Exception.AbstractEx
Page 155 and 156:
DevelopersArgument list: AddGlobalM
Page 157 and 158:
Developers6.2.6.11 EXTENT Queries P
Page 159 and 160:
Developers6.2.8.3 Support INSERT ..
Page 161 and 162:
Developers• ()in ODBC mode and/o
Page 163 and 164:
Developers6.2.10 CSP Changes6.2.10.
Page 165 and 166:
DevelopersThis means that applicati
Page 167 and 168:
Developersmax(scale1, scale2)Multip
Page 169 and 170:
DevelopersMetaData Table NameSQLGet
Page 171 and 172:
Developers6.2.15.10 Match Select Li
Page 173 and 174:
Developers3. As a collection of giv
Page 175:
Operators6.2.18.8 Windows Installat
Page 178 and 179:
Caché 2008.2 Upgrade ChecklistIn t
Page 180 and 181:
Page 182 and 183:
Caché 2008.2 Upgrade ChecklistWhen
Page 184 and 185:
Caché 2008.2 Upgrade ChecklistWhen
Page 186 and 187:
Caché 2008.2 Upgrade ChecklistIn t
Page 188 and 189: Caché 2008.2 Upgrade ChecklistAll
Page 190 and 191: Caché 2008.2 Upgrade Checklist7.2.
Page 192 and 193: Caché 2008.2 Upgrade ChecklistIn t
Page 194 and 195: Caché 2008.2 Upgrade ChecklistSee
Page 196 and 197: Caché 2008.2 Upgrade Checklistmean
Page 200 and 201: Caché 2008.2 Upgrade Checklistrepo
Page 209 and 210: 8Caché 2008.1 Upgrade ChecklistPur
Page 211 and 212: AdministratorsBeginning with this v
Page 213 and 214: Developersis now interpreted as:Col
Page 215 and 216: Developers8.3.7 Class Changes8.3.7.
Page 217 and 218: DevelopersIn addition, the internal
Page 219 and 220: 9Caché 2007.1 Upgrade ChecklistPur
Page 221 and 222: Administrators9.1.7 System API Chan
Page 223 and 224: AdministratorsC:\users\someuser\App
Page 225 and 226: Developers9.2.1 System Management P
Page 227 and 228: Developers9.2.3.8 Statement Changes
Page 229 and 230: 10Caché 5.2 Upgrade ChecklistPurpo
Page 231 and 232: Developers• Windows - 32-bit only
Page 233: Operators10.3.2.3 SQL LEFT JOIN Cha
Page 236 and 237: Caché 5.1 Upgrade Checklist11.1.1
Page 240 and 241: Caché 5.1 Upgrade ChecklistWebServ
Page 242 and 243: Caché 5.1 Upgrade Checklist• The
Page 244 and 245: Caché 5.1 Upgrade Checklist• Fas
Page 246 and 247: Caché 5.1 Upgrade ChecklistLocaler
Page 248 and 249: Caché 5.1 Upgrade ChecklistService
Page 254 and 255: Caché 5.1 Upgrade Checklist\caches
Page 258 and 259: Caché 5.1 Upgrade Checklist2. They
Page 260 and 261: Caché 5.1 Upgrade Checklist• UPD
Page 264 and 265: Caché 5.1 Upgrade ChecklistIn Cach
Page 266 and 267: Caché 5.1 Upgrade Checklist• In
Page 268 and 269: Caché 5.1 Upgrade Checklist/// - s
Page 270 and 271: Caché 5.1 Upgrade ChecklistCached
Page 272 and 273: Caché 5.1 Upgrade Checklist11.2.8.
Page 274 and 275: Caché 5.1 Upgrade Checklistwill ha
Page 276 and 277: Caché 5.1 Upgrade Checklist2. the
Page 278 and 279: Caché 5.1 Upgrade ChecklistFunctio
Page 280 and 281: Caché 5.1 Upgrade Checklistthan th
Page 285: IndexSymbols error, 99 errors, 99SS
show all

Caché Upgrade Checklists - InterSystems Documentation

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?