Activating the data integrity framework

The data integrity framework is not automatically active after installation of FTM SWIFT. You must activate it explicitly, and you can do this at any time. Before activating the data integrity framework, verify your table space allocation as described in Calculating space requirements of the runtime database.

Note: There is no fallback to deactivate the data integrity framework once you have activated it.

To activate the data integrity framework:

  1. Ensure that the policy file required by the data integrity checker is created as described in Java Policy files.
  2. As a data integrity administrator do the following:
    1. Create the vault that is required by the data integrity checker by issuing the vault utility command create. For example, to create the vault /var/ftmswift_v324/run/ftmswift_vault.jceks being protected by passphrase my_passphrase, issue the following command: 
      dnpvault -create -dir /var/ftmswift_v324/run
         -store ftmswift_vault -passphrase my_passphrase
    2. Ensure that the following users have read permission for the vault that you created in step 2.a:
    3. Initialize the data integrity framework by issuing the data integrity checker command init, for example: 
      dnpdic -init -password my_data_integrity_password
       -Djava.security.policy=/var/ftmswift_v324/run/ftmswift.policy
       -keystore /var/ftmswift_v324/run/ftmswift_vault.jceks
       -passphrase my_passphrase
       -dsn DSN1 -schema DNI
  3. As an FTM SWIFT system configuration administrator (user ID SA1 or SA2) do the following:
    1. For the system OU, add CO DniVault to CT DniFileDir and set its Path attribute to the value that the data integrity administrator specified for parameter -dir when creating the vault file as described in step 2.a, for example: 
      add -ou SYSOU -ct DniFileDir -co DniVault -attr Path -val /var/ftmswift_v324/run
add -ou SYSOU -ct DniFileDir -co DniVault -attr read
    2. Commit, approve, and deploy the system OU: 
      com -ou SYSOU
app -ou SYSOU
dep -ou SYSOU
  4. Combine trigger module definitions in a single DDL file:
    1. Log on as a customizer (UCUST1).
    2. Create or choose a directory where you want to save the file with the combined data integrity trigger statements. In the following, replace variable trigger_dir with the directory that you have created or chosen.
    3. Gather all data integrity trigger modules from the customized administrative scripts directory into a single file: 
      /usr/lpp/IBM/ftm/ftmswift/v324/admin/bin/dniczdic
       -collect
       -d /var/ftmswift_v324/cus/depdata
       -i instance
       -l trigger_dir
      This command creates the file trigger_dir/dnirundb_dic.ddl.
      Note: Keep file dnirundb_dic.ddl if you want to perform housekeeping tasks by means of Db2®. However, if you create or delete an organizational unit you need to re-run the current step and update the file.
  5. Stop your FTM SWIFT business processes, stop all sessions, and stop all services you use.
  6. Reduce the amount of data in your FTM SWIFT database tables:
    1. As a database administrator (UDB2ADM1) do the following:
      • Move historical configuration data from the runtime database to a history database as described in Saving and purging configuration and security data.
      • For each OU:
        • Archive the audit data in the following database tables:
          • DNI_A_MSG_ou if you use non-partitioned message audit log
          • DNI_AMSGP_ou if you use partitioned message audit log
          • DNI_A_USR_ou
        • Reduce the message warehouse data by archiving and deleting records. The database tables used by message warehouse and to be considered are:
          • DNIMWH_PT_ou
          • DNFMWHFIN_ou
      • Reduce the RM data in your Relationship Management Data Store (RMDS), for example, by removing history data.
    2. As an MSIF operator clean your MSIF data by issuing the MSIF cleanup command.
    3. As an event administrator delete all event records that are no longer required. For information on how to do this, see del (delete events from event database table).
    Note: Reducing data is optional. However, this step significantly decreases the processing time that is required by step 9.
  7. As a message broker administrator (UWMBA1) stop all FTM SWIFT related message flows.
  8. Create the data integrity triggers:
    1. Log on as database administrator (UDB2ADM1).
    2. Edit the file dnirundb_dic.ddl and add the following line at its beginning: 
      CONNECT TO DNIvDBHOST:DNIvDBPORT/DNIvDSN USER USERNAME USING PASSWORD
      For more information regarding the connection parameters, see Db2 command line processor CONNECT syntax.
    3. Run the data integrity trigger creation statements: 
      cd trigger_dir
java com.ibm.db2.clp.db2 +c -td# -z trig.log -svf dnirundb_dic.ddl

      For more information regarding setup and usage of the Db2 command line processor refer to Running the Db2 command line processor.

  9. As a data integrity operator run the data integrity checker command build, for example: 
    dnpdic -build -Djava.security.policy=/var/ftmswift_v324/run/ftmswift.policy
       -passphrase my_passphrase
       -dsn DSN1 -schema DNI
  10. Maintain the Db2 catalog statistics:
    To improve database performance, it is recommended to run the RUNSTATS utility at least for the following table spaces:
    • DNIROR
    • DNIRORA (only exists if you migrated table space DNIROR to a universal table space)
    • DNIRORB (only exists if you migrated table space DNIROR to a universal table space)
    • DNIvMWH if you use message warehouse
    • DNIvAUM if you use non-partitioned message audit log
    • DNIvAMP if you use partitioned message audit log
  11. Verify that the data integrity framework was activated correctly:
    1. Log on as a data integrity validator.
    2. Run the check command, for example: 
      dnpdic -check -Djava.security.policy=/var/ftmswift_v324/run/ftmswift.policy
       -passphrase my_passphrase
       -dsn DSN1 -schema DNI
      The check must finish without reporting problems.
  12. Restart your FTM SWIFT business processes:
    1. As a message broker administrator (UWMBA1) restart all FTM SWIFT related message flows
    2. Restart all sessions and services