Fix Readme
Abstract
The IF001 release of Cloud Pak for Business Automation (CP4BA) corrects the log4jsecurity vulnerability (CVE-2021-44228) existing in Automation Document Processing (ADP) in the 21.0.3 GA release.
Content
Location
This fix is available in the production entitled registry (cp.icr.io) and no separate download is required to access and deploy the fix.
Deployment
- Follow all deployment instructions for the 21.0.3-GA CP4BA release.
- Edit the Custom Resource (CR) yaml for the Cloud Pak for Business Automation deployment. For script deployments, the yaml is /scripts/generated-cr/ibm-cp4ba/ibm_cp4a_cr_final.yaml. For OCP console deployments, locate the yaml through Installed Operators, IBM Cloud Pak for Business Automation, CP4BA Deployment tab, select the ICP4ACluster, YAML tab.
- Change the tag in the ca_configuration section to 21.0.3-IF001. If the ca_configuration section does not exist, then add it.
spec: ca_configuration: global: image: repository: cp.icr.io/cp/cp4a/iadp tag: 21.0.3-IF001
-
Save and apply the yaml
Post-deployment
Allow one to two hours for Operator to apply the changes. This fix restarts a number of pods. Once the restarted pods are running and ready, the system is ready to be used.
The pods can be monitored by running:
oc -n <namespace> get pods
[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSBYVB","label":"IBM Cloud Pak for Business Automation"},"ARM Category":[{"code":"a8m3p000000hAKPAA2","label":"Operate-\u003EADP Install\\Upgrade\\Setup"}],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"21.0.3"}]
Was this topic helpful?
Document Information
Modified date:
18 December 2021
UID
ibm16528012