Question & Answer
Question
Instructions, steps for remote migration from TDS 6.2 to SDS 6.4
Answer
Remote migration from source system (TDS 6.2) to target system (SDS 6.4)
Scenario:
---------------
On Machine A - Source system: TDS 6.2 - AIX
----------------
1. I have this LDAP instance:
Name: test4mig
Version: 6.2
Location: /home/test4mig
Description: IBM Tivoli Directory Server Instance V6.2
IP Addresses: All available
Port: 14389
Secure Port: 14636
Admin Server Port: 3566
Admin Server Secure Port: 3567
Type: Directory Server
2. I verify that LDAP 6.2 Instance server is working successfully also
stop/start work successfully.
3. Current DB2 level of the LDAP 6.2 Instance:
# cat /home/test4mig/idsslapd-test4mig/etc/ldapdb.properties
currentDB2InstallPath=/opt/IBM/db2/V9.5
currentDB2Version=9.5.0.1
4. Global DB2 level of TDS 6.2
# cat /opt/IBM/ldap/V6.2/etc/ldapdb.properties
currentDB2InstallPath=/opt/IBM/db2/V9.5
currentDB2Version=9.5.0.1
*** Then - On machine B (Target AIX machine):
-------------------
1. Install the following on the local machine:
- DB2 V10.5.05 for SDS 6.4
- GSKIT 8.0.50.44
- SDS 6.4 then upgrade to 6.4.0.3
2. Check Global DB2 level of SDS 6.4
# cat /opt/IBM/ldap/V6.4/etc/ldapdb.properties
currentDB2InstallPath=/opt/IBM/sdsV6.4db2
currentDB2Version=10.5.0.5
3. No LDAP Instance called "test4mig" was created yet.
(Will have to create a new instance with the same name "test4mig" later).
Remote Migration from TDS 6.2 to SDS 6.4 Procedure:
--------------------------
On Machine A (TDS 6.2):
---------------------------------
Using "root" login - Backup configuration and schema using "migbkup" and export data:
1. Create a directory called: ldapsaveconf
# mkdir /home/test4mig/ldapsaveconf
2. Change mode for this directory:
# chmod g+w /home/test4mig/ldapsaveconf
3. Chown for this directory:
# chown test4mig:dbsysadm /home/test4mig/ldapsaveconf
4. Copy the script "migbkup" for SDS 6.4 (under SDS 6.4 install/sbin) from Machine B over
and put it under /tmp and set execution mode on it:
# chmod +x /tmp/migbkup
5. Run migbkup as below:
# cd /tmp
# ./migbkup /home/test4mig/idsslapd-test4mig /home/test4mig/ldapsaveconf
>> Backing up schema and configuration files .....
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.ibm.at .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.ibm.oc .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.system.at .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.system.oc .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.user.at .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.user.oc .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.modifiedschema .
Copying: file /home/test4mig/idsslapd-test4mig/logs/perftune_stat.log .
Copying: file /home/test4mig/idsslapd-test4mig/etc/ibmslapd.conf .
Copying: file /home/test4mig/idsslapd-test4mig/etc/perftune_input.conf .
Copying: file /home/test4mig/idsslapd-test4mig/etc/ibmslapdcfg.ksf .
Copying: file /home/test4mig/idsslapd-test4mig/etc/ibmslapddir.ksf .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.config.at .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.config.oc .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.ldapsyntaxes .
Copying: file /home/test4mig/idsslapd-test4mig/etc/V3.matchingrules .
** NOTE ** -> 2 new files are created under: /home/test4mig/ldapsaveconf/etc
db2info
platforminfo
# cat db2info
>>
#version of db2 used by backed up server
currentDB2InstallPath=/opt/IBM/db2/V9.5
currentDB2Version=9.5.0.1
# cat platforminfo
>>
osName=AIX
processorArch=powerpc
6. Create a tar file or zip file:
# cd /home/test4mig
# tar -cvf ldapsaveconf.tar ldapsaveconf
>> a ldapsaveconf
a ldapsaveconf/etc
a ldapsaveconf/etc/V3.ibm.at 551 blocks.
a ldapsaveconf/etc/V3.ibm.oc 110 blocks.
a ldapsaveconf/etc/V3.system.at 130 blocks.
a ldapsaveconf/etc/V3.system.oc 20 blocks.
a ldapsaveconf/etc/V3.user.at 226 blocks.
a ldapsaveconf/etc/V3.user.oc 62 blocks.
a ldapsaveconf/etc/V3.modifiedschema 1 blocks.
a ldapsaveconf/etc/perftune_stat.log 4 blocks.
a ldapsaveconf/etc/ibmslapd.conf 23 blocks.
a ldapsaveconf/etc/perftune_input.conf 2 blocks.
a ldapsaveconf/etc/ibmslapdcfg.ksf 1 blocks.
a ldapsaveconf/etc/ibmslapddir.ksf 1 blocks.
a ldapsaveconf/etc/V3.config.at 174 blocks.
a ldapsaveconf/etc/V3.config.oc 26 blocks.
a ldapsaveconf/etc/V3.ldapsyntaxes 7 blocks.
a ldapsaveconf/etc/V3.matchingrules 7 blocks.
a ldapsaveconf/etc/db2info 1 blocks.
a ldapsaveconf/etc/platforminfo 1 blocks.
7. Export all data:
# /opt/IBM/ldap/V6.2/sbin/idsdb2ldif -I test4mig -o TDS62-data.ldif
8. Copy or ftp the following:
ldapsaveconf.tar
TDS62-data.ldif
from source system (TDS 6.2) over to target system (SDS 6.4) and put them
uder /tmp directory.
On Machine B - Target system (SDS 6.4):
----------------------------------------------------
1. Go to /tmp and untar the ldapsaveconf.tar:
# cd /tmp
# tar -xvf ldapsaveconf.tar
>> x ldapsaveconf
x ldapsaveconf/etc
x ldapsaveconf/etc/V3.ibm.at, 281687 bytes, 551 media blocks.
x ldapsaveconf/etc/V3.ibm.oc, 55894 bytes, 110 media blocks.
x ldapsaveconf/etc/V3.system.at, 66359 bytes, 130 media blocks.
x ldapsaveconf/etc/V3.system.oc, 10077 bytes, 20 media blocks.
x ldapsaveconf/etc/V3.user.at, 115485 bytes, 226 media blocks.
x ldapsaveconf/etc/V3.user.oc, 31260 bytes, 62 media blocks.
x ldapsaveconf/etc/V3.modifiedschema, 1 bytes, 1 media blocks.
x ldapsaveconf/etc/perftune_stat.log, 1647 bytes, 4 media blocks.
x ldapsaveconf/etc/ibmslapd.conf, 11592 bytes, 23 media blocks.
x ldapsaveconf/etc/perftune_input.conf, 917 bytes, 2 media blocks.
x ldapsaveconf/etc/ibmslapdcfg.ksf, 104 bytes, 1 media blocks.
x ldapsaveconf/etc/ibmslapddir.ksf, 112 bytes, 1 media blocks.
x ldapsaveconf/etc/V3.config.at, 88648 bytes, 174 media blocks.
x ldapsaveconf/etc/V3.config.oc, 12916 bytes, 26 media blocks.
x ldapsaveconf/etc/V3.ldapsyntaxes, 3425 bytes, 7 media blocks.
x ldapsaveconf/etc/V3.matchingrules, 3262 bytes, 7 media blocks.
x ldapsaveconf/etc/db2info, 105 bytes, 1 media blocks.
x ldapsaveconf/etc/platforminfo, 33 bytes, 1 media blocks.
2. As "root" - create the test4mig user:
# cd /opt/IBM/ldap/V6.4/sbin
# ./idsadduser -u test4mig1 -w test4mig -g dbsysadm -l /home/test4mig –n
**** Make sure the test4mig user has ksh in /etc/passwd
3. Upgrade the schema and configuration using idsimigr
(idsimigr takes care of all V3 files including V3.modifiedschema):
# cd /opt/IBM/ldap/V6.4/sbin
# ./idsimigr -I test4mig -u /tmp/ldapsaveconf -n
(*** NOTE *** - Must give exactly /tmp/ldapsaveconf folder - Do not give /tmp/ldapsaveconf/etc folder, it will cause
idsimigr process to hang)
>> GLPMIG035I Files in backup directory, '/tmp/ldapsaveconf', are determined to be of version, '6.2'. Migration will continue based on this migration path.
GLPMIG066I The DB2 installation path '/opt/IBM/db2/V9.5' obtained from file 'db2info' in the backup directroy '/tmp/ldapsaveconf' is not found on the system. Assuming remote migration scenario.
GLPWRP123I The program '/opt/IBM/ldap/V6.4/sbin/64/idsicrt' is used with the following arguments 'idsimigr -I test4mig -u /tmp/ldapsaveconf -n'.
You have chosen to perform the following actions:
GLPICR020I A new directory server instance 'test4mig' will be created.
GLPMIG029I Data from directory '/tmp/ldapsaveconf' will be migrated into the new directory server instance.
GLPICR057I The directory server instance will be created at: '/home/test4mig'.
GLPICR013I The directory server instance's port will be set to '14389'.
GLPICR014I The directory server instance's secure port will be set to '14636'.
GLPICR015I The directory instance's administration server port will be set to '3566'.
GLPICR016I The directory instance's administration server secure port will be set to '3567'.
GLPICR019I The description will be set to: 'IBM Security Directory Server Instance V6.4'.
GLPICR021I Database instance 'test4mig' will be configured.
GLPICR028I Creating directory server instance: 'test4mig'.
GLPICR025I Registering directory server instance: 'test4mig'.
GLPICR026I Registered directory server instance: : 'test4mig'.
GLPICR049I Creating directories for directory server instance: 'test4mig'.
GLPICR050I Created directories for directory server instance: 'test4mig'.
GLPICR040I Creating configuration file for directory server instance: 'test4mig'.
GLPICR041I Created configuration file for directory server instance: 'test4mig'.
GLPICR034I Creating schema files for directory server instance: 'test4mig'.
GLPICR035I Created schema files for directory server instance: 'test4mig'.
GLPICR037I Creating log files for directory server instance: 'test4mig'.
GLPICR038I Created log files for directory server instance: 'test4mig'.
GLPICR088I Configuring log files for directory server instance: 'test4mig'.
GLPICR089I Configured log files for directory server instance: 'test4mig'.
GLPICR085I Configuring schema files for directory server instance: 'test4mig'.
GLPICR086I Configured schema files for directory server instance: 'test4mig'.
GLPICR073I Configuring ports and IP addresses for directory server instance: 'test4mig'.
GLPICR074I Configured ports and IP addresses for directory server instance: 'test4mig'.
GLPICR046I Creating profile scripts for directory server instance: 'test4mig'.
GLPICR047I Created profile scripts for directory server instance: 'test4mig'.
GLPICR103I Adding instance information to the .profile file for directory server instance: 'test4mig'.
GLPICR104I Added instance information to the .profile file for directory server instance: 'test4mig'.
GLPICR069I Adding entry to /etc/inittab for the administration server for directory instance: 'test4mig'.
GLPICR070I Added entry to /etc/inittab for the administration server for directory instance: 'test4mig'.
GLPICR118I Creating runtime executable for directory server instance: 'test4mig'.
GLPICR119I Created runtime executable for directory server instance: 'test4mig'.
GLPICR029I Created directory server instance: : 'test4mig'.
GLPMIG028I Migrating schema and configuration files from version '6.2' to version '6.3'.
GLPMIG018I Successfully migrated the schema files from version '6.2' to version '6.3'.
GLPMIG025I Successfully migrated the configuration file from version '6.2' to version '6.3'.
GLPMIG028I Migrating schema and configuration files from version '6.3' to version '6.3.1'.
GLPMIG018I Successfully migrated the schema files from version '6.3' to version '6.3.1'.
GLPMIG025I Successfully migrated the configuration file from version '6.3' to version '6.3.1'.
GLPMIG028I Migrating schema and configuration files from version '6.3.1' to version '6.4'.
GLPMIG018I Successfully migrated the schema files from version '6.3.1' to version '6.4'.
GLPMIG036W The log file name and path information from the backed up configuration file will not be preserved by migration. Log file names and paths will be updated to be specific for a directory server instance.
GLPMIG025I Successfully migrated the configuration file from version '6.3.1' to version '6.4'.
GLPCTL074I Starting admin server for directory server instance: 'test4mig'.
GLPCTL075I Started admin server for directory server instance: 'test4mig'.
GLPMIG027I Successfully migrated the directory server instance, 'test4mig', to version '6.4'.
GLPMIG059W Unable to start the task of DB2 instance and database migration because of insufficient information.
GLPICR031I Adding database instance 'test4mig' to directory server instance: 'test4mig'.
GLPCTL002I Creating database instance: 'test4mig'.
GLPCTL003I Created database instance: 'test4mig'.
GLPICR133I Setting the DB2 registry for database instance 'test4mig' to allow DB2 SELECTIVITY.
GLPICR134I The DB2 registry for database instance 'test4mig' has been set to allow DB2 SELECTIVITY.
GLPCTL017I Cataloging database instance node: 'test4mig'.
GLPCTL018I Cataloged database instance node: 'test4mig'.
GLPCTL008I Starting database manager for database instance: 'test4mig'.
GLPCTL009I Started database manager for database instance: 'test4mig'.
GLPCTL049I Adding TCP/IP services to database instance: 'test4mig'.
GLPCTL050I Added TCP/IP services to database instance: 'test4mig'.
GLPICR081I Configuring database instance 'test4mig' for directory server instance: 'test4mig'.
GLPICR082I Configured database instance 'test4mig' for directory server instance: 'test4mig'.
GLPICR052I Creating DB2 instance link for directory server instance: 'test4mig'.
GLPICR053I Created DB2 instance link for directory server instance: 'test4mig'.
GLPICR032I Added database instance 'test4mig' to directory server instance: 'test4mig'.
4. Check if the LDAP instance "test4mig" is successfully migrated:
# /opt/IBM/ldap/V6.4/sbin/idsilist -a
>> Name: test4mig
Version: 6.4
Location: /home/test4mig
Description: IBM Security Directory Server Instance V6.4
IP Addresses: All available
Port: 14389
Secure Port: 14636
Admin Server Port: 3566
Admin Server Secure Port: 3567
Type: Directory Server
5. Copy ALL custom schema files (if you have them for your company) back into instance’s etc folder:
# cp /tmp/ldapsaveconf/etc/<custom schema file 1> /home/test4mig/idsslapd-test4mig/etc
# cp /tmp/ldapsaveconf/etc/<custom schema file 2> /home/test4mig/idsslapd-test4mig/etc
6. Chown on your custom schema files (if you have them):
# chown test4mig:dbsysadm /home/test4mig/idsslapd-test4mig/etc/<custom schema file -1>
# chown test4mig:dbsysadm /home/test4mig/idsslapd-test4mig/etc/<custom schema file -2>
7. Configure a new database (It's required) and changelog database (optional) for the instance:
# cd /opt/IBM/ldap/V6.4/sbin
# ./idscfgdb -I test4mig -a test4mig -w test4mig -t ldapdb -l /home/test4mig -n
>> GLPWRP123I The program '/opt/IBM/ldap/V6.4/sbin/64/idscfgdb' is used with the following arguments '-I test4mig -a test4mig -w ***** -t ldapdb -l /home/test4mig -n'.
You have chosen to perform the following actions:
GLPCDB023I Database 'ldapdb' will be configured.
GLPCDB024I Database 'ldapdb' will be created at '/home/test4mig'
GLPCDB035I Adding database 'ldapdb' to directory server instance: 'test4mig'.
GLPCTL017I Cataloging database instance node: 'test4mig'.
GLPCTL018I Cataloged database instance node: 'test4mig'.
GLPCTL008I Starting database manager for database instance: 'test4mig'.
GLPCTL009I Started database manager for database instance: 'test4mig'.
GLPCTL026I Creating database: 'ldapdb'.
GLPCTL027I Created database: 'ldapdb'.
GLPCTL034I Updating the database: 'ldapdb'
GLPCTL035I Updated the database: 'ldapdb'
GLPCTL020I Updating the database manager: 'test4mig'.
GLPCTL021I Updated the database manager: 'test4mig'.
GLPCTL023I Enabling multi-page file allocation: 'ldapdb'
GLPCTL024I Enabled multi-page file allocation: 'ldapdb'
GLPCDB005I Configuring database 'ldapdb' for directory server instance: 'test4mig'.
GLPCDB006I Configured database 'ldapdb' for directory server instance: 'test4mig'.
GLPCTL037I Adding local loopback to database: 'ldapdb'.
GLPCTL038I Added local loopback to database: 'ldapdb'.
GLPCTL011I Stopping database manager for the database instance: 'test4mig'.
GLPCTL012I Stopped database manager for the database instance: 'test4mig'.
GLPCTL008I Starting database manager for database instance: 'test4mig'.
GLPCTL009I Started database manager for database instance: 'test4mig'.
GLPCDB003I Added database 'ldapdb' to directory server instance: 'test4mig'.
Then create a ChangeLog database if you've had a ChangeLog DB for your old LDAP 6.2 Instance:
# cd /opt/IBM/ldap/V6.4/sbin
# ./idscfgchglg -I test4mig -n
8. Import data into SDS 6.4 instance created with upgraded schema/conf:
( for large data load prefer idsbulkload, (Use idsldif2db) )
# /opt/IBM/ldap/V6.4/sbin
# ./idsldif2db -I test4mig -i /tmp/TDS62-data.ldif
OR
# ./idsbulkload -I test4mig -i /tmp/TDS62-data.ldif
Then -- Copy over kdb file required by SSL (if running SSL mode) from TDS 6.2 system over
to SDS 6.4 system and keep it in same path as that on TDS 6.2
9. Start ibmslapd on SDS 6.4 system:
# cd /opt/IBM/ldap/V6.4/sbin
# ./idsslapd -I test4mig
10. Verify your new SDS 6.4 instance server work:
# cd /opt/IBM/ldap/V6.4/bin
# ./idsldapsearch -p 14389 -D cn=root -w secret -b o=ibm,c=us objectclass=*
>> works
11. Stop/Restart LDAP server Instance:
# cd /opt/IBM/ldap/V6.4/sbin
# ./idsslapd -I test4mig -k
# ./ibmdiradm -I test4mig -k
Then
# ./ibmdiradm -I test4mig
# ./idsslapd -I test4mig
12. Now - Check DB2 level of the LDAP Instance:
# cat /home/test4mig/idsslapd-test4mig/etc/ldapdb.properties
currentDB2InstallPath=/opt/IBM/sdsV6.4db2
currentDB2Version=10.5.0.5
13. Check current database for LDAP instance:
# su - test4mig
$ db2 list db directory
System Database Directory
Number of entries in the directory = 2
Database 1 entry:
Database alias = LDAPDB
Database name = LDAPDB
Local database directory = /home/test4mig
Database release level = 10.00
Comment =
Directory entry type = Indirect
Catalog database partition number = 0
Alternate server hostname =
Alternate server port number =
Database 2 entry:
Database alias = LDAPDB2B
Database name = LDAPDB
Local database directory = /home/test4mig
Database release level = 10.00
Comment =
Directory entry type = Indirect
Catalog database partition number = 0
Alternate server hostname =
Alternate server port number =
$ db2 connect to ldapdb
Database Connection Information
Database server = DB2/AIX64 10.5.5
SQL authorization ID = TEST4MIG
Local database alias = LDAPDB
>> Database was migrated to DB2 V10.5.5
14. Check current ibmslapd.conf of LDAP Instance:
# cd /home/test4mig/idsslapd-test4mig/etc
# cat ibmslapd.conf
>>
# IBM Directory Server Configuration File Version 6.4 for AIX
#
# See the "Configuration Schema" appendix in the
# IBM Directory Server Version 6.4 Installation and
# Configuration for Multiplatforms Guide.
#
charset: ISO-8859-1
version: 1
dn: cn=Configuration
cn: Configuration
ibm-slapdAdminDN: cn=root
ibm-slapdAdminGroupEnabled: true
ibm-slapdAdminPW: {AES256}HBEZGYqYBE4ZUEPyCkf+1Q==
ibm-slapdCryptoSync: s31zJO9CF3sbkI50
ibm-slapdDerefAliases: always
ibm-slapdPort: 30389
ibm-slapdPtaEnabled: false
# ibm-slapdPwEncryption must be one of:
# none/aes128/aes192/aes256/crypt/sha/ssha/md5/
# sha224/sha256/sha384/sha512/ssha224/ssha256/ssha384/ssha512
ibm-slapdPwEncryption: aes256
ibm-slapdServerBackend: RDBM
ibm-slapdServerId: 45082640-cbe7-1034-960f-ad4e2baf0202
ibm-slapdSizeLimit: 500
ibm-slapdStartupTraceEnabled: false
ibm-slapdSupportedWebAdmVersion: 3.0
ibm-slapdTimeLimit: 900
ibm-slapdTraceMessageLevel: 0xFFFF
ibm-slapdTraceMessageLog: /home/test4mig/idsslapd-test4mig/logs/traceibmslapd.log
ibm-slapdVersion: 6.4
:
------------
>> The remote migration from TDS 6.2 to SDS 6.4 between 2 AIX boxes for the LDAP instance was successfully.
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21968782