Upgrading IdentityIQ Cloud Gateway

Stop the Apache Tomcat Server.
Take a backup of the lib and lib-connectors (if present) directories present in cloudGatewayInstallationDir/apache/tomcat/7.0.32/webapps/CloudGateway/WEB-INF/ directory.
Take steps to mitigate log4j vulnerability (CVE-2021-44228)

Note
This step is applicable only for IdentityIQ Cloud Gateway 8.0 version and later.

To prevent this vulnerability from being exploited, introduce a JVM system property to the Apache Tomcat server environment that is hosting IdentityIQ Cloud Gateway, set the following property in catalina.sh or catalina.bat on the Cloud Gateway instance:

set CATALINA_OPTS=%CATALINA_OPTS% -Dlog4j2.formatMsgNoLookups=true
Extract the contents of the identityiq-CloudGateway-releaseVersion.zip file, where releaseVersion is the current version of IdentityIQ Cloud Gateway.
Replace the new lib and lib-connectors directories (extracted and copied from step 2 above) in the following respective directories:
- (For lib): cloudGatewayInstallationDir/apache/tomcat/7.0.32/webapps/CloudGateway/WEB-INF/lib
- (For lib-connectors): cloudGatewayInstallationDir/apache/tomcat/7.0.32/webapps/CloudGateway/WEB-INF/lib-connectors
Start the Apache Tomcat Server.
Run IdentityIQ Cloud Gateway Synchronization Task to synchronize all the application objects on upgraded Cloud Gateway.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Upgrading IdentityIQ Cloud Gateway

Documentation Feedback