Video Screencast Help

How can the embedded Java version be upgraded independently in the Veritas Operations Manager Unix product from Veritas?

Created: 16 Oct 2012 • Updated: 07 Nov 2012
Language Translations
RodP's picture
0 0 Votes
Login to vote

Problem

Java is embedded within the Veritas Operations Manager (VOM) application and requires manual steps to upgrade to work with the application.

Error

There are many scans that can alert to vulnerabilities in a Java / JRE version and a patch would be required to upgrade the CCS application to the latest available Java version from Oracle.

Environment

Solaris 9 / 10 Server, Red Hat Enterprise Linux 5.5+, 6.x+ and Suse Linux Enterprise Server 10 SP2, 11.x hosting the VOM Management Server.

Java / JRE from Oracle

 VOM 4.1x, 5.0
 
Cause

Java / JRE is embedded within the CCS application and the installer for Java updater updates a standalone installation

Solution

Note: There are two Unix versions available for the Central Management Server (CMS) in VOM. Please select the Java binaries for your version to collect the proper files.

Supported OS:
These versions of the JRE list for Unix are supported on:
Oracle Solaris 10 Update 9 or later OS.
Red Hat Enterprise Linux 5.5+, 6.x+ and Suse Linux Enterprise Server 10 SP2, 11.x

Download the latest jre and cryptographic jars from Oracle Jre download site:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

Download JRE :
---------------------

Solaris:

   -  jre-7u<version>-solaris-sparc.tar.gz     (32-bit)
   -  jre-7u<version>-solaris-sparcv9.tar.gz   (64-bit)

As of the date of writing the version was update 9.
http://www.oracle.com/technetwork/java/javase/downloads/jdk7u9-downloads-1859576.html

Oracle has documentation available on a per release instance for example:
http://docs.oracle.com/javase/7/docs/webnotes/install/solaris/solaris-jre.html

Linux:

    - jre-7u<version>-linux-x64.tar.gz

Oracle has documentation available on a per release instance for example:
http://docs.oracle.com/javase/7/docs/webnotes/install/linux/linux-jre.html

Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files 7 :
---------------------------------------------------------------------------------------------------------------------
UnlimitedJCEPolicyJDK7.zip

Installation:
-----------------

1] The following steps can be performed in either order.
    a) gzip -dc jre-7u<version>-solaris-sparc.tar.gz | tar xf -
    b) gzip -dc jre-7u<version>-solaris-sparcv9.tar.gz | tar xf -
or
    c)  tar zxvf jre-7u<version>-linux-x64.tar.gz

2] Rename the extracted directory "jre1.7.<version>"  to "jre"
    mv jre1.7.<version> jre

3] Update the cryptographic jars
    a) Unzip UnlimitedJCEPolicyJDK7.zip
       This contains two jars:
    - local_policy.jar
    - US_export_policy.jar

    b) Copy the above two jars from UnlimitedJCEPolicy/ to jre/lib/security/

4] Backup the current jre folder
        /opt/VRTSsfmcs/esmweb/jre

5] Copy the new jre to /opt/VRTSsfmcs/esmweb/

6] Restart the VOM webserver
    /opt/VRTSsfmcs/bin/vomsc --restart web