SailPoint IdentityIQ is a great product. We, as support team, have to support many customers at the same time and it is a must for us to have a virtual machine with different versions of IdentityIQ as the customer’s ones. So, here is our idea of creating a VM with many IIQ installations using the same database as a repository (Oracle MySQL) and same application server as a web container (Apache Tomcat). The Sailpoint versions used in this mini guide are IIQ 8.0 and IIQ 8.1.

Step 1: Perform the installation of the IdentityIQ 8.1

Follow our other post here: https://www.triveti.com/identity-governance/sailpoint-identityiq/how-to-install-sailpoint-identityiq/

Step 2: Stop the application server

$ /opt/sailpoint/tomcat/bin/shutdown.sh

Step 3: Create new database called iiq81

$ mysqladmin -u root -p create iiq81

Step 4: Dump database identityiq & restore to the new one iiq81

$ mysqldump -u root -p identityiq | mysql -u root -p iiq81

Step 5: Grant privileges for user identity to the new iiq database as follow & delete database identityiq

mysql -uroot -p
mysql>use iiq81
mysql> GRANT ALL PRIVILEGES ON `iiq81`.* TO ‘identityiq’@’%’;

mysql> drop database identityiq;

Step 6: Change the database name from identityiq to iiq81 as follow
vi /opt/sailpoint/tomcat/webapps/iiq81/WEB-INF/classes/iiq.properties

..
dataSource.url=jdbc:mysql://localhost/iiq81?useServerPrepStmts=true&tinyInt1isBit=true&useUnicode=true&characterEncoding=utf8&useSSL=false
..

Step 7: Start the application server

$ /opt/sailpoint/tomcat/bin/startup.sh

Step 8: Check if IIQ is working performing for example a login (spadmin/admin)

http://localhost:8080/iiq81/login.jsf

From now we will continue performing an installation of another version of IIQ: Sailpoint IdentityIQ 8.0.

Step 9: Perform the installation of the IdentityIQ 8.0

Follow our other post here: https://www.triveti.com/identity-governance/sailpoint-identityiq/how-to-install-sailpoint-identityiq/

Step 10: Stop the application server

$ /opt/sailpoint/tomcat/bin/shutdown.sh

Step 11: Fix the database part
Here is the situation of the databases on MySQL server:
mysql -u root -p
mysql> show databases;

+——————–+
| Database |
+——————–+
| information_schema |
| iiq81 |
| identityiq |
| mysql |
| performance_schema |
| sys |
+——————–+

Let’s create a new database called iiq80 (that is going to replace the identityiq database) and move all the data from identityiq to iiq80.

$ mysqladmin -u root -p create iiq80

Let’s dump the database identityiq & restore to the new one iiq80

$ mysqldump -u root -p identityiq | mysql -u root -p iiq80

Let’s grant privileges for user identity to the new iiq database as follow

$ mysql -uroot -p
mysql> GRANT ALL PRIVILEGES ON `iiq80`.* TO ‘identityiq’@’%’;

Let’s check if the user identityiq/identityiq can see our databases (remember that we are using the same mysql account for having access to our IIQ databases):

$ mysql -u identityiq -p
mysql> show databases;
+——————–+
| Database |
+——————–+
| information_schema |
| iiq81 |
| iiq80 |
| mysql |
| performance_schema |
| sys |
+——————–+

Ok, let’s delete now the old database identityiq because we don’t need it anymore.

mysql> drop database identityiq;

Step 12: Fix the iiq’s configuration.
We are almost there. Last step is changing the database name from identityiq to iiq80 as follow:

$ vi /opt/sailpoint/tomcat/webapps/iiq80/WEB-INF/classes/iiq.properties

..
dataSource.url=jdbc:mysql://localhost/iiq80?useServerPrepStmts=true&tinyInt1isBit=true&useUnicode=true&characterEncoding=utf8&useSSL=false
..

Step 13: Start the application server

$ /opt/sailpoint/tomcat/bin/startup.sh

Step 14: Check if IIQ is working performing for example a login (spadmin/admin)

http://localhost:8080/iiq80/login.jsf

NOTE: We have to perform steps from 9 to 14 to install other IIQs (for example: iiq7.0, iiq7.1, iiq7.2, iiq7.3, etc.).

That’s all! Have fun!

Comments

Your email address will not be published. Required fields are marked *

TRIVETI BV