Account Management 3.0

Password Replication Migration

Novell^® Account Management 3.0.2 includes all of the changes introduced with Support Pack 1. You do not need to install Support Pack 1 before you upgrade to Account Management 3.0.2. If you use or plan to use password replication and have not installed Support Pack 1, you must perform password replication migration when you upgrade to Account Management 3.0.2. If you have previously installed Support Pack 1, and you performed password replication migration then, you do not need to do it now.

Novell Account Management 3.0 Support Pack 1 removed the requirement for SecretStore^®. Existing passwords stored in SecretStore are migrated to OpenSSL Cypher Encryption technology during event processing and Trawls.

To configure for this change, modify the Event Listener and upgrade the Manager and Agents as described in the following sections.

Event Listener

Using ConsoleOne^®, modify the DirXML^™ subscriber attributes prior to upgrading the Agents and Manager.

1. Add the class ASAM-enterpriseUser to the subscriber filter.
2. Add the following attributes to the ASAM-enterpriseUser class:
   • ASAM-addTime
   • GUID
3. Restart the Driver.
4. After you have upgraded the Manager, you can remove sssProxyStoreSecrets from the subscriber filter for the user class.

Manager, Event Listener, and Agents

For passwords to seamlessly replicate during the installation process, upgrade the Manager, Event Listener, and Agents in quick succession during one maintenance period.

1. Upgrade the Manager first. This upgrades the Event Listener that is on the Manager Server.
2. Upgrade any Event Listeners not installed on the Manager Server.
3. Upgrade each Agent.

Note: The first Trawl after the update will take significantly longer to run due to the migration process.