Upgrade from ACS 5.4 patch 6 to ACS 5.5 patch 4 advice

Similar Messages

• Apex_util.set_session_state don't works after upgrade from 4.0.1 to 4.0.2

  Hi!
  We have custom authentication scheme with "Page Sentry Function" and "Post-Authentiaction Process" defined.
  Page sentry function called wwv_flow_custom_auth.define_user_session procedure.
  Post-authentiaction process called apex_util.set_session_state procedure to set some application items.
  All works fine until we upgraded from version 4.0.1 to 4.0.2 (patch 10173973).
  In verion 4.0.2 apex_util.set_session_state does nothing....
  This is a bug or a feature? :)
  Thanks.

  Hi, Patrick!
  Test case on http://apex.oracle.com/pls/apex/f?p=31741
  1. Run http://apex.oracle.com/pls/apex/f?p=31741 (Values of items F31741_USERID and F31741_USERINFO are not null)
  2. Login into apex builder (workspace: WS_AVER, user: VERSALAO, pass: qwerty%)
  3. Run page 1. Values of items F31741_USERID and F31741_USERINFO is null
  4. Logout from apex builder
  5. Run http://apex.oracle.com/pls/apex/f?p=31741 - "ERR-1201 session ID not set on custom authentication" displayed
  Where is an error in my code?
  Thanks.
  Edited by: user12288359 on 25/11/2010 7:23

• Trying to upgrade from 10.6.8 to Yosemite

  I have to upgrade my operating system to Yosemite from 10.6.8. I've already checked to see what app compatibility problems I'll have to deal with, so I know pretty much what to expect. But when I go in to the Mac App Store and hit Upgrade Now, it sends me to a page that says Mac App Store Preview / OS X Yosemite. Then when I hit the View in Mac App Store button, it won't do anything, so I hit the link at the top of the page that says How to Upgrade, and it sends me to an instruction page that consists of a checklist of things to check on and the general requirements for the upgrade. Then when I hit the Upgrade Now button, it sends me back to that first Mac App Store Preview page that I was at before, with no way to get it to upgrade from there. If someone could please give me some advice as to how to go about this upgrade, I'd be extremely appreciative.

  Hello Valerie,
  This is the link to the combo updater.  From it you will see the reason for having it.  If you have previously downloaded it and forgotten, it doesn't matter.  A repeat will do no harm to your system.
  Be aware, it is a big (and important) update and may take some time.
  http://support.apple.com/kb/DL1399
  It will take your system to its highest level and hopefully may improve the facility for you to download Yosemite.

• Patch 9 ACS-4.2.0.124-9-SW install error and upgrade advice to 4.2.1

  Hi,
  I have two Windows ACS's which I need to replicate between each other - this happened in the past (when both at the same lower patch level)  , but the original Primary one of the pair one has had to be down graded to it's original level due to install errors. Both are now independant ACS's
  To sort out the lack of replication we need to patch the planned PR box from 4.2 (0) Build 124 to the same level as the planned DR which is at 4.2 (1) Build 15 Patch 4.
  We've tried installing Patch ACS-4.2.0.124-9-SW on the 4.2 (0) Build 124 as we were informed (some time ago) that it is required before running the ACS-4.2.1.15.4-SW.exe patch.
  The patch installed, but when we ran CSUpdate as per the instructions in Acs-4_2_0_124_9-SW-Readme.txt , we tried both the -install option and the -upgrade switch and got a [1] [169]:SL:loadHosts - execution failed Can not load HostDB error. (See screen shot)
  After this the ACS services  (in Windows Services ) wouldn't start, even after a server reboot.
  Should we leave this patch 9 and install cumlative patch 17 instead and then run ACS-4.2.1.15.4-SW.exe patch ?
  The read me notes for cumlative patch 4.2.1.15.4.17 looks like it might require Patch 9 as it only lists bug fixes from Patch 10 upwords (although it mentions a refix for 9 right at the bottom of the page).
  Thanks

  You may upgrade directly to patch 17, this one doesn't ask to apply csupdate.exe before the cumulative patch.
  ~BR
  Jatin Katyal
  **Do rate helpful posts**

• ACS upgrade from 4.0.x to 4.1.x "Appliance upgrade in progress"

  Hello friends,
  We are in the process of upgrading ACS 4.0 to 4.1 in a SE appliance 1113.
  We followed very carefuly the steps, and upgraded de Appliance management ACS 4.1. The second upgrade (Software for appliance 4.1) keeps showing "Appliance upgrade in progress..." (near 2 hours by now). I know that it can stick even finishing, but it seems it has not finished because we can not log in with the GUI Administrator account like we did when upgrading the management software (previous step).
  Is this normal? what can be missing?, I attach the console text output below (IP adds obscured).
  Note the management upgrade went fine.
  Thanks.
  Cisco Secure ACS: 4.1.1.23
  ACS 4.0.1.49-CSAdmin-CSCsd96293_CSCse26719 Fix: (Patch: 4.0.1.49 Tue 01/09/2007
  7:50:00.17)
  Appliance Management Software: 4.1.1.23
  Appliance Base Image: 4.0.1.2
  CSA build 4.0.1.543.2: (Patch: 4_0_1_543)
  Appliance upgrade in progress...
  Session Timeout: 10
  Last Reboot Time: Fri Jun 06 11:46:40 2008
  Current Date & Time: 6/6/2008 13:17:40
  Time Zone: (GMT-05:00) Bogota, Lima, Quito
  NTP Server(s): 131.107.1.10
  CPU Load Free Disk Free Physical Memory
  0.00% 16.9 GB 765 MB
  Appliance IP Configuration
  DHCP Enabled. . . . . . . . . . .: No
  IP Address. . . . . . . . . . . .: 172.16.x.y
  Subnet Mask . . . . . . . . . . .: 255.255.255.0
  Default Gateway . . . . . . . . .: 172.6.x2.y2
  DNS Servers . . . . . . . . . . .: 172.16.x3.y3
  CSAdmin running
  CSAuth running
  CSDbSync running
  CSLog running
  CSMon running
  CSRadius running
  CSTacacs running
  CSAgent stopped
  Appliance upgrade in progress...

  Thanks Jagdeep, but the upgrade has not finished.
  The documentation mentions (please read it carefully):
  "IF YOU COMPLETE THE UPGRADE and the ACS console displays the message Appliance upgrade in progress, this indicates that the upgrade PROGRESS is hanging.
  If this condition occurs, start an ACS console session and enter the command download [hostAddress], where hostAddress can be any IP address. This action releases the ACS console from the upgrade process."
  What worries me is that it has not finished.
  As I said in my post, we can not log in :( (the GUI gets blocked during the upgrade).
  I appreciate the help. Many Thanks.

• ACS runtime process is restarting after upgrading from 5.0 to 5.1

  Hi,
  I have upgraded ACS 5.0.0.21 to latest patch 6 then patched latest ADE
  later upgraded the 5.1.0.44 and applied latest patch (5.1.0.44-5)
  then restarted the server but when I launch the reporting window,
  it says runtime process restarting condition always.
  all other functionality is working fine (user and device authentication.)
  Cheers

  ACS installation guide says that in order to upgrade ACS 5.0 to 5.1 you should apply patch 9 before you apply ADE-OS patch. However, you applied i think patch 9 ( or was that a typo).
  Installation guide:
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.1/installation/guide/csacs_upg.html#wp1167547
  Since, Authentication part is working fine this looks like a cosmatic issue.The issue is with the size of the database at the time of the conversion, and a scaling problem in the View database which prevents the proper conversion.
  CSCta33014    View Upgrade process status message need to be fixed
  I would suggest you to apply patch 5 for ACS 5.1 code. You may downlaod patch 5 from the below listed link;
  http://tools.cisco.com/squish/1D47B
  File name: 5-1-0-44-5.tar.gpg
  Issue the following acs patch command in the EXEC mode to install the ACS patch:
  acs patch install patch-name.tar.gpg repository repository-name
  HTH
  Jatin
  Do rate helpul posts~

• ACS loses connection with AD occasionally after upgrade from 5.2 to 5.3.0.40

  ACS had been integrated with Active Directory before ACS upgrade to 5.3. After the ACS 5.3 upgrade users aren’t able to login to AAA devices occasionally. Error message is:
  {AuthenticationResult=Error; Type=Authentication; Authen-Reply-Status=Error; }
  24429 Could not establish connection with Active Directory
  At the same time, when this issue occurs, ACS connection to AD works fine (checked with Users and Identity Stores> External Identity Stores > Active Directory “Test Connection”)

  I had the same problem, I opened a Cisco TAC case and my issue was resolved.
  Sent: Tuesday, 14 August 2012 9:58 AM
  Subject: RE: 622739355 HelpDesk#SVR328332-2 : Troubleshoot Cisco ACS 1121 v5.3 With Windows Active Directory
  Hi Ramraj,
  Thanks for the link to the article, but from what I’ve seen in the logs I’m not sure that we’ve got the same root cause to the issue.
  From the ACSADAgent.log files I can see log messages like:
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG network.state NST: SniffList: postfailsort=mykulad11p.cssc.dksh.net
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.kerberos.adhelpers Encryption (id 1) is not supported by KDC. Try next in the list
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.osutil Module=Kerberos : KDC refused skey: KDC has no support for encryption type (reference base/adhelpers.cpp:216 rc: -1765328370)
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.adagent Unable to refresh computer credentials: KDC refused skey: KDC has no support for encryption type
  This lines up with the error message that we see in the TACACS+ Authentication logs:
  24493 ACS has problems communicating with Active Directory using its machine credentials.
  I have come across a NETBIOS limitation (it’s not an ACS bug, but a bug has been filed for tracking and documentation purposes) that prevents two ACSs from being connected to Active Directory at the same time if the first 15 characters of their hostnames are the same. The bug ID is CSCtj62342 and its externally visible details are available here: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtj62342
  The hostname of the primary ACS is : MYMY-TPM-DC-ACS-1
  The hostname of the secondary ACS is: MYMY-TPM-DC-ACS-2
  From the hostnames, we can see that the first 16 characters of the hostnames are the same. What this means is that once the primary is connected to AD, after some time passes (this will depend on when the secondary goes an talks to AD) the secondary will lose its connection to AD and any authentications hitting the secondary will fail with the same error: 24493 ACS has problems communicating with Active Directory using its machine credentials.
  To resolve this issue, the hostnames of the ACSs will need to be changed so that the first 15 characters of their respective hostnames are not the same. Please keep in mind that this is a NETBIOS limitation and not a software bug.

• ACS upgrade from 4.2.1.15 to ACS5.6

  HI 
  We have bought new ACS5.6 SNS3415 Boxes , earlier we have ACS4.2.1.15   , now we want to migrate the data from old ACS to new ACS.
  We have downloaded the ACS and trying to install 4.2.1.15 but getting the error
  " ACS4.2.115 can only be installed on top of base version"
  So we have installed the eval-ACS-4.2.0.124-SW  successfully. And now we are trying to install the 4.2.1.15 but we are getting eth below error
  " 4.2.1.5 can not be installed on EVAL version"
  How can we resolve this so that we can migrate the data to ACS5.6 via migration utility.

  Refer the link : https://supportforums.cisco.com/discussion/11513026/migrating-acs-420-421
  you can directly upgrade from 4.2.0.124 to 5.6 : http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-6/user/guide/acsuserguide/migrate.html#98379

• CAnnot upgrade serial number after download. 'This serial number is not for a qualifying product'. Trying to upgrade from ACS 5.5 Design Premium to ACS 6 Design Standard

  Cannot upgrade serial number after download. 'This serial number is not for a qualifying product'. Trying to upgrade from ACS 5.5 Design Premium to ACS 6 Design Standard

  start the installation of design premium cs5.5 just to make sure you're using the correct serial number.  once your serial number is accepted you'll see a screen giving you the option to install none, some or all of the cs5.5 programs.  at that point you can quit and not install anything having verified your cs5.5 serial number if you want nothing cs5.5 on your computer.
  on the other hand, if your cs5.5 serial number is not accepted, you'll pinpoint the problem.
  or, if your cs5.5 number is accepted, you could install a cs5.5 program and then install cs6.  it should recognize you have a cs5.5 program installed and NOT prompt you for you cs5.5 serial number allowing you to continue with your cs6 installation.

• Apply patch to acs Appliance

  I was wondering if someone can help me to upgrade my ACS Appliance with patch 4.1.1.23.4-SW. It was simple to apply this one in a normal server 2000. The ACS appliance I think is different because that we can access by normal terminal, keyboard and mouse.
  Some were I read that is necessary a tomcat server?
  Please help
  adi

  Hi,
  ACS v4.1.1.23 patch 5 is available so go for this new patch.
  You should have a pc which can access ACS through web interface. Keep the patch file on the PC.
  Follow the steps below on the PC:
  [1] Extract zipped file
  [2] Look for ?autorun.exe? file and double click on it
  [3] It will start a tomcat server on your desktop and you?ll see a web page asking for ACS
  SE ip address :
  Provide in the ACS SE ip address and press ?Install?
  [4] It will prompt for ACS admin username and password as shown below :
  Provide in the username and password and login.
  [5] Then it bring up ACS GUI, then go to
  System Configuration > Appliance Upgrade Status > Download,
  Then we?ll get a screen where it will ask for ip address of Install Server :
  Provide in ip address of system from where we are applying this patch, in our case our
  desktop ip address, then click connect.
  [6] It will show us following screen :
  Click on ?Download Now?
  Then it?ll show us this screen :
  Press ?Refresh? Till we see following screen :
  [7] Now press ?Apply Upgrade?. Then it?ll ask for confirmation :
  Press ?Upgrade?, then we?ll get information regarding the patch.
  Click ?Yes?.
  It?ll take few minutes to apply that patch on appliance.
  Then it?ll show us a confirmation message :
  Press ?Done?, then system will reboot.
  To confirm that patch has been applied successfully, goto
  System Configuration > Appliance Upgrade Status
  After everything is fine stop the tomcat server by clicking on ?stop distribution server? or
  if you want to apply this patch on some more appliance click on ?Install Next?
  Hope this helps.
  ~Rohit

• A patch for ACS 3.0.1 has been emailed

  The bad signature error that started on 12/15/2004 has been corrected with a patch to ACS 3.0 and 3.0.1. It was emailed to customers of record.
  In some cases the email address will be for an employee no longer with your company and will bounce. If you have not received the patch, send an email with your company name and domain name to [email protected]
  If you are still running ACS 2.x, contact me and I will arrange for a free upgrade to ACS 3.0.1. A patch for ACS 2.x wasn't possible.
  Irv

  Good morning,
  we inform you that we havent received any patch about ACS from you.
  Since yesterday, when we download E-book files from our clients, in our ACS the following message appears:
  EBXClient Error:404
  Could not authenticate with voucher engine at server
  Server Code:500
  (5) Could not obtain voucher
  Exception ActiveVE (issue Voucher):
  Code 0x80000007 (-2147483641)
  ActiveVE Failed, code = 7(Voucher Engine credentials bad signature)
  Our Adobe ACS version is 2.0.
  No message appears in the Windows Event Viewer, on the contrary in the Event Server Properties ACS the following warning appears:
  500;100 Internal server error Asp error
  501 Not implemented
  502 Bad Gateway
  Solving this problem is very important and urgent for our sales.
  We thank you in advance for your prompt reply.

• Upgradition ACS 4.2.0.124.16 on appliance 1113 to ACS 4.2.1.15 and then to patch 8(Latest)

  Dear Everyone,
  we have below softwares in the order to install one by one on the appliance 1113.
  1)ACSse-Upgrade-Pkg-appl-mng-v4.2.1.15-K9.zip
  (Appliance Management package)
  2)ACSse-Upgrade-Pkg-acs-v4.2.1.15-K9.zip
  (ACS Software package)
  3)applAcs_4.2.1.15.8.zip
  (ACS SE 4.2.1.15.8 cumulative patch)
  Kindly guide us to take it forward to upgrade by step by step procedure.
  ( is that same like TFTP to transfer these packeges to appliance or different method? )
  (we are using Windows XP system)
  Quick suggestion would be useful and appreciated.
  Message was edited by: vishweswaran K

  TCP Port 8080 is used for the transfer
  You start with the management package , then the software package , after that you patch the server.
  For more details, check the following link:
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/upgap.html#wp1165150
  Please Don't Forget to rate correct answer

• Sunone console not opening after upgrade from DS5.2 patch 3 to patch 4

  Hello,
  The Sunone Console is not opening when i upgrade from Directory server 5.2 patch 3 to patch4. I getting the following error message
  "error 501 Cannot logon because of an Incorrect userid,incorrect password or directory problem"
  can u please guide me. how can i solve this problem.
  Regards,
  Srini

  So while this certainly isn't the most elegant of solutions, and most assuredly isn't in the realm of supported by Oracle...
  I've used the DBMS_IJOB.DROP_USER_JOBS('username'); package to remove the 194558 orphaned job entries from the job$ table. Don't ask, I've no clue how they all got there; but I've prepared some evil looks to unleash upon certain developers tomorrow morning.
  Not being able to reorganize the JOB$ table to free the now wasted ~67MB of space I've opted to create a new index on the JOB$ table to sidestep the full table scan.
  CREATE INDEX SYS.JOB_F1_THIS_NEXT ON SYS.JOB$ (FIELD1, THIS_DATE, NEXT_DATE) TABLESPACE SYSTEM;The next option would be to try to find a way to grant the select privilege to the role without using the aforementioned "after CREATE on schema" trigger and dbms_job call. This method was adopted to cover situations in which a developer manually added a table directly to the database rather than using the provided scripts to recreate their test environment.
  I assume that the following quote from the 11gR2 documentation is mistaken, and there is no such beast as "create or replace table" in 11g:
  http://download.oracle.com/docs/cd/E11882_01/server.112/e10592/statements_9003.htm#i2061306
  "Dropping a table invalidates dependent objects and removes object privileges on the table. If you want to re-create the table, then you must regrant object privileges on the table, re-create the indexes, integrity constraints, and triggers for the table, and respecify its storage parameters. Truncating and replacing have none of these effects. Therefore, removing rows with the TRUNCATE statement or replacing the table with a *CREATE OR REPLACE TABLE* statement can be more efficient than dropping and re-creating a table."

• I just upgraded from snow leopard v10.6.8 to os x mountain lion and my scroll bar has disappeared on all my applications on the internet. does anyone know a patch to get the scroll bar to work.

  i just upgraded from snow leopard v10.6.8 to os x mountain lion and my scroll bar has disappeared on all my applications on the internet. does anyone know a patch to get the scroll bar to work.

  Open General preferences in System Preferences. You can set the desired scrollbar behavior there.

• Patch for cluster upgrade from 10201-10203

  Hi,
  i want to upgrade my cluster from 10.2.0.1 to 10.2.0.3
  can somebody help me in finding the upgrade patch from 10.2.0.1 to 10.2.0.3
  Thanks
  Bala

  patch for which operating system? and why you would like to patch 10203 ?
  if you have metalink account you can download latest patches and documentation for particular patches.
  search metalink knowledge tab for documentation.
  for LINUX os patch download from metalink oracle support select tab patch&upgrade and search the patch i already mentioned.
  for windows and mac os you can directly download from OTN.
  http://www.oracle.com/technetwork/database/enterprise-edition/downloads/index.html
  Oracle Database 10g Release 2 (10.2.0.4) for MAC OS X on Intel x86-64
       Oracle Database 10g Release 2 (10.2.0.4) for Microsoft Windows Vista x64 and Microsoft Windows Server 2008 x64
       Oracle Database 10g Release 2 (10.2.0.3/10.2.0.4) for Microsoft Windows Vista and Windows 2008