There are times during testing or during deployment when you want to remove all the data in the RSA Identity Governance & Lifecycle Application Oracle Database. It is possible to clear out all the user data from an existing RSA Identity Governance & Lifecycle Oracle Database installation using the methods below.
For a Local Database
For a hardware or software appliance using a local database, the $AVEKSA_HOME/database/createSchema.sh script may be run which essentially erases all existing data. For that reason, it is recommended that a database backup is created before following this process.
For a Remote Database
Remote database environments such as Enterprise Software users using WebSphere or WebLogic, or software appliances using a remote database have a slightly different process. The createSchema.sh script cannot be used when the database is remote. For that scenario, the Oracle application user, AVUSER, has to be manually dropped and recreated. Refer to the RSA Identity Governance & Lifecycle Database Setup and Management Guide for your RSA Identity Governance & Lifecycle version for specifics on how to do this for a remote database.
NOTE: If AFX is used, AFX data may need to be re-enabled after the database is completely refreshed. This RSA Knowledge Base Article covers RSA Identity Governance & Lifecycle only.
This process can be used for a hardware or software appliance that has a local database.
Login as the linux oracle user and perform the following tasks:
Take a backup of the database (a database export).
It is good policy to make sure that a backup of the existing database is created in the event it needs to be restored at some future point in time.
Export metadata for collectors, workflows etc., i. e., anything that will be reused in the new fresh or clean database. Workflow metadata may be exported by going to Admin > Import/Export > Workflow tab > Export(all).) All other metadata may be exported by going to Admin > Import/Export > General tab > Export. Refer to the RSA Identity Governance & Lifecycle Administrator's Guide for your RSA Identity Governance & Lifecycle version or to the on-line help for more information on performing the metadata export. Keep in mind that metadata imports are only supported from the same version and patch level to the same version and patch level. You will need the metadata exports if you need to recreate collectors, workflows and other objects in the refreshed database.
Stop the RSA Identity Governance & Lifecycle application:
$ acm stop
$ service aveksa_server stop
Stop and restart the database:
$ acm stopdb
$ acm startdb
$ service aveksa_server stopdb
$ service aveksa_server startdb
Change directories to /home/oracle/database ($AVEKSA_HOME/database):
$ cd /home/oracle/database
Runthe create schema script:
The createSchema.sh script should take between 15 and 35 minutes to run depending on the class of machine. The script drops and recreates the application use, AVUSER. Note that the default password for this user will be restored If this password had been changed, it will need to be updated again manually by logging into the database as sysdba and updating the password.
After this script completes, the database will be in the same state as a new installation.
Install any required patches, which may have been applied.
Start the RSA Identity Governance & Lifecycle application:
$ acm start
$ service aveksa_server start
Import metadata and run collections to collect and process all new fresh data.
Note: A backup from a previous system or version could also be imported at this time.
As a reminder, since running this script resets the database to be the same as a fresh, brand new installation, the default AveksaAdmin password is reset to the new installation default.
When the createSchema.sh script is run, the output on the terminal session will look similar to this: