This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
SecurID® Governance & Lifecycle Knowledge Base
Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID Governance & Lifecycle experts.
- RSA Community
- :
- Products
- :
- RSA Governance & Lifecycle
- :
- Knowledge Base
- :
- How to remove all user data stored in the RSA Identity Governance and Lifecycle application database
-
Options
- Subscribe to RSS Feed
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
How to remove all user data stored in the RSA Identity Governance and Lifecycle application database
Article Number
000028204
Applies To
RSA Product Set: Identity Governance & Lifecycle
RSA Version/Condition: 6.x, 7.x
RSA Version/Condition: 6.x, 7.x
Issue
There are times during testing or during deployment when you want to remove all the data in the RSA Identity Governance & Lifecycle Application Oracle Database. It is possible to clear out all the user data from an existing RSA Identity Governance & Lifecycle Oracle Database installation using the methods below.
NOTE: If AFX is used, AFX data may need to be re-enabled after the database is completely refreshed. This RSA Knowledge Base Article covers RSA Identity Governance & Lifecycle only.
For a Local Database
For a hardware or software appliance using a local database, the $AVEKSA_HOME/database/createSchema.sh script may be run which essentially erases all existing data. For that reason, it is recommended that a database backup is created before following this process.For a Remote Database
Remote database environments such as Enterprise Software users using WebSphere or WebLogic, or software appliances using a remote database have a slightly different process. The createSchema.sh script cannot be used when the database is remote. For that scenario, the Oracle application user, AVUSER, has to be manually dropped and recreated. Refer to the RSA Identity Governance & Lifecycle Database Setup and Management Guide for your RSA Identity Governance & Lifecycle version for specifics on how to do this for a remote database.NOTE: If AFX is used, AFX data may need to be re-enabled after the database is completely refreshed. This RSA Knowledge Base Article covers RSA Identity Governance & Lifecycle only.
Resolution
This process can be used for a hardware or software appliance that has a local database.
Login as the linux oracle user and perform the following tasks:
After this script completes, the database will be in the same state as a new installation.
Login as the linux oracle user and perform the following tasks:
- Take a backup of the database (a database export).
It is good policy to make sure that a backup of the existing database is created in the event it needs to be restored at some future point in time.
- Export metadata for collectors, workflows etc., i. e., anything that will be reused in the new fresh or clean database. Workflow metadata may be exported by going to Admin > Import/Export > Workflow tab > Export(all).) All other metadata may be exported by going to Admin > Import/Export > General tab > Export. Refer to the RSA Identity Governance & Lifecycle Administrator's Guide for your RSA Identity Governance & Lifecycle version or to the on-line help for more information on performing the metadata export. Keep in mind that metadata imports are only supported from the same version and patch level to the same version and patch level. You will need the metadata exports if you need to recreate collectors, workflows and other objects in the refreshed database.
- Stop the RSA Identity Governance & Lifecycle application:
$ acm stopor
$ service aveksa_server stop- Stop and restart the database:
$ acm stopdb
$ acm startdb
or
$ service aveksa_server stopdb
$ service aveksa_server startdb- Change directories to /home/oracle/database ($AVEKSA_HOME/database):
$ cd /home/oracle/database
- Run the create schema script:
$ ./createSchema.shThe createSchema.sh script should take between 15 and 35 minutes to run depending on the class of machine. The script drops and recreates the application use, AVUSER. Note that the default password for this user will be restored If this password had been changed, it will need to be updated again manually by logging into the database as sysdba and updating the password.
After this script completes, the database will be in the same state as a new installation.
- Install any required patches, which may have been applied.
- Start the RSA Identity Governance & Lifecycle application:
$ acm startor
$ service aveksa_server start- Import metadata and run collections to collect and process all new fresh data.
Notes
As a reminder, since running this script resets the database to be the same as a fresh, brand new installation, the default AveksaAdmin password is reset to the new installation default.
When the createSchema.sh script is run, the output on the terminal session will look similar to this:
When the createSchema.sh script is run, the output on the terminal session will look similar to this:
$ ./createSchema.sh
Executing sys statements . . .
[0:00:02 1%] executing Create Scripts/Drop_User.sql
[0:02:40 1%] executing Create Scripts/Drop_Reports_User.sql
[0:02:43 1%] executing Create Scripts/Drop_Public_User.sql
[0:02:45 1%] executing Create Scripts/Drop_ExportImport_Directory.sql
[0:02:45 1%] executing Create Scripts/Drop_Data_Directory.sql
[0:02:45 1%] executing Create Scripts/Drop_Reports_Directory.sql
[0:02:45 1%] executing Create Scripts/Create_TableSpaces_ASM.sql
[0:03:17 1%] executing Create Scripts/Create_ExportImport_Directory.sql
[0:03:17 1%] executing Create Scripts/Create_User_Profile.sql
[0:03:17 1%] executing Create Scripts/Create_System_Profile.sql
[0:03:17 1%] executing Create Scripts/Create_User.sql
[0:03:18 2%] executing Create Scripts/Create_User_Grants.sql
[0:03:18 2%] executing Create Scripts/Create_Reports_User.sql
[0:03:18 2%] executing Create Scripts/Create_Public_User.sql
[0:03:18 2%] executing migration/loadDatabaseUpdates.sql
.
.
.
Executing public schema statements . . .
[0:08:43 100%] executing packages/As_Public_Schema_User.pks
[0:08:43 100%] executing packages/As_Public_Schema_User.pkb
[0:08:43 100%] executing Create Scripts/Create_Synonyms_Public_Schema.sql
The log is available at: /home/oracle/database/log/create.log
Tags (76)
- 6
- 6.8
- 6.8 Service Pack 1
- 6.8 SP1
- 6.8.1
- 6.8.1.x
- 6.8.x
- 6.9
- 6.9 Service Pack 1
- 6.9 SP1
- 6.9.1
- 6.9.1.x
- 6.9.x
- 6.x
- 7
- 7.0
- 7.0.x
- 7.1
- 7.1.x
- 7.x
- Admin
- Admin Tutorial
- Administration
- Administrative
- Aveksa
- Config
- Configuration
- Configure
- Configuring
- Customer Support Article
- Database
- Database Tutorial
- Helpful Hints
- How To
- Identity
- Identity G&L
- Identity Governance & Lifecycle
- Identity Governance and Lifecycle
- IG&L
- IGL
- Implementation
- Implementing
- Informational
- Instructions
- KB Article
- Knowledge Article
- Knowledge Base
- management
- Process Steps
- RSA Identity
- RSA Identity G&L
- RSA Identity Governance & Lifecycle
- RSA Identity Governance and Lifecycle
- Set Up
- Setup
- Tip & Tricks
- Tips and Tricks
- Tutorial
- Version 6
- Version 6.8
- Version 6.8.1
- Version 6.8.1.x
- Version 6.8.x
- Version 6.9
- Version 6.9.1
- Version 6.9.1.x
- Version 6.9.x
- Version 6.x
- Version 7
- Version 7.0
- Version 7.0.x
- Version 7.1
- Version 7.1.x
- Version 7.x
- Walk Through
- Walkthrough
No ratings
