Update:
Previous to OneFuse release 2023.1.1, CloudBolt OneFuse could take advantage of nested groups when performing access set-up into the OneFuse appliance.
This required new LDAP/AD groups to be created that were flat.
Release 2023.1.1 adds nested group support.
Prerequisite - Upgrade to 2023.1.1
Notes:
- Upgrade can be performed at the command line using a downloaded upgrader , or via Yum repository.
- Back-up using a cold snapshot or clone.
- If the version is previous to 1.4.x, the PostgreSQL database needs to upgraded. Proceed carefully.
- There is potential for simple things that should work to "blow up". Make sure you have a back-up, so you can get support and try again later.
Yum Instructions:
1. SSH into the appliance
2. Verify the repos include the CloudBolt packages
# yum-repolist
2. Apply update:
# yum check-update
3. After the upgrade, confirm the upgrade new version from the web GUI (login):
e.g. onefuseserver.mindwatering.net/ui/
On the login page, check the lower left corner of the screen for the appliance version number.
(e.g. v2023.1.1)
4. Once the main appliance software is updated, update the "upstream" providers.
(e.g. vRA 8.1 Orchestrator package, and/or the Terraform package etc.)
- a. Download the latest OneFuse vRealize Orchestrator Workflow Package using your "CloudBolt Connect" account.
- b. Import the package.
Note: If the plug-in version was for OneFuse 1.0/1.0.1, you must uninstall the current one first.
- - Login to the vRA appliance
- - On the Cloud Services Console page, click the Orchestrator option.
- - On the left menu, choose Assets --> Packages.
- - Click Import, and click Browse to locate the previously downloaded package above.
- - Click Open, accept the publisher certification if prompted.
- - Review the contents of the package as desired, click Import.
- c. Run the workflow to update the configuration.
- - Still in the vRO console, on the left menu, choose Library --> Workflows
- - Switch to tree view (right corner icon), and choose Workflows --> OneFuse --> Configuration --> OneFuse Configuration, and click the Run option to run the workflow.
- - Complete the form fields.
- - vRA Endpoint:
- - - vRA Version : vra8
- - - vRA Appliance FQDN: vra.mindwatering.net
- - - vRA Username: myloginid@mydomain
- - - vRA Password: myloginpassword
- - - vRA Appliance Port: 443
- - vRA Endpoint Settings:
- - - Ignore Certificate Warnings: true
- - - use Proxy no
- - Create a new OneFuse Endpoint:
- - - Create OneFuse Endpoint? no
- - - <verify the username, password, port, etc. are still correct>
( Verify the login account information. Answer yes, to create an endpoint, if this is your first time, or you had to uninstall. )
- - Wait for the workflow to run and verify success (checkmark and logs).
- e. Repeat for other "upstream provider" packages.
Steps to Add Nested Group Support:
1. SSH into the appliance.
2. Update the /var/opt/cloudbolt/proserv/customer_settings.py file, and add the following line:
# vi /var/opt/cloudbolt/proserv/customer_settings.py
...
DOMAIN_NESTED_GROUP_LEVELS=1
Save, with <esc>:wq
Note:
DOMAIN_NESTED_GROUP_LEVELS=0 disables support.
DOMAIN_NESTED_GROUP_LEVELS=1 enables it.
3. Restart the web service:
# systemctl restart httpd
previous page
|