迁移IBM SDS 6.4到ISVD 10.0.3

1.导出samldap的配置

$ sudo /opt/ibm/ldap/V6.4/sbin/migbkup /opt/data/tdsdata/samldap/idsslapd-samldap /tmp/samldap/
Backing up schema and configuration files
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.ibm.at .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.ibm. oc
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.system.at .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.system.oc .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.user.at
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.user.oc .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.modifiedschema .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/logs/perftune_stat.log .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/ibmslapd. conf .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/perftune_input.conf .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/ibmslapdcfg.ksf .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/ibmslapddir.ksf .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.config.at .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.config.oc .
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.ldapsyntaxes
Copying: file /opt/data/tdsdata/samldap/idsslapd-samldap/etc/V3.matchingrules

2.导出simldap的配置

$ sudo /opt/ibm/ldap/V6.4/sbin/migbkup /opt/data/tdsdata/simldap/idsslapd-simldap /tmp/simldap/
Backing up schema and configuration files
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.ibm.at .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.ibm.oc .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.system.at
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.system.oc
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.user.at
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.user.oc
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.modifiedschema .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/logs/perftune_stat.log .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/ibmslapd.conf .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/perftune_input.conf
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/ibmslapdcfg.ksf .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/ibmslapddir.ksf .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.config.at
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.config.oc .
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.ldapsyntaxes
Copying: file /opt/data/tdsdata/simldap/idsslapd-simldap/etc/V3.matchingrules

3.打包压缩samldap导出的配置

-sh-4.2$ sudo tar -czvf /tmp/samldap-etc.tar.gz /tmp/samldap/etc/
tar: Removing leading `/’ from member names
/tmp/samldap/etc/
/tmp/samldap/etc/V3.modifiedschema
/tmp/samldap/etc/ibmslapdcfg.ksf
/tmp/samldap/etc/V3.ibm.at
/tmp/samldap/etc/V3.user.at
/tmp/samldap/etc/V3.user.oc
/tmp/samldap/etc/platforminfo
/tmp/samldap/etc/perftune_stat . log
/tmp/samldap/etc/V3.config.oc
/tmp/samldap/etc/db2info
/tmp/samldap/etc/V3.system.oc
/tmp/samldap/etc/perftune_input. conf
/tmp/samldap/etc/ibmslapddir.ksf
/tmp/samldap/etc/ibmslapd.conf
/tmp/samldap/etc/V3.system.at
/tmp/samldap/etc/V3.matchingrules
/tmp/samldap/etc/V3.ibm.oc
/tmp/samldap/etc/V3.config.at
/tmp/samldap/etc/V3.ldapsyntaxes

4.打包压缩simldap导出的配置

sudo tar -czvf /tmp/simldap-etc.tar.gz /tmp/simldap/etc/
tar: Removing leading /’ from member names
/tmp/simldap/etc/
/tmp/simldap/etc/V3.modifiedschema
/tmp/simldap/etc/ibmslapdcfg.ksf
/tmp/simldap/etc/V3.ibm.at
/tmp/simldap/etc/V3.user.at
/tmp/simldap/etc/V3.user.oc
/tmp/simldap/etc/platforminfo
/tmp/simldap/etc/perftune_stat.log
/tmp/simldap/etc/V3.config.oc
/tmp/simldap/etc/db2info
/tmp/simldap/etc/V3.system.oc
/tmp/simldap/etc/perftune_input.conf
/tmp/simldap/etc/ibmslapddir.ksf
/tmp/simldap/etc/ibmslapd.conf
/tmp/simldap/etc/V3.system.at
/tmp/simldap/etc/V3.matchingrules
/tmp/simldap/etc/V3.ibm.oc
/tmp/simldap/etc/V3.config.at
/tmp/simldap/etc/V3.ldapsyntaxes

5.解压缩打包的samldap配置到新的ISVD 10.0.3服务器

$ sudo mkdir /tmp/samldap

$ sudo tar -xzvf /tmp/samldap-etc.tar.gz -C /tmp/samldap/
tmp/samldap/etc/
tmp/samldap/etc/V3.modifiedschema
tmp/samldap/etc/ibmslapdcfg.ksf
tmp/samldap/etc/V3.ibm.at
tmp/samldap/etc/V3.user.at
tmp/samldap/etc/V3.user.oc
tmp/samldap/etc/platforminfo
tmp/samldap/etc/perftune_stat.log
tmp/samldap/etc/V3.config.oc
tmp/samldap/etc/db2info
tmp/samldap/etc/V3.system.oc
tmp/samldap/etc/perftune_input.conf
tmp/samldap/etc/ibmslapddir.ksf
tmp/samldap/etc/ibmslapd.conf
tmp/samldap/etc/V3.system.at
tmp/samldap/etc/V3.matchingrules
tmp/samldap/etc/V3.ibm.oc
tmp/samldap/etc/V3.config.at
tmp/samldap/etc/V3.ldapsyntaxes

6.解压缩打包的simldap配置到新的ISVD 10.0.3服务器

$ sudo mkdir /tmp/simldap

$ sudo tar -xzvf /tmp/simldap-etc.tar.gz -C /tmp/simldap/
tmp/simldap/etc/
tmp/simldap/etc/V3.modifiedschema
tmp/simldap/etc/ibmslapdcfg.ksf
tmp/simldap/etc/V3.ibm.at
tmp/simldap/etc/V3.user.at
tmp/simldap/etc/V3.user.oc
tmp/simldap/etc/platforminfo
tmp/simldap/etc/perftune_stat.log
tmp/simldap/etc/V3.config.oc
tmp/simldap/etc/db2info
tmp/simldap/etc/V3.system.oc
tmp/simldap/etc/perftune_input.conf
tmp/simldap/etc/ibmslapddir.ksf
tmp/simldap/etc/ibmslapd.conf
tmp/simldap/etc/V3.system.at
tmp/simldap/etc/V3.matchingrules
tmp/simldap/etc/V3.ibm.oc
tmp/simldap/etc/V3.config.at
tmp/simldap/etc/V3.ldapsyntaxes

7.导入配置

$ sudo /opt/ibm/ldap/V10.0.3/sbin/idsimigr -I samldap -u /tmp/samldap/tmp/samldap/
GLPMIG035I Files in backup directory, ‘/tmp/samldap/tmp/samldap’, are determined to be of version, ‘6.4’. Migration will continue based on this migration path.
GLPMIG066I The DB2 installation path ‘/opt/data/ibm/db2/V10.5’ obtained from file ‘db2info’ in the backup directroy ‘/tmp/
samldap/tmp/samldap’ is not found on the system. Assuming remote migration scenario.
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/idsicrt’ is used with the following arguments ‘idsimigr -I samldap -u /tmp/samldap/tmp/samldap/’.
You have chosen to perform the following actions:

GLPICR020I A new directory server instance ‘samldap’ will be created.
GLPMIG029I Data from directory ‘/tmp/samldap/tmp/samldap’ will be migrated into the new directory server instance.
GLPICR057I The directory server instance will be created at: ‘/opt/samldap’.
GLPICR013I The directory server instance’s port will be set to ‘389’.
GLPICR014I The directory server instance’s secure port will be set to ‘636’.
GLPICR015I The directory instance’s administration server port will be set to ‘3538’.
GLPICR016I The directory instance’s administration server secure port will be set to ‘3539’.
GLPICR019I The description will be set to: ‘IBM Security Verify Directory Instance V10.0.3’.
GLPICR021I Database instance ‘samldap’ will be configured.

Do you want to ….
(1) Continue with the above actions, or
(2) Exit without making any changes:

GLPICR028I Creating directory server instance: ‘samldap’.
GLPICR025I Registering directory server instance: ‘samldap’.
GLPICR026I Registered directory server instance: : ‘samldap’.
GLPICR049I Creating directories for directory server instance: ‘samldap’.
GLPICR050I Created directories for directory server instance: ‘samldap’.
GLPICR040I Creating configuration file for directory server instance: ‘samldap’.
GLPICR041I Created configuration file for directory server instance: ‘samldap’.
GLPICR034I Creating schema files for directory server instance: ‘samldap’.
GLPICR035I Created schema files for directory server instance: ‘samldap’.
GLPICR037I Creating log files for directory server instance: ‘samldap’.
GLPICR038I Created log files for directory server instance: ‘samldap’.
GLPICR088I Configuring log files for directory server instance: ‘samldap’.
GLPICR089I Configured log files for directory server instance: ‘samldap’.
GLPICR085I Configuring schema files for directory server instance: ‘samldap’.
GLPICR086I Configured schema files for directory server instance: ‘samldap’.
GLPICR073I Configuring ports and IP addresses for directory server instance: ‘samldap’.
GLPICR074I Configured ports and IP addresses for directory server instance: ‘samldap’
GLPICR046I Creating profile scripts for directory server instance: ‘samldap’.
GLPICR047I Created profile scripts for directory server instance: ‘samldap’.
GLPICR103I Adding instance information to the .profile file for directory server instance: ‘samldap’
GLPICR104I Added instance information to the .profile file for directory server instance: ‘samldap’.
GLPICR069I Adding entry to /etc/inittab (if supported) for the administration server for directory instance: ‘samldap’.

GLPICR070I Added entry to /etc/inittab for the administration server for directory instance: ‘samldap’.
GLPICR118I Creating runtime executable for directory server instance: ‘samldap’.
GLPICR119I Created runtime executable for directory server instance: ‘samldap’.
GLPICR029I Created directory server instance: : ‘samldap’.
GLPMIG028I Migrating schema and configuration files from version ‘6.4’ to version ‘8.0’.
GLPMIG018I Successfully migrated the schema files from version ‘6.4’ to version ‘8.0’.
GLPMIG025I Successfully migrated the configuration file from version ‘6.4’ to version ‘8.0’.
GLPMIG028I Migrating schema and configuration files from version ‘8.0’ to version ‘8.0.1’.
GLPMIG018I Successfully migrated the schema files from version ‘8.0’ to version ‘8.0.1’.
GLPMIG025I Successfully migrated the configuration file from version ‘8.0’ to version ‘8.0.1’.
GLPMIG028I Migrating schema and configuration files from version ‘8.0.1’ to version ‘10.0’.
GLPMIG018I Successfully migrated the schema files from version ‘8.0.1’ to version ‘10.0’
GLPMIG025I Successfully migrated the configuration file from version ‘8.0.1’ to version ‘10.0’.
GLPMIG028I Migrating schema and configuration files from version ‘10.0’ to version ‘10.0.1’.
GLPMIG018I Successfully migrated the schema files from version ‘10.0’ to version ‘10.0.1’.
GLPMIG025I Successfully migrated the configuration file from version ‘10.0’ to version ‘10.0.1’.
GLPMIG028I Migrating schema and configuration files from version ‘10.0.1’ to version ‘10.0.2’.
GLPMIG018I Successfully migrated the schema files from version ‘10.0.1’ to version ‘10.0.2’.
GLPMIG025I Successfully migrated the configuration file from version ‘10.0.1’ to version ‘10.0.2’.
GLPMIG028I Migrating schema and configuration files from version ‘10.0.2’ to version ‘10.0.3’.
GLPMIG018I Successfully migrated the schema files from version ‘10.0.2’ to version ‘10.0.3’.
GLPMIG036W The log file name and path information from the backed up configuration file will not be preserved by migration
. Log file names and paths will be updated to be specific for a directory server instance.
GLPMIG025I Successfully migrated the configuration file from version ‘10.0.2’ to version ‘10.0.3’.
GLPMIG008I The excluded OIDs defined for this migration path have successfully been removed from the V3.modifiedschema file in directory, ‘/opt/samldap/idsslapd-samldap/etc’.
GLPMIG023W Migration has checked the V3.modifiedschema file against the base schema files for any definition collisions. If any collisions are reported, these will be automatically resolved.
GLPMIG060I No objectclass definition collisions were detected.
GLPMIG061I No attribute definition collisions were detected.
GLPMIG062I No IBM attribute definition collisions were detected.
GLPCTL074I Starting admin server for directory server instance: ‘samldap’.
GLPCTL075I Started admin server for directory server instance: ‘samldap’.
GLPMIG027I Successfully migrated the directory server instance, ‘samldap’, to version ‘10.0.3’.
GLPMIG059W Unable to start the task of DB2 instance and database migration because of insufficient information.
GLPICR031I Adding database instance ‘samldap’ to directory server instance: ‘samldap’.
GLPCTL002I Creating database instance: ‘samldap’.
GLPCTL003I Created database instance: ‘samldap’.
GLPICR133I Setting the DB2 registry for database instance ‘samldap’ to allow DB2 SELECTIVITY.
GLPICR134I The DB2 registry for database instance ‘samldap’ has been set to allow DB2 SELECTIVITY.
GLPCTL017I Cataloging database instance node: ‘samldap’.
GLPCTL018I Cataloged database instance node: ‘samldap’.
GLPCTL008I Starting database manager for database instance: ‘samldap’.
GLPCTL009I Started database manager for database instance: ‘samldap’.
GLPCTL049I Adding TCP/IP services to database instance: ‘samldap’.
GLPCTL050I Added TCP/IP services to database instance: ‘samldap’.
GLPICR081I Configuring database instance ‘samldap’ for directory server instance: ‘samldap’.
GLPICR082I Configured database instance ‘samldap’ for directory server instance: ‘samldap’.
GLPICR052I Creating DB2 instance link for directory server instance: ‘samldap’.
GLPICR053I Created DB2 instance link for directory server instance: ‘samldap’.
GLPICR032I Added database instance ‘samldap’ to directory server instance: ‘samldap’.

8.创建samldap数据库

$ sudo /opt/ibm/ldap/V10.0.3/sbin/idscfgdb -I samldap -a db2inst1 -w Passw0rd -t samldap
-1 /opt/samldap -n
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/idscfgdb’ is used with the following arguments ‘-I samldap -a db2inst1 -w * -t samldap -1 /opt/samldap -n’.
You have chosen to perform the following actions:

GLPCDB023I Database ‘samldap’ will be configured.
GLPCDB024I Database ‘samldap’ will be created at ‘/opt/samldap’
GLPCDB035I Adding database ‘samldap’ to directory server instance: ‘samldap’.
GLPCTL017I Cataloging database instance node: ‘samldap’.
GLPCTL018I Cataloged database instance node: ‘samldap’.
GLPCTL008I Starting database manager for database instance: ‘samldap’.
GLPCTL009I Started database manager for database instance: ‘samldap’.
GLPCTL026I Creating database: ‘samldap’.
GLPCTL027I Created database: ‘samldap’.
GLPCTL034I Updating the database: ‘samldap’
GLPCTL035I Updated the database: ‘samldap’
GLPCTL020I Updating the database manager: ‘samldap’.
GLPCTL021I Updated the database manager: ‘samldap’.
GLPCTL023I Enabling multi-page file allocation: ‘samldap’
GLPCTL024I Enabled multi-page file allocation: ‘samldap’
GLPCDB005I Configuring database ‘samldap’ for directory server instance: ‘samldap’.
GLPCDB006I Configured database ‘samldap’ for directory server instance: ‘samldap’.
GLPCTL037I Adding local loopback to database: ‘samldap’.
GLPCTL038I Added local loopback to database: ‘samldap’.
GLPCTL011I Stopping database manager for the database instance: ‘samldap’.
GLPCTL012I Stopped database manager for the database instance: ‘samldap’.
GLPCTL008I Starting database manager for database instance: ‘samldap’.
GLPCTL009I Started database manager for database instance: ‘samldap’.
GLPCDB003I Added database ‘samldap’ to directory server instance: ‘samldap’.

9.导入ldif条目

$ sudo /opt/ibm/ldap/V10.0.3/sbin/idsldif2db -I samldap -i /tmp/samldap-data-no.ldif
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/ldif2db’ is used with the following arguments ‘-I samldap -i /tmp/samldap-data-no.ldif’.
GLPCTL113I Largest core file size creation limit for the process (in bytes) : ‘0’ (Soft limit) and ‘0’ (Hard limit) .
GLPCTL119I Maximum Data Segment (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is 262144
GLPCTL119I Maximum File Size (512 bytes block) soft ulimit for the process is -1 and the prescribed minimum is 2097152.
GLPCTL122I Maximum Open Files soft ulimit for the process is 65535 and the prescribed minimum is 500.
GLPCTL121I Maximum Stack Size (Kbytes) soft ulimit for the process was 8192 and it is modified to the prescribed minimum -1

GLPCTL119I Maximum Virtual Memory (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is -1.
GLPCOM022I The database plugin is successfully loaded from libback-config.so.
GLPSRV221I Replication of security attributes feature is disabled.
GLPSRV200I Initializing primary database and its connections.
GLPRPL137I Restricted Access to the replication topology is set to false.
GLPRPL137I Restricted Access to the replication topology is set to false.
GLPRPL137I Restricted Access to the replication topology is set to false.
GLPL2D003I ldif2db: 100 entries have been processed.
GLPL2D003I ldif2db: 200 entries have been processed.
GLPL2D003I ldif2db: 300 entries have been processed.
…

GLPL2D003I ldif2db: 16800 entries have been processed.
GLPL2D003I ldif2db: 16900 entries have been processed.
GLPRDB002W ldif2db: 16956 entries have been successfully added out of 16956 attempted.
GLPRDB149I After loading data using idsbulkload or idsldif2db tools it is recommended to run runstats utility.

10.更新runstat

$ sudo /opt/ibm/ldap/V10.0.3/sbin/idsrunstats -I samldap
GLPWRP123I The program ‘/opt/ibm/ldap/V10.0.3/sbin/64/runstats’ is used with the following arguments ‘-I samldap’.
GLPCTL113I Largest core file size creation limit for the process (in bytes) : ‘0’ (Soft limit) and ‘0’ (Hard limit) .
GLPCTL119I Maximum Data Segment (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is 262144.
GLPCTL119I Maximum File Size (512 bytes block) soft ulimit for the process is -1 and the prescribed minimum is 2097152.
GLPCTL122I Maximum Open Files soft ulimit for the process is 65535 and the prescribed minimum is 500.
GLPCTL121I Maximum Stack Size (Kbytes) soft ulimit for the process was 8192 and it is modified to the prescribed minimum -1

GLPCTL119I Maximum Virtual Memory (Kbytes) soft ulimit for the process is -1 and the prescribed minimum is -1.

GLPSRV221I Replication of security attributes feature is disabled.
GLPSRV200I Initializing primary database and its connections.
GLPRUN003I Retrieving the list of tables to update index statistics.
GLPRUN005I Succeeded in retrieving the list of tables to update index statistics.
GLPDBA046I All statistics on table ‘LDAP ENTRY’ have been updated.
GLPDBA046I All statistics on table ‘LDAP DESC’ have been updated.
GLPDBA046I All statistics on table ‘LDAP GRP DESC’ have been updated.
GLPDBA046I All statistics on table ‘REGISTER’ have been updated.
GLPDBA046I All statistics on table ‘ACLPROP’ have been updated.
GLPDBA046I All statistics on table ‘ACLINHERIT’ have been updated.
GLPDBA046I All statistics on table ‘SRC’ have been updated.
GLPDBA046I All statistics on table ‘ACLPERM’ have been updated.
GLPDBA046I All statistics on table ‘OWNERPROP’ have been updated.
GLPDBA046I All statistics on table ‘IDS SYSRES ACL MIGRATED’ have been updated.
GLPDBA046I All statistics on table ‘ENTRYOWNER’ have been updated.
GLPDBA046I All statistics on table ‘ITDSRDBMHISTORY’ have been updated.
GLPDBA046I All statistics on table ‘PASSWORDDMAXAGE’ have been updated.
GLPDBA046I All statistics on table ‘TIMEXPIRELOCKOUT’ have been updated.
GLPDBA046I All statistics on table ‘PASSWORDMINLENGTH’ have been updated.
GLPDBA046I All statistics on table ‘SECUID’ have been updated.
GLPDBA046I All statistics on table ‘SECHASPOLICY’ have been updated.
GLPDBA046I All statistics on table ‘SECDN’ have been updated.
GLPDBA046I All statistics on table ‘SECLGINTYPE’ have been updated.
GLPDBA046I All statistics on table ‘PRINCIPLANE’ have been updated.
GLPDBA046I All statistics on table ‘SECCOMANID’ have been updated.
GLPDBA046I All statistics on table ‘SECACCTVALID’ have been updated.
GLPDBA046I All statistics on table ‘SECPWDLASTCHANGED’ have been updated.
GLPDBA046I All statistics on table ‘SECPWDVALID’ have been updated.
GLPDBA046I All statistics on table ‘SECPWDLASTUSED’ have been updated.
GLPDBA046I All statistics on table ‘SECACCTEXPIRES’ have been updated.
GLPDBA046I All statistics on table ‘SECACCTLIFE’ have been updated.
GLPDBA046I All statistics on table ‘SECTOACCESS’ have been updated.
GLPDBA046I All statistics on table ‘SECMAXWEBSSESSION’ have been updated.
GLPDBA046I All statistics on table ‘SECRET’ have been updated.
GLPDBA046I All statistics on table ‘SECCTERTSERIALNUM’ have been updated.
GLPDBA046I All statistics on table ‘UFN’ have been updated.
GLPRUN008I The isdrustats tool has completed the task of updating index statistics to optimize the database.