PingDirectory and PingDirectoryProxy
The following content provides a brief description of the upgrade process and considerations that might affect your upgrade decisions.
Overview
For the upgrade process, you must download and extract a new version of the PingDirectory server .zip
file on the server that will be updated. In addition, you must run the update
command with the --serverRoot
or -R
option value from the new root server pointing to the installation that will be upgraded.
Considerations
Consider the following when planning for and upgrading replicating servers:
-
The upgrading process affects only the server being upgraded. The process does not alter the configuration of other servers.
-
The
update
command verifies that the Java version installed meets the new server requirements. Before running the command, install the Java version that is supported by the new server. -
For precautionary measures, back up the user data
userRoot
before an upgrade. Restoring from a backup might be necessary if all other servers in the replication topology have been upgraded, and a database or encoding change in the new server version prevents the database from being used with the older server version. Theupdate
andrevert-update
commands issue a warning when this is the case. -
Temporarily raise the replication purge delay for all servers in the topology to cover the expected downtime for maintenance. This results in a temporary increase in disk usage for the replicationChanges database stored in
<server-root>/changelogDb
. -
Replication does not need to be disabled on a server before an upgrade.
-
Make sure upgraded servers are working as expected before upgrading the last server in the topology.
-
After all replicating servers are upgraded, enable new features.
Learn more in Planning your upgrade in the Best Practice Guides. |
Upgrade considerations introduced in PingDirectory 9.x
Keep in mind the following upgrade considerations introduced in PingDirectory 9.x versions.
Permissive Modify no longer enabled by default in Directory REST API
In previous versions, Permissive Modify behavior was enabled by default for all API modify (PATCH) requests. In version 9.3, this behavior is controlled by an |
Enabling Permissive Modify behavior affects operations like removing an attribute that does not exist, or adding a duplicate value to a single-value attribute, by returning a "success" response without actually modifying the underlying data. Having the always-use-permissive-modify
configuration parameter set to false
by default will return "failure" responses for such permissive operations.
Enabling replication-purge-obsolete-replicas
The following requirement applies when upgrading from a version earlier than 9.2 to version 9.2 or higher: You must set the Learn more about Discovering obsolete replicas or Purging obsolete replicas. |
Cleaning replication history
When cleaning replication history from a PingDirectory server, you must now use the new remove-defunct-server
argument --performLocalCleanup
. If you have existing automation around disaster recovery, the previous method of running remove-defunct-server
without bind credentials no longer performs this replication cleanup step. For PingDirectory versions 9.0.0.0 and later, update any existing automation to use the --performLocalCleanup
flag.