IBM Security Guardium - Running DPS Updates, how can I see if the import finished?

Answer

To start the process, you upload the DPS .jar file to the CM.

There is no progress bar, however, it is similar to other file uploads where you can see the GUI wheel spinning/working, the "waiting for <host>..." browser message, and a green check mark under "Import DPS" when it's done. The name of the latest displays when you upload.

After the upload is done and you click the check mark, the file name is gone.


When you navigate back to the DPS Menu, you should see it updated with the latest file under "DPS Upload" and the date of the last upload, e.g.: "Update Group Members from Master With Subscription In Progress 2016-12-12 15:46:59 (MASTER_GROUP_MEMBERS_load_20160505.enc)".

You can manage the distribution of the database jar or gdmmonitor files to the managed units:

1. Administration Console > Central Management > Central Management.

2. Press Distribute Uploaded Jar Files.

The CM Distribute jar file option auto-selects every managed unit and displays a pop-up window saying it will send jar files to every managed unit.

The quarterly updates are cumulative. When you install the latest one, it should include the previous DPS files. They are geared to a particular database vendor and version so Guardium keeps updating them for as long as that particular release is supported.

A new CLI command has been created that will display the latest status from the CM as seen in the GUI. This will show the date it was run and the date of the DPS:

Note that the DPS is only updated to the CM. At test run-time, the DPS information, groups, and tests are pulled from the CM and executed from the MU (managed unit). The DPS is never actually installed or resident on the MUs.