Query on Vulnerability Fix

DharshiniB · December 10, 2024, 12:43pm

Which IIQ version are you inquiring about?

8.3p2

Share all details about your problem, including any error messages you may have received.

Hi All,

SailPoint has recently released a fix i.e. IdentityIQ Improper Access Control Vulnerability, I need clarity on how to rollback the changes incase if any issue happens after applying the fix. Can someone provide steps for rollback after e fix.

iamksatish · December 10, 2024, 12:47pm

@DharshiniB

You just have to delete the files that were extracted from the IdentityIQ installation.

Files inside WEB-INF\efixes
Jar files in WEB-INF\lib
Then replace the original jar files in WEB-INF\lib from your backup identityiq.war
Restart the server

Any Efix usually goes to custom class files, they provide , this is same with latest one as well

Just check above link you will get an idea on rollback.

DharshiniB · December 10, 2024, 1:07pm

@iamksatish
Correct me if I’m wrong, Inside Lib file 1st we need to delete all files and need to place the files that we took from backup in lib folder?

iamksatish · December 10, 2024, 1:56pm

yes, that should work and even efix folders as well

You can try this in lower once

system · February 8, 2025, 1:56pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.