How to Manage RedHat Enterprise Linux 5 updates through CA Patch Manager?

Document ID : KB000050537
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

This document is an implementation guide to installing RedHat Enterprise Linux 5 updates through CA Patch Manager.

Solution:

Terminology

Common Terminology used in RHEL 5 patching

RHEL/Redhat Enterprise Linux - It is a Linux distribution produced by Red Hat and targeted toward the commercial market, including mainframes. Red Hat Enterprise Linux is released in server versions for x86, x86-64, Itanium, PowerPC and IBM System z, and desktop versions for x86 and x86-64. Red Hat Enterprise Linux is often abbreviated to RHEL, although this is not an official designation.

Update - Red Hat Enterprise Linux updates also known as minor release, are an aggregation of individual enhancement, security and bug fix errata.

Errata - Messages that contain the most recent information about updates, fixes, and corrections for a particular piece of software distributed by a vendor. View and access Red Hat Linux errata at http://www.redhat.com/errata/. Redhat errata consist of security updates, bug fixes and enhancements.

yum Repository - yum repository is standard way used by Redhat to create the software repositories. Yum repository consists of certain software definition files and the actual software

RHN - Red Hat Network is a powerful and flexible tool for the administration of large-scale networks of Red Hat Enterprise Linux systems-but it's also well-suited for the simplest system administration tasks as well.

Supported OS Release and Architecture

CA Patch Manager Packages for Redhat Enterprise Linux supports the following OS releases and process architecture.

Red Hat Enterprise Linux (v. 5 for 32/64-bit x86)

To know more about the Redhat Enterprise Linux Life cycle, visit the following link

https://access.redhat.com/support/policy/updates/errata/

Supported content

All updates for Redhat Enterprise Linux 5 32 bit and 64 bit platforms. Red Hat Enterprise Linux updates (minor releases) are an aggregation of individual enhancement, security and bug fix errata. The release cycle for Red Hat Enterprise Linux updates (minor releases) is random but it has been observed that the Red Hat Enterprise Linux update releases generally happen every 8-10 months.

Prerequisites

There are three prerequisites for deploying the 'CA - RedHat Enterprise Linux 5 Update "X" 32/64bit x86' package.

  1. IIS/Web Services must be installed on the corresponding Enterprise Servers (ES)/Domain Managers (DM)/Scalability Servers (SS). Any server (Enterprise/Domain/Scalability) that has a redhat agent pointing to it (present or future) should have IIS and ITCM web services configured.

  2. 'CA UPM Manual Download Function' patch in Patch Manager needs to be deployed to all servers involved (all servers with Patch Manager installed or which could have Linux agents pointing to them - e.g., Scalability Servers, Domain Managers and Enterprise Servers. This is a generic package and only needs to be deployed once.

    Note: This step could be skipped if the patch has already been deployed earlier as a prerequisite for other platforms patches.

    Figure 1

    Once successfully installed, a virtual folder will appear under the Default Web Site in IIS called 'manual_download'.

    Figure 2

    Also, a folder called '%UPM_HOME%\UPMDownloads' will be created on the Patch Manager server and all Scalability Servers (or Domain Manager/Enterprise Server machines) pushed to.

  3. Every 'CA - RedHat Enterprise Linux 5 Update x 32/64bit x86' patch will have an associated prerequisite patch that must be deployed before pushing out the actual update patch. The prerequisite patch will follow the same naming convention as the actual patch with the word "prerequisites" appended to the patch name at the end. For example, for the actual update patch 'CA - RedHat Enterprise Linux 5 Update 5 32 bit x86', the prerequisites patch would be 'CA - RedHat Enterprise Linux 5 Update 5 32 bit x86 Prerequisites'.

    Manually extract the required OS update DVD to the folder specified in the release notes of the 'prerequisites' patch on the scalability server. Click on 'Release Notes' in Patch Manager for such a patch and you will see what DVD is needed as indicated in 'STEP 2:' in the image below:

    Figure 3

    Once the manual extract is complete, below is how the folder structure would appear.

    Figure 4

    Accept and push the 'prerequisites' patch to the ES/DM/SS required.

    Note: You cannot/should not push this until the 'CA UPM Manual Download Function' patch deployment has completed successfully.

  4. Minimum of 1GB disk space in /var/cache/yum directory on the agents to download the required packages from the Scalability server.

Implementation

The following section illustrates the deployment steps for the actual update patch 'CA - RedHat Enterprise Linux 5 Update 5 32 bit x86'.

  1. Accept and deploy the required package 'CA - RedHat Enterprise Linux 5 Update 5 32 bit x86'.

    Figure 5

  2. Required packages will be installed to update the OS to Redhat Enterprise Linux 5 update 5 using yum repositories over http. You can view the specific job output from the deployment job created in Software Delivery in ITCM.

    Figure 6

  3. Upon successful installation, the patch signature should be detected under Software Discovery for the specific Linux agent.

    Figure 7

  4. ADDITIONAL: By default 'CA - RedHat Enterprise Linux 5 Update 5 32 bit x86' uses the yum repository over http for the agent to download the required RPMS from the Scalability server/Enterprise Servers. Under any special circumstance if a client needs communication over https between the agent and the Scalability server/Enterprise Servers, the client can use https by inputting HTTPS as a user parameter during the software deployment through ITCM. . The client of course would need to manually update IIS on the Scalability server/Enterprise Servers to use port 443/HTTPS should he/she wish to take advantage of this.

    Figure 8

Installation Flow (Flow Chart)

Figure 9

FAQ

Q: What is RHEL?

A: It is a Linux distribution produced by Red Hat and targeted toward the commercial market, including mainframes. Red Hat Enterprise Linux is released in server versions for x86, x86-64, Itanium, PowerPC and IBM System z, and desktop versions for x86 and x86-64. Red Hat Enterprise Linux is often abbreviated to RHEL, although this is not an official designation.

Q: How do I download the RHEL update X DVD?

A: Access the https links in the release notes of CA - RedHat Enterprise Linux 5 Update x 32/64bit x86 Prerequisites' package. Enter the RHN credentials and download the DVD.

Q: What is the release cycle for RHEL 5 updates?

A: The release cycle for Red Hat Enterprise Linux updates (minor releases) is random but it has been observed that the Red Hat Enterprise Linux update releases generally happen every 8-10 months.

Q: Are there any perquisites for CA Patch Manager In order to deploy a 'CA - RedHat Enterprise Linux 5 Update x 32/64bit x86 ' package?

A: Yes.

  1. "CA UPM Manual Download Function" package is required to be installed on the UPM Server. This package has been developed to handle dynamic download URLs by vendors like HP, Sun, IBM etc.

    http://www.ca.com/us/udm/upm/patch.aspx?uuid=1700ce5a-9444-466b-a692-fcbe5bdf8bde#section1

  2. "CA - RedHat Enterprise Linux 5 Update x 32/64bit x86 Prerequisites" package needs to be deployed.

Q: Are the kernel packages also included in the 'CA - RedHat Enterprise Linux 5 Update x 32/64bit x86 ' packages.

A. No. AS the kernel is the most important component of the OS, and installaing a kernel package needs special procedure and customization depending on the implementation. Kernel has been excluded from the update.

Q. What is the command to check the RHEL update information?

A. cat /etc/redhat-release

Q. What are the detailed logs to check the RHEL update through CA Patch Manager?

A: /var/log/yum.log

Q. Does a reboot occur after the deployment of 'CA - RedHat Enterprise Linux 5 Update x 32/64bit x86 ' package?

A: As the reboot after the update deployment is not mandatory, reboot is not included in the deployment procedure

Reference links

Redhat Enterprise Linux

http://en.wikipedia.org/wiki/Red_Hat_Enterprise_Linux

Redhat Network

https://rhn.redhat.com

Red Hat Enterprise Linux (v. 5 server) General Advisories

https://rhn.redhat.com/errata/rhel-server-errata.html

Redhat Enterprise Linux Life cycle

https://access.redhat.com/support/policy/updates/errata/