There is an identified vulnerability with the tomcat server included with iDash 12.1.02

What is the process to upgrade the tomcat server used with iDash?

Release:
Component: AEIDSH

We recommend that you upgrade latest build of
iDash Workload Automation 12.1.02.03 Cumulative Maintenance Update, which will automatically move you to Tomcat application to v9.0.104 during the upgrade process.

Below you find the steps to update the iDash Tomcat server post installation.

1. Obtain the latest Tomcat 9.0.x from https://tomcat.apache.org/download-90.cgi
      a. For Windows installations, download the 64-bit Windows zip file
      b. For Linux and zLinux installations, download the tar.gz file

2. Stop iDash

3. Backup the IDASH_HOME/tomcat9 directory to a new location. Then delete it.
      a. Alternately, you may rename the directory to something else and back up or delete it at
          a later time.
4. Create a new IDASH_HOME/tomcat9 directory

5. Expand the Tomcat file you downloaded in step 1 into the new, empty tomcat9 directory
         a. Pay special attention to the directory structure. Use the backed-up previous tomcat9
             directory as an example.
         b. For iDash, the Tomcat directories and files are expected to be placed directly in
              /tomcat9.
         c. The files obtained from Apache may have additional layers or directories. If so, you may
             need to move the contents up to the correct IDASH_HOME/tomcat9 directory.

6. From the backed-up tomcat9 directory, copy the /webapps/idash directory to the new
    IDASH_HOME/tomcat9/webapps directory.

7. In the new IDASH_HOME/tomcat9/webapps directory, find and delete the /docs, /examples,
     and /ROOT directories.
         a. These are not distributed with iDash for minor security reasons.

8. For Windows installations, from the backed-up tomcat9 directory, copy the following files to the
    new IDASH_HOME/tomcat9/bin directory:
         a. tomcat9/bin/idash-service.bat
         b. tomcat9/bin/idash_service_namew.exe
                 i. This file will carry the name you gave to the iDash service at install time, with
                    the letter ‘w’ appended.
9. During iDash installation, or at any time afterwards, you may have selected non-default TCP/IP
    ports. You will need to edit the new IDASH_HOME/tomcat9/conf/server.xml to continue to use
    the non-default ports.
          a. Compare the backed-up tomcat9/conf/server.xml to the new server.xml. There may be
              minor formatting differences, but for the ports you will need to locate the <Connector
              port=”xxxx”> statements.
10. If you have followed any of the post-installation guides for setting up secured connections for
      iDash, you will need to perform the same steps to secure the new Tomcat.
        a. Please see the guides here for steps.

11. For Windows installations, you should be able to continue to use the existing service to stop and
     start iDash.
12. For Linux and zLinux installations, you should be able to continue using
      IDASH_HOME/bin/idash_server.sh to stop and start iDash.
13. Restart iDash