Please review the following information before updating Interact. If you are upgrading Interact from, version 2.x or earlier, see Upgrading Interact.
Note: Prior releases of Interact provided communication with syslog and SIEM solutions via a transport layer protocol called “User Datagram Protocol” or UDP. UDP does not provide encryption or guarantee delivery of events. Transmission Control Protocol (TCP) has been added to Interact to address these issues. TCP provides reliable, ordered, and error-checked delivery of Events. In order to encrypt event data, Interact now also includes Secured TCP communications using TLS certificates. This allows you to encrypt the traffic between Interact and your syslog server or SIEM product. (User Datagram Protocol (UDP), Interact's former method of event data communication, which does not offer guaranteed delivery or encryption, is still supported). See Work with Interact Broker/Agent Properties for more details on TCP in Interact.
Before You Update
Please review the following information before updating Interact.
Note: When updating Interact in an HA environment:
- Stop the replication of user profiles from production to HA system by either ending the replication software or ending the replication of the user profiles.
- Stop the replication of objects in the product libraries (PTINTERACT and PTWRKMGT).
- Install Interact on the HA and production systems.
- Setup Interact replication per the HA Setup instructions. To view these instructions, see Interact Setup in an HA Environment.
- Start replication (including the user profiles and objects in the product libraries).
Interact requires that you enter a valid license key. Contact email@example.com if you need to request a new license key.
It is Powertech’s goal not to change system values on customer systems because we recognize that security-conscious organizations have rigorous change control processes in place for even small changes to system values. Therefore, we ask you to make any system value changes that are needed. However, the Interact installation process could change a system value to allow the install to proceed if a system value is not set as specified below. If the Installation Wizard changes a system value during install, it changes it back to its original value when the install completes.
To update Powertech Interact on your system, the following system values that control object restores must be configured as shown.
- Set QALWOBJRST to *ALWPGMADP (at a minimum) to allow the system to restore programs that adopt authority. Many Powertech Interact programs adopt the authority of the product owner, rather than forcing you to give authority directly to administrators and end users. (Note: For some system configurations, *ALL is required temporarily.)
- QALWUSRDMN controls which libraries on the system can contain certain types of user domain objects. You should set the system value to *ALL or include the name of the Interact product library (PTINTERACT) for Interact options to function properly.
- QVFYOBJRST can be 1, 2, or 3. This allows Interact to restore all objects regardless of their signature. (Note: If you normally check signatures, remember to check this system value after the Interact install process completes.)
- Set QFRCCVNRST (Force conversion on restore) to 0, Do not convert anything.
Interact requires the following:
- IBM i version V6R1 or higher
Note: During installation an FTP connection is initiated. The FTP server responds with messages that prompt for FTP login credentials. The standard port reserved to establish an FTP connection to the IBM i is port 21. Consequently, it is required that this port is open and ‘listening’ on the server in order to establish a connection with the Installation Wizard and facilitate a successful installation.
Ensure the following servers are available and running prior to updating:
- FTP Server
- Remote Command Server
The Interact installation process is completely automated.
- Download the Interact Installer (setupInteract3.exe) to your PC. To do so, go to the HelpSystems website and click My Account.
- End the Interact Monitor jobs by running the following command:
You can also use the product menu option to ‘End Interact Monitors’.
- Once the Interact monitor jobs end, save the library:
SAVLIB LIB(PTINTERACT) DEV(*SAVF) SAVF(QGPL/IA3SAVF)
- Double-click the .exe file to start the Installation Wizard. When prompted, enter the name of the system on which you want to install Interact, a user profile, and password.
Note: Make sure the user profile is a member of the user class *SECOFR and has at least the following special authorities: *ALLOBJ, *SECADM, *JOBCTL, *IOSYSCFG, and *AUDIT. The user profile should have Limit capabilities set to *NO.
- The wizard sends the savefiles and updates Interact on your system.
- When the install completes on the system, you can view the install log or select “Restart and load another system” to install Interact on another system. Follow the instructions to install it on additional systems. You can install Interact on as many systems as you want, one at a time.
- The update process will create a log. Use the WRKSPLF command to display the joblog for complete information.
The installation process displays the job log name, user, and job log number. Use the WRKSPLF command to display the job log for complete information on the Interact install.
After You Update
To restart Interact after the upgrade, issue the following command:
The Interact Guide
The Interact Administrator's Guide is an online help system that you can view using any browser. It contains information on how to use Interact to manage critical security information on your systems.
The Interact Administrator's Guide is also installed as part of the product installation in the following directory: C: \Program Files\PowerTech\Interact
The installation process also places a shortcut to the Guide in your Start Menu. Click the shortcut to open the Guide in your browser.