KB5066835: KSP vs CSP transition and recommendations for Personal Desktop Client. Read more ->
Nexus Documentation
Nexus Documentation
Breadcrumbs

Upgrade Smart ID Identity Manager from 5.2.0 to 5.2.1

This article describes how to upgrade Smart ID Identity Manager from 5.2.0 to 5.2.1.

Removed “License upload” role from system.properties

Removed “License upload” permitted role from system.properties. This is now a permission and configurable through user/role permissions in Identity Manager Admin (runtime permissions). See Smart ID Identity Manager - Deployment REST APIs for more information.

Updated MS SQL JDBC driver

The MS SQL JDBC driver now enables TLS encryption by default. Make sure to trust the server certificate. Alternatively, to re-establish the previous behavior, you can set encrypt=false by adding it to the connection string in smartid.env (docker-deployment) or database.properties (war-file-deployment), for example:

Smartid.env

IDM_DB_URL=${DBHOST};DatabaseName=${IDM_DB_NAME};encrypt=false

Database.properties

dataSource.jdbcUrl=jdbc:sqlserver://serverName=localhost;databaseName=example;encrypt=false

Pre-/post-login process users

The predefined users used for pre‑login and post‑login processing have changed. Verify that these users exist in the system. If they do not exist, create them as internal users. Confirm which processes are executed during the login flow (pre‑login and post‑login), and assign the users the required permissions to:

  • Start the relevant processes

  • Execute associated user tasks

  • For Smart ID Self‑Service also grant the “Show in Self‑Service” permission

Pre-/post-login process users

The predefined users used for pre‑login and post‑login processing have changed. Verify that these users exist in the system. If they do not exist, create them as internal users. Confirm which processes are executed during the login flow (pre‑login and post‑login), and assign the users the required permissions to:

  • Start the relevant processes

  • Execute associated user tasks

  • For Smart ID Self‑Service also grant the “Show in Self‑Service” permission

Username

Needs permissions for

preLoginOperatorUser

Pre-login processes shown on Identity Manager Operator login page.

preLoginSelfServiceUser

Pre-login processes shown on Smart ID Self-Service login page.

postLoginProcessUser

Post-login processes (start directly after login).

Remove obsolete internal users and configurations from custom-beans.xml

For more information, see Configure a pre-login process for Identity Manager Operator, Configure pre-login processes for Smart ID Self-Service and Set up authentication profile in Identity Manager.