Uninstalling CTE-U from Linux
Considerations
-
The CTE Agent must be removed from the Linux host before the host is removed from the key manager with which it is registered.
-
Database applications like DB2 and Oracle can lock the user space while they run. If the uninstall fails because a GuardPoint is in use, determine which applications are using the files in the GuardPoint and stop them. Then run the uninstall again.
-
Commands like
fuser
andlsof
might not reveal an active GuardPoint because they detect active usage, not locked states. Although it may appear that a GuardPoint is inactive, it may be in a locked state. Under this condition, software removal may fail with an error similar to the following:/home: device is busy.
Procedure
-
Stop any application from accessing files in the GuardPoint.
-
In the key manager with which this host is registered, do the following:
-
Decrypt any data you want to use after uninstall. After the CTE Agent software is removed, access to data is no longer controlled. If data was encrypted, it will remain encrypted. If decrypted or copied out of the GuardPoint, the data is visible as clear text.
This decryption must be done on every GuardPoint on the host if you want to access all existing data on the host.
-
Make sure the Agent and System locks have been disabled for the host.
-
Thales recommends that you remove all GuardPoints from the host before you uninstall the CTE Agent.
-
Do not remove the host from the key manager yet.
-
-
Log on to the host as
root
. -
Change the directory to an unguarded location (for example, /.).
Caution
Do not change (
cd
) into the/opt/vormetric
directory or into any directory below/opt/vormetric
. If you run the uninstaller from/opt/vormetric
or any of its subdirectories, the package removal utility may fail and return the following message:You are not allowed to uninstall from the /opt/vormetric directory or any of its sub-directories.
Agent uninstallation was unsuccessful.
-
Start the uninstall. Type:
rpm -e cte-fuse dpkg -r cte-fuse \\Ubuntu
-
Remove the host record from the key manager.