Tagged: 

This topic has 10 replies, 5 voices, and was last updated 6 years, 4 months ago by Bill Nelson.

  • Author
    Posts
  • #10623
     staleas
    Participant

    Hi
    What version of OpenAM do you use in production?
    Should we go for latest 12 or 13?
    Ståle

    #10624
     Rajesh R
    Participant

    @staleas when there is a newer version of the product, why would you want to consider an older one?

    #10625
     staleas
    Participant

    Because I have had bad experience with new big releases of OpenAm/OpenSSO. Regarding bugs and stability issues.
    Do you know how many there is running OpenAM 13 in production today?
    I just want to now what version is the most used today.

    #10631
     Bill Nelson
    Participant

    @staleas, I don’t have ForgeRock’s numbers, but I would guess that the vast majority of their clients are running on either 11.x or 12.x. We rarely recommend running on a new .0 release of a product when it is in production; instead we prefer waiting until the first round of patches come out.

    #10634
     Scott Heger
    Participant

    Generally the only deviation from what @bill-nelsonidentityfusion-com was saying is if the newest version has a feature that you need that is not provided in the latest previous release.

    #10646
     Bill Nelson
    Participant

    Quite true, Scott. I started writing out situations when we do recommend upgrades (features requested by customers, security, product nearing end of life, etc.) but as I wrote that I realized that most of them were situational on a per customer basis. The one thing that is clear, however, is that we never recommend an upgrade just because a new version is available.

    #10649
     staleas
    Participant

    Tank you for taking the time to answer. We have a OpenAM custom build of 10.0.1 and the functionality that was built for us has come in later versions. We have for the last couple of weeks been looking at OpenAM 13 but there are bugs in policy import/export. We have today desided to go with latest 12.

    #10650
     Scott Heger
    Participant

    Just make sure to apply the following two security advisory patch bundles for OpenAM 12.0.2:

    Security Advisory #201507
    Security Advisory #201601

    #10701
     Peter Major
    Moderator

    When comparing the .0 releases, then I’d say that 13.0.0 is more stable in general, since 12.0.0 had quite a few bugs.
    When comparing 12.0.3 to 13.0.0, then in my opinion 12.0.3 is a clear winner (since we just released it last Friday).
    The issues in the 13.0.0 release are mostly resolved (or just about to get resolved) in master as we prepare for the 13.5.0 release at the beginning of June. If you do not have a subscription, then taking a look at the master in two weeks or so should be beneficial, if for anything, to get the important bugfixes across on top of a custom built 13.0.0 version.
    Also heads up: we released #201604 security advisory last Friday, so that both @shegergmail-com and @bill-nelsonidentityfusion-com can stay busy for the next few weeks. :)

    #10705
     Scott Heger
    Participant

    Thanks @peter-major. :)

    #10708
     Bill Nelson
    Participant

    Uh, yeah, thanks for the extra work, @peter-major….

Viewing 11 posts - 1 through 11 (of 11 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?