Uninstalling existing software

Entrust recommends that you uninstall any existing older versions of Security World Software before you install new software. In Windows environments, if the installer detects an existing Security World Software installation, it asks you if you want to install the new components. These components replace your existing installation.

The automated Security World software installers do not delete user created components, key data, or Security World data. However, on Linux, a manual installation using .tar files does overwrite existing data and directories.

Before you uninstall the Security World Software, Entrust strongly recommends that you make a secure backup of any existing Security World and nShield configuration files. See the nShield 5c User Guide for more information.
When upgrading the Security World Software, you do not need to delete key data or any existing Security World. If you want to do so for other reasons, see the nShield 5c User Guide for more information. If you do delete Security World data, it cannot be restored unless you have an up-to-date backup and a quorum of the Administrator Card Set (ACS) is available.
The file nCipherKM.jar, if present, is located in the extensions folder of your local Java Virtual Machine. The uninstall process may not delete this file. Before reinstalling over an old installation, remove the nCipherKM.jar file. See the nShield 5c User Guide for more about locating the Java Virtual Machine extensions folder.
In Windows environments, because the hardserver is installed as a named service (known as the nFast server), it is only possible to have one Security World Software installation on any given computer. It is also not possible to have more than one Security World Software installation on the same computer on Linux.
If you are downgrading a software authenticated client to a Security World Software earlier than version 12.60, the client will need to be re-enrolled as software-based authentication is not supported. See the nShield 5c User Guide, section "Configuring the nShield 5c to use the client", for more information.
Entrust recommends that you do not uninstall the Security World Software unless you are either certain it is no longer required, or you intend to upgrade it.

Uninstalling the Security World Software on Windows

Before uninstalling the Security World software, you should back up your %NFAST_HOME% directory. Delete this backup after upgrading the Security World and confirming that the configuration files and any customizations are correct.

  1. Open the Control Panel and select Programs and Features.

  2. For the following programs, select Uninstall and follow the on-screen instructions:

    • nShield Software.

    • CyberJack Base Components.

Uninstalling the Security World Software on Linux

Before uninstalling the Security World software, back up your $NFAST_HOME directory. This preserves your key management data, hardserver.d, and any data customizations.

When upgrading the Security World, restore the backup to preserve your PKCS #11 and Soft KNETI authentication settings and any customizations. If you delete the /opt/nfast directory without making a copy of it, you will lose these configuration settings.

When restoring a Security World from a backup, you need to maintain permissions.

  1. Assume the nFast Administrator privileges or root privileges by running the command:

    $ su -
  2. Type your password, then press Enter.

  3. To remove drivers, install fragments, and scripts and to stop services, run the command:

    /opt/nfast/sbin/install -u
  4. Delete all the files (including those in subdirectories) in /opt/nfast and /dev/nfast/ by running the following commands:

    rm -rf /opt/nfast
    rm -rf /dev/nfast
  5. If you are not planning to re-install the product, delete the configuration file /etc/nfast.conf if it exists.

    Do not delete the configuration file if you are planning to re-install the product.
  6. Unless needed for a subsequent installation, remove the user nfast and, if it exists, the user ncsnmpd:

    1. userdel -r nfast and userdel -r ncsnmpd will remove the users.

    2. groupdel nfast and groupdel ncsnmpd will remove the groups.

If required, you can safely remove the module after shutting down all connected hardware.