Verifying the download package

MD5 files can be used verify the integrity of packages that are downloaded from HCL. HCL provides MD5 values for all recent WebSphere Commerce eAssemblies and fix packs.

Before you begin

You need to identify or obtain an MD5 hash utility to generate a hash signature. Most UNIX and Linux operating systems include utilities to generate an MD5 hash. Microsoft Windows does not include an MD5 utility, but many third-party options are available.

About this task

The following steps provide high-level instructions to verify the download package:

Procedure

1. Obtain the MD5 file from a trusted HCL source. The file is a text file that contains the MD5 hash signature of the package.
   • Fix packs downloaded from the HCL License and Delivery portal are accompanied by an MD5 value. You can view the file MD5 value by clicking on the + icon in the + column, to the left of the file description.
2. Use your MD5 hash utility to generate a hash signature of your copy of the package.
3. Compare the generated signature hash with the HCL MD5 value. Ensure that the values are identical.
   • If the values are identical, then proceed to install the package.
   • If the values are not identical, then the installation package might be corrupted. Try to redownload the package from the trusted HCL source and verify the values. If the values do not match, then contact HCL Support.