Prepare for Upgrade
Download Physical Host Upgrade Guide from RSA Link (https://community.rsa.com/docs/DOC-100385) and review it.
|2.||Carefully read the sections on Event Stream Analysis (ESA) Upgrade Considerations and Investigate in Mixed Mode.|
Be aware of the hardware, deployments, services, and features not supported in 11.3.
Perform the upgrade preparation tasks for the features you use.
Create CentOS 6 external host to save backup tar files.
Download the nw-backup-v4.3.zip (or later) file from RSA Link (https://community.rsa.com/docs/DOC-81514) to external host.
|7.||Execute get-all-systems.sh and ssh-propagate.sh script from external host.|
Preserve a copy of the get-all-systems-master file for future reference.
|9.||Execute nw-backup.sh in TEST mode to evaluate the space requirements from external host (for example: nw-backup –t -l –D).|
Review the back up options for nw-backup.sh by displaying the help menu (nw-backup.sh -h) .
Phase 1 - Upgrade SA Server, ESA, Malware Analysis, and Broker/Concentrator Hosts
|11.||Update the contents of the all-systems so they consist of SA, ESA's, MA and Broker/Concentrator backup data.|
|12.||For ESA hosts, reset the Mongo Database admin password to 'netwitness' if it contains special characters .|
|13.||Execute nw-backup.sh with -u flag for all Phase 1 hosts and confirm that it completes with no errors.|
If your environment has multiple ESA appliances, the nw-backup.sh you executed in step 13 should have moved all the ESA files to the appropriate folders. Make sure that the ESA host (Where the Context Hub service is running) is designated as primary and that the controldata-mongodb.tar.gz.* files were copied from the secondary ESAs to designated primary ESA default backup path.
|15.||Confirm that backup tar files are saved locally and remotely.|
Attach media (media that contains the ISO file, for example a build stick) to the SA Server host. Download USB Build Stick Instruction - 11.3 and Later document from RSA Link (https://community.rsa.com/docs/DOC-100386) for instructions on how to get ISO and prepare it.
|17.||Create base image on the host from the attached media.|
Upgrade the host to 11.3 by running the nwsetup-tui program on the host.
Repeat steps 16, 17, and 18 on the:
Install the ESA, Malware Analysis, and Broker or Concentrator services in the NetWitness 11.3 User Interface.
|Phase 2 - Upgrade All Other Hosts|
|21.||Update the contents of the all-systems so they consist of Phase 2 host backup data.|
|22.||Execute nw-backup.sh in TEST mode to evaluate the space requirements from external host (for example: nw-backup –t -l –D).|
Execute nw-backup.sh with -u flag for all Phase 2 hosts and confirm that it completes with no errors.
|24.||Confirm that backup tar files are saved locally and remotely.|
For all other hosts:
|Preform Post Upgrade Adjustments|
Perform the post upgrade tasks for the features you use.
Table of Contents > Physical Host Upgrade Checklist for RSA NetWitness Platform 10.6.x to 11.x