| Task | Description | √ |
|---|---|---|
| Prepare for Upgrade | ||
| 1. | Download Physical Host Upgrade Guide from RSA Link (https://community.rsa.com/docs/DOC-100385) and review it. | |
| 2. | Carefully read the sections on Event Stream Analysis (ESA) Upgrade Considerations and Investigate in Mixed Mode. | |
| 3. | Be aware of the hardware, deployments, services, and features not supported in 11.3. |
|
| 4. | Perform the upgrade preparation tasks for the features you use. Caution: Make sure that you implement and test the new ports so that upgrade does not fail due to missing ports. | |
| 5. | Create CentOS 6 external host to save backup tar files. |
|
| 6. | Download the nw-backup-v4.2.zip (or later) file from RSA Link (https://community.rsa.com/docs/DOC-81514) to external host. |
|
| 7. | Execute get-all-systems.sh and ssh-propagate.sh script from external host. | |
| 8. | Preserve a copy of the get-all-systems-master file for future reference. |
|
| 9. | Execute nw-backup.sh in TEST mode to evaluate the space requirements from external host (for example: nw-backup –t -l –D). | |
| 10. | Review the back up options for nw-backup.sh by displaying the help menu (nw-backup.sh -h) . |
|
| Migrate Disk Drives | ||
| 11. | Back up data in 10.6.6.x virtual machines (VMs). | |
| 12. | Deploy the same 10.6.6.x VM stack in 11.3. | |
| 13. | Copy VMDK files and add them as hard disk to the new VM. |
|
| 14. | Retain the MAC Address of upgraded SA Server VM. | |
| 15. | Restore Backup data in 10.6.6.x to 11.3 VMs. |
|
| Task | Description | √ |
|---|---|---|
| Phase 1 - Set Up NW Server, Event Stream Analysis, Malware Analysis, and Broker or Concentrator Hosts | ||
| 16. | Update the contents of the all-systems so they consist of SA, ESA's, MA and Broker/Concentrator backup data. | |
| 17. | For ESA hosts, reset the Mongo Database admin password to 'netwitness' if it contains special characters . | |
| 18. | If your environment has multiple ESA appliances, designate a primary ESA (Where the Context Hub service is running) and copy *-controldata-mongodb.tar.gz.* files from the secondary ESAs to designated primary ESA default backup path. |
|
| 19. | Set up the 10.6.6.x SA Server host to 11.3 NW Server host by running the nwsetup-tui program on the host. | |
| 20. | Repeat step 19 on the:
| |
| 21. | Install the ESA, Malware Analysis, and Broker or Concentrator services in the NetWitness 11.3 User Interface. | |
| Phase 2 - Upgrade All Other Hosts | ||
| 22. | Set up the all other hosts on 11.3 by running the nwsetup-tui program on each host. | |
| 23. | Install the Category (service category) in the NetWitness 11.3 User Interface. |
|
| Preform Post Upgrade Adjustments | ||
| 24. | Perform the post upgrade tasks for the features you use. |
|
Revision History
| Revision | Date | Description | Author |
|---|---|---|---|
| 1.0 | 10-Apr-19 | GA | IDD |
