Task | Description | √ |
---|---|---|
Prepare for Upgrade | ||
1. | Download Virtual Host Upgrade Guide from RSA Link (https://community.rsa.com/docs/DOC-100539) and review it. | |
2. | Carefully read the sections on Event Stream Analysis (ESA) Upgrade Considerations and Investigate in Mixed Mode. | |
3. | Be aware of the hardware, deployments, services, and features not supported in 11.3.0.2. |
|
4. | Perform the upgrade preparation tasks for the features you use. Caution: Make sure that you implement and test the new ports so that upgrade does not fail due to missing ports. | |
5. | Create CentOS 6 external host to save backup tar files. |
|
6. | Download the nw-backup-v4.3.zip (or later) file from RSA Link (https://community.rsa.com/docs/DOC-81514) to external host. |
|
7. | Execute get-all-systems.sh and ssh-propagate.sh script from external host. | |
8. | Preserve a copy of the get-all-systems-master file for future reference. |
|
9. | Execute nw-backup.sh in TEST mode to evaluate the space requirements from external host (for example: nw-backup –t -l –D). | |
10. | Review the back up options for nw-backup.sh by displaying the help menu (nw-backup.sh -h) . |
|
Migrate Disk Drives | ||
11. | Back up data in 10.6.6.x virtual machines (VMs). | |
12. | Deploy the same 10.6.6.x VM stack in 11.3.0.2. | |
13. | Copy VMDK files and add them as hard disk to the new VM. |
|
14. | Retain the MAC Address of upgraded SA Server VM. | |
15. | Restore Backup data in 10.6.6.x to 11.3.0.2 VMs. |
|
Task | Description | √ |
---|---|---|
Phase 1 - Set Up NW Server, Event Stream Analysis, Malware Analysis, and Broker or Concentrator Hosts | ||
16. | Update the contents of the all-systems so they consist of SA, ESA's, MA and Broker/Concentrator backup data. | |
17. | For ESA hosts, reset the Mongo Database admin password to 'netwitness' if it contains special characters . | |
18. | If your environment has multiple ESA appliances, designate a primary ESA (Where the Context Hub service is running) and copy *-controldata-mongodb.tar.gz.* files from the secondary ESAs to designated primary ESA default backup path. |
|
19. | Set up the 10.6.6.x SA Server host to 11.3.0.2 NW Server host by running the nwsetup-tui program on the host. | |
20. | Repeat step 19 on the:
| |
21. | Install the ESA, Malware Analysis, and Broker or Concentrator services in the NetWitness 11.3.0.2 User Interface. | |
Phase 2 - Upgrade All Other Hosts | ||
22. | Set up the all other hosts on 11.3.0.2 by running the nwsetup-tui program on each host. | |
23. | Install the Category (service category) in the NetWitness 11.3.0.2 User Interface. |
|
Preform Post Upgrade Adjustments | ||
24. | Perform the post upgrade tasks for the features you use. |
|