RSA NetWitness Logs & Network Troubleshooting Upgrades

Document created by Elena Komarova Employee on Apr 5, 2017Last modified by Connor Mccarthy on Aug 9, 2018
Version 15Show Document
  • View in full screen mode

Access Training

 

 

In order to register for a class, you need to first create an EMC account

If you need further assistance, contact us

 

Summary

This on-demand learning describes how to upgrade RSA NetWitness Logs & Network software. In the process of demonstrating upgrades, troubleshooting techniques and possible upgrade issues are identified.

 

Overview

This on-demand learning describes how to upgrade RSA NetWitness Logs & Network software. In the process of demonstrating upgrades, troubleshooting techniques and possible upgrade issues are identified.

 

Audience

All (internal, partner, customer etc.)

 

Delivery Type

On-Demand Learning (self-paced eLearning)

 

Duration

1 hour

 

Prerequisite Knowledge/Skills

RSA NetWitness Logs & Network Foundations

RSA NetWitness Logs & Network Core Administration

 

Course Objectives

Upon successful completion of this course, participants should be able to:

  • Describe the upgrade paths and methods for RSA NetWitness 10.5.x to NetWitness 10.6.x
  • List the technical considerations in upgrading RSA NetWitness software
  • List the correct order of upgrading hosts
  • Describe the software upgrade preparation tasks
  • Demonstrate the tasks and troubleshooting techniques associated with upgrading a NetWitness environment from version 10.5.0 to version 10.6.x
  • Demonstrate the tasks and troubleshooting techniques associated with upgrading a NetWitness environment from version 10.5.1 to version 10.6.x
  • Perform post software upgrade tasks
  • Troubleshoot issues relating to a RSA NetWitness Logs & Network software upgrade

 

Course Outline

Software Upgrades Overview

  • Identify upgrade paths for various versions of NetWitness logs & Network
  • Describe software upgrade best practices

 

Software Upgrade Preparation Tasks

  • Opening firewall ports
  • Modifying rules for strict mode
  • Designating Primary and Secondary Servers
  • Backing up Malware Analysis configuration file
  • Backing up configuration
  • Preparing STIG for update

 

Upgrading 10.5.0 to 10.6.0

  • Populating the Local Update Repository
  • Updating hosts from version 10.5.0 to 10.6.0

 

Upgrading 10.5.1 to 10.6.0

  • Populating the Local Update Repository
  • Updating hosts from version 10.5.0 to 10.6.0

 

Post Upgrade Tasks

  • Resetting ESA parameters
  • Updating Context Hub service
  • Restoring Malware Analysis custom parameters
  • Migrating STIG to version 10.6
  • Resetting Stable System value of Log Collector lockbox

 

Troubleshooting Issues Relating to a Software Upgrade

  • Identifying and resolving issues relating to the software upgrade
  • Examining update logs

 

 

 

 

 

Access Training

 

 

In order to register for a class, you need to first create an EMC account

If you need further assistance, contact us

Attachments

    Outcomes