This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
  • RSA.com
  • Products
    • Archer®
      • Archer®
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Ideas
      • Knowledge Base
      • Archer® Exchange
      • Training
      • Upcoming Events
      • Videos
    • RSA® Fraud & Risk Intelligence Suite
      • RSA® Fraud & Risk Intelligence Suite
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® FraudAction Services
      • RSA® Web Threat Detection
      • Upcoming Events
      • Videos
    • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication Cloud
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Events
      • Ideas
      • Knowledge Base
      • Training
      • Upcoming Patch Content
      • Videos
    • RSA® Adaptive Authentication Mobile SDK
      • RSA® Adaptive Authentication Mobile SDK
      • Advisories
      • Events
      • Ideas
      • Knowledge Base
      • Request Access
      • Training
    • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Events
      • Ideas
      • Knowledge Base
      • Training
      • Videos
    • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Events
      • Ideas
      • Knowledge Base
      • Training
      • Videos
    • RSA® Adaptive Authentication for eCommerce
      • RSA® Adaptive Authentication for eCommerce
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Ideas
      • Knowledge Base
      • Training
      • Videos
    • RSA® FraudAction Services
      • RSA® FraudAction Services
      • Advisories
      • Discussions
      • Documentation
      • Ideas
      • Videos
    • RSA® Web Threat Detection
      • RSA® Web Threat Detection
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Ideas
      • Knowledge Base
      • Videos
    • RSA NetWitness® Platform
      • RSA NetWitness® Platform
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Ideas
      • Integrations
      • Knowledge Base
      • Training
      • Upcoming Events
      • Videos
    • RSA NetWitness® Detect AI
      • RSA NetWitness® Detect AI
      • Documentation
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
    • RSA NetWitness® Investigator
      • RSA NetWitness® Investigator
      • Documentation
      • Download the Client
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
    • RSA NetWitness® Orchestrator
      • RSA NetWitness® Orchestrator
      • Overview
      • Documentation
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
    • RSA SecurID® Suite
      • RSA SecurID® Suite
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Knowledge Base
      • Ideas
      • Integrations
      • Training
      • Videos
    • RSA® Identity Governance & Lifecycle
      • RSA® Identity Governance & Lifecycle
      • Advisories
      • Blog
      • Community Exchange
      • Discussions
      • Documentation
      • Downloads
      • Ideas
      • Knowledge Base
      • Training
      • Upcoming Events
      • Videos
    • RSA SecurID® Access
      • RSA SecurID® Access
      • Advisories
      • Blog
      • Discussions
      • Documentation
      • Downloads
      • Ideas
      • Integrations
      • Knowledge Base
      • Training
      • Upcoming Events
      • Videos
    • Other RSA® Products
      • Other RSA® Products
      • RSA® Access Manager
      • RSA® Data Loss Prevention
      • RSA® Digital Certificate Solutions
      • RSA enVision®
      • RSA® Federated Identity Manager
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
      •  
  • Resources
    • Advisories
      • Product Advisories on RSA Link
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication Hosted
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® FraudAction Services
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Product Advisories
    • Blogs
      • Blogs on RSA Link
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Blogs on RSA Link
    • Discussion Forums
      • Discussion Forums
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® FraudAction Services
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Discussion Forums on RSA Link
    • Documentation
      • Product Documentation
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication Mobile SDK
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® FraudAction Services
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Documentation on RSA Link
    • Downloads
      • Product Downloads
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Downloads on RSA Link
    • Ideas
      • Idea Exchange
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication Mobile SDK
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® FraudAction Services
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Documentation on RSA Link
    • Knowledge Base
      • Knowledge Base
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication Mobile SDK
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Knowledge Base Pages on RSA Link
    • Upcoming Events on RSA Link
      • Upcoming Events
    • Videos
      • Videos on RSA Link
      • Archer®
      • RSA® Adaptive Authentication Cloud
      • RSA® Adaptive Authentication On-Premise
      • RSA® Adaptive Authentication On-Premise (Cassandra)
      • RSA® Adaptive Authentication for eCommerce
      • RSA® Identity Governance & Lifecycle
      • RSA NetWitness® Platform
      • RSA SecurID® Access
      • RSA® Web Threat Detection
      • All Videos on RSA Link
  • Support
    • RSA Link Support
      • RSA Link Support
      • News & Announcements
      • Getting Started
      • Support Forum
      • Support Knowledge Base
      • Ideas & Suggestions
    • RSA Product Support
      • RSA Product Support
      • General Security Advisories and Statements
      • Product Life Cycle
      • Support Information
      •  
      •  
      •  
      •  
      •  
  • RSA Ready
  • RSA University
    • Certification Program
      • Certification Program
    • Course Catalogs
      • Course Catalogs
      • Archer®
      • RSA NetWitness® Platform
      • RSA SecurID® Suite
    • On-Demand Subscriptions
      • On-Demand Subscriptions
      • Archer®
      • RSA NetWitness® Platform
      • RSA SecurID® Suite
    • Product Training
      • Product Training
      • Archer®
      • RSA® Fraud & Risk Intelligence Suite
      • RSA® Identity Governance & Lifecycle
      • RSA NeWitness® Platform
      • RSA SecurID® Access
    • Student Resources
      • Student Resources
      • Access On-Demand Learning
      • Access Virtual Labs
      • Contact RSA University
      • Enrollments & Transcripts
      • Frequently Asked Questions
      • Getting Started
      • Learning Modalities
      • Payments & Cancellations
      • Private Training
      • Training Center Locations
      • Training Credits
      • YouTube Channel
    • Upcoming Events
      • Upcoming Events
      • Full Calendar
      • Conferences
      • Live Classroom Training
      • Live Virtual Classroom Training
      • Webinars
Sign In Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

Visit the Known Issues dashboard if you are experiencing issues on RSA Link

View Dashboard

RSA enVision® Discussions

Browse the RSA enVision discussion board to get product help and collaborate with other users of RSA enVision.
  • RSA Link
  • :
  • Products
  • :
  • Other RSA Products
  • :
  • RSA enVision
  • :
  • Discussions
  • :
  • envision 4.1 migration
  • Options
    • Subscribe to RSS Feed
    • Mark Topic as New
    • Mark Topic as Read
    • Float this Topic for Current User
    • Bookmark
    • Subscribe
    • Mute
    • Printer Friendly Page
RSAAdmin
RSAAdmin Beginner
Beginner
‎2011-11-03 12:47 PM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

envision 4.1 migration

Hi, I am planning to do envision (LS appliance) migration 4.0 to 4.1. Please share you experience and if you face any issues during the migration will be doing the migration end of this month. Thanks in advance.
  • Tags:
  • Community Thread
  • Discussion
  • enVision
  • Forum Thread
  • RSA enVision
0 Likes
Share
Reply
  • All forum topics
  • Previous Topic
  • Next Topic
7 Replies
RSAAdmin
RSAAdmin Beginner
Beginner
‎2011-11-03 04:29 PM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Please see:

http://rsaenvision.lithium.com/t5/General-Topics/Spotlight-enVision-4-1/td-p/8463

Good luck...

 

0 Likes
Share
Reply
RSAAdmin
RSAAdmin Beginner
Beginner
‎2011-11-04 12:59 AM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Hi,

 

The instructions for the upgrade has been documented  in the "RSA enVision Migration Guide". We would request you to follow the steps from the guide and at the same time pass on your feedback too if you come across any issues.

 

 

Regards,

Sonia

0 Likes
Share
Reply
RSAAdmin
RSAAdmin Beginner
Beginner
‎2011-11-28 12:24 PM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Many issues.

 

1. RCs stopped sending data for various reasons. Partly fixed. The pi_ls_forwarder.exe is still hanging at times.

2. VAM stopped working (can't run asset reports, the Foundstone VAM SQL is bugged) - No current fix

3. Task Triage not working - Alerter will not create new tasks. - No current fix 4. LC stopped moving FTP files to the NAS, we got this fixed last week

 

This all happened after 4.1 upgrade.

0 Likes
Share
Reply
RSAAdmin
RSAAdmin Beginner
Beginner
In response to RSAAdmin
‎2011-12-08 10:48 AM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

My opinion - don't do the upgrade without professional support. I tried upgrading my envision 4.0 SP5 to 4.1 today. Nearly cost me my life!

First obstacle: the password change process (or pre-process) was horrendous. I had to used the Windows 2003 Resource Kit to connect in to NAS and change the passwords, then the OS / AD passwords and then the services. After which to key in those passwords into the envision 4.1 installer.

Second obstacle: there is a character limit to the NAS ID passwords (max 14 chars i think, if you are using the windows 2003 resource kit). So make sure both the NAS ID passwords and the installer's GUI is able to accept the same passwords. If the password doesn't fit the complexity, repeat first obstacle all over again, across all your devices.

Third obstacle: the password change doesn't seem to take effect immediately - the 4.1 installer kept failing when verifying the passwords for about an hour or so before getting through.

Fourth obstacle: The installer exited prematurely, citing error in attempting to connect to a NAS IP Address (which was totally wrong, not sure where did it get that IP Address from). Checked the log file, it says the installation failed. checked the D-Serv file system, the folder already changed from 4000 to 4100. So i'm stuck in-between. Some other NIC devices succeeded, some with errors here and there (saw in the log files) but completed without any hickups.

Fifth obstacle: Not sure why, enVision started the NIC device authentication on its own (recall the whitelist and device authentication launched in SP2). Had to re-do the backward compatibility fix (also detailed in SP2 readme).

Sixth obstacle: The clustering (my site runs EA envision) fails for the collectors. Nodes no longer able to be activated in the cluster group (although can start service).

Seventh obstacle: Some device can't even start the installation at all, the installer throws you a: Failed retrieving master password error (or something along the line).

Anyway, waiting for RSA support to take a look tomorrow.
0 Likes
Share
Reply
RSAAdmin
RSAAdmin Beginner
Beginner
‎2012-01-18 10:51 AM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

In December 2011 we completed the EnVision 4.1 migration without issues, actually the installation was quite easy. During the upgrade we upgraded to patch 02 as well. We do not have a large environment like some of the other individuals reporting issues. We have no clustering or RC's, also we do not use EnVision for task triage. With a small environment, i'd say go for it.
0 Likes
Share
Reply
RSAAdmin
RSAAdmin Beginner
Beginner
In response to RSAAdmin
‎2012-05-03 02:47 PM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

The whole process took perhaps 3-4 hours.  Here’s what we did:

 

1. Read through the entire Migration Guide

 

2. Took a final backup of the enVision system.

 

3. Installed latest Signature Content Updates and VAM Updates

 

4. Confirmed that there were no errors from the updates.

 

5. Compacted the nic.db file with the command dbcompact.cmd since it was larger than 500MB (the enVision 4.0 online help has instructions on how to do this and what parameters to use).  Note that we had to install a patch from RSA support for the dbcompact to not always fail with an error message.

 

6. Proceeded to install the enVision 4.1 upgrade.  (This alone took about 1 hour on our appliance.  The backup procedure that it does at the beginning seem to be what took the longest).

 

7. Kept getting “folder in use” errors at the beginning of the install.  Went through the services list and stopped all services for software that we installed on the enVision server.  Took three attempts at stopping more and more services until finally this error disappeared and we could proceed.

 

8. Confirmed the integrity of the completed installation by going through the steps instructed in the migration guide. We also went in each device type and confirmed that the RSA was receiving the logs for those devices, and glanced at the events in Windows Event Viewer.

 

9. Run a query against the NIC System events in the enVision (filtering by severity levels 0-3) in order to identify any critical errors.

 

10. Had to reset the nic_sshd and nic_sftp password cache in WinSSHD control panel (take a look at the Windows Application events and look for WinSSHD errors). Restarted WinSSHD.

 

11. Proceed to install enVision 4.1 patch 4.

 

12. Run the password update script in E:\nic\4100\node-name\password\update scripts\ to reset the nic_system password (P.89 of the RSA envision Hardware Setup and Maintenance Guide) because for some reason it kept getting locked out by one of the NIC services.

 

13. Run the command manageweaklogins -r to identify which accounts haven’t had the password hashes converted to SHA256 yet.

 

14. Update the path from E:\nic\4000\ to E:\nic\4100\ for any 3rd party software or scripts that referenced the old file path.

 

15. Upgraded/installed VMware Collector Service 1.0 to 1.1.  Took 2 attempts to get this to work properly (had to uninstall and reinstall)

 

16. Upgraded/installed Windows Eventing Collector service 1.0 to 1.1

0 Likes
Share
Reply
JeffHermans
JeffHermans Beginner
Beginner
In response to RSAAdmin
‎2012-08-29 02:49 PM
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Thanks j2008!! Your tips helped prepare us for the hurdles we experienced so that we had the dbcompact Sybase patch from Support ahead of time.

 

One item I'd like to point out because I didn't really understand the implications of the 4.1 install password change:

  • If you were still using default passwords for any of the enVision accounts (master, administrator, nic_system, nic_sshd, nic_sftp) prior to the upgrade, even if those passwords meet the minimum requirements, you CANNOT reuse those passwords. You must choose new passwords during the upgrade. However, if you were using non-default passwords for any of the enVision accounts and those passwords met the minimum requirements, you COULD reuse those passwords.

Hope this adds one more tip to ease the next person's upgrade.

0 Likes
Share
Reply
Powered by Khoros
  • Products
  • Resources
  • Solutions
  • RSA University
  • Support
  • RSA Labs
  • RSA Ready
  • About RSA Link
  • Terms & Conditions
  • Privacy Statement
  • Provide Feedback
© 2020 RSA Security LLC or its affiliates.
All rights reserved.