21.3 Upgrading Identity Intelligence

  1. Log in to the CDF Management Portal.

  2. Uninstall Analytics:

    1. Click of arcsight-installer, then click Change.

    2. In the Capabilities page, deselect Analytics.

    3. Click Next until you reach the Configuration Complete page.

    4. Click Next after all the pods in the Configuration Complete page are displayed in green.

  3. Accept the Configuration Page certificate:

    1. On the installed cluster, ensure that you access configuration properties at least once to accept the certificate. This step is important to avoid any certificate error during the upgrade.

    2. Go to Deployment > Deployments > > Reconfigure.

    3. Accept the certificate.

  4. Click Deployment > Metadata.

  5. Click +ADD on the top-right and add the installer metadata file.

  6. Click Deployment > Deployments.

    Under Update, you will see a notification that indicates that updates available for components in your cluster.

  7. Click the notification icon and then click the installer metadata link.

  8. Because you have already downloaded the required files for upgrade, continue to click Next until you are in the Import suite images screen.

  9. Launch a terminal session, then log in to the master node as root or as a sudo user.

  10. Change to the following directory:

    cd /<cdf_installer_directory>/kubernetes/scripts/

    For example:

    cd /opt/arcsight/kubernetes/scripts

  11. Upload required images to the local registry. When prompted for a password, use the admin user password for the CDF Management Portal.

    ./uploadimages.sh -d <download_directory>/identityintelligence-x.x.x.x/suite_images

  12. Switch to the CDF Management portal, then click CHECK AGAIN to ensure that the images have been uploaded.

  13. Click Next until you get the Deployment/Restart screen.

  14. Click Deployment > Metadata and delete the metadata file that is not in use.

  15. Configure Fusion:

    1. Click of arcsight-installer, then click Change.

    2. In the Capabilities page, select Fusion.

    3. Click Next until you reach the Fusion configuration page.

    4. In the Fusion configuration page:

      • Specify database connection details.

        NOTE:

        • The database CA is available in the location /opt/arcsight-vertica/generated-vertica-ca.cr if installed using scripts and /tmp/ca.cert.pem if installed manually.

        • Ensure to provide same value for both Database Application Admin User Name and Search User Name as the database search user must have write privilege to make changes to Identity Intelligence schema.

      • (Optional) Specify SMTP server details to enable users of Identity Intelligence to receive email notification.

      • Specify the values for Client ID and Client Secret for Single Sign-On.

    5. Click Next until you reach the Configuration Complete page.

    6. Click Next after all the pods in the Configuration Complete page are displayed in green.

  16. Label the Fusion node:

    1. Select Cluster > Nodes.

    2. In Predefined Labels, specify fusion:yes label and click +.

      NOTE:Labels are case-sensitive. Ensure that you enter the values correctly.

    3. (Conditional) For single-node deployment, drag the newly added labels to the worker node.

    4. (Conditional) For multi-node deployment, drag-and-drop the new label from the predefined set to each of the worker nodes based on your workload sharing configuration.

      You may need to click Refresh to see the attached labels.

  17. Check the upgrade status by monitoring the pods status:

    1. Go to CDF Management Portal.

    2. Click Cluster > Dashboard.

    3. In the left pane, switch to the arcsight-installer-<XXXX> Namespace.

    4. Go to the Pods section and continue reloading the page until you see the status for all the pods as Running. On the Status column, sort the pod status to see if any pod is not running. Once the status for all the pods is changed to Running, Identity Intelligence upgrade is complete.

  18. To determine whether the upgrade is successful:

    1. Go to Deployment > Deployments.

    2. Under the Version column, you will see the new version of the suite.

      Also, under the Update column, you will see zero, which indicates there are no updates available for components in your cluster.

  19. Reload CDF images that were removed during the upgrade process:

    1. Launch a terminal session, then log in to the master node as root or as a sudo user.

    2. Change to the following directory:

      cd $K8S_HOME/scripts

      For example:

      cd /opt/kubernetes/scripts

    3. Upload CDF images to the local registry. When prompted for a password, use the admin user password for the CDF Management Portal.

      ./uploadimages.sh -d <download_directory>/identityintelligence-x.x.x.x/installers/cdf-2020.05.00100-2.3.0.7/cdf/images/