31.1 Upgrading Sentinel

Use the following steps to upgrade the Sentinel server:

To upgrade the Sentinel server:

  1. Back up your configuration, then create an ESM export.

    For more information about backing up data, see Backing Up and Restoring Data in the Sentinel Administration Guide.

  2. (Conditional) If you have customized the configuration settings in the server.xml, collector_mgr.xml, or correlation_engine.xml files, ensure that you have created appropriate properties files named with the obj-component id to ensure that the customizations are retained after the upgrade. For more information, see Maintaining Custom Settings in XML Files in the Sentinel Administration Guide.

  3. Download the latest installer from the Download Website.

  4. Log in as root to the server where you want to upgrade Sentinel.

  5. Specify the following command to extract the install files from the tar file:

    tar xfz <install_filename>

    Replace <install_filename> with the actual name of the install file.

  6. Change to the directory where the install file was extracted.

  7. Specify the following command to upgrade Sentinel:

    ./install-sentinel

  8. To proceed with a language of your choice, select the number next to the language.

    The end user license agreement is displayed in the selected language.

  9. Read the end user license, enter yes or y to accept the license, then continue with the installation.

  10. Select the required migration option. It migrates Security Intelligence data and Alerts data from MongoDB to PostgreSQL.

    If you select the Only upgrade without migrating data option, the Sentinel server should be up and running.

    WARNING:Ensure that you select the appropriate option because you cannot repeat this procedure after the upgrade is successful.

    If your data is migrated successfully, the data that was stored in MongoDB is retained as a backup, and then the Sentinel upgrade process will automatically proceed.

    The upgrade might take several minutes to complete.

  11. (Conditional) If the data migration is not successful:

    1. Clean up the partially migrated data. For more information, see Cleaning Up Data From PostgreSQL When Migration Fails.

    2. Repeat from Step 7 to Step 10 above until you upgrade Sentinel.

  12. Clear your web browser cache to view the latest Sentinel version.

  13. (Conditional) If the delete_old_cluster.sh file is located in the bin folder (/opt/novell/sentinel/3rdparty/postgresql/bin), which means the PostgreSQL database has been upgraded to a major version (for example, 8.0 to 9.0). Clear the old PostgreSQL files from the PostgreSQL database. The folder path might be different in case of custom path installations.

    To clear the old PostgreSQL files:

    1. Switch to the novell user.

      su novell

    2. Browse to the bin folder:

      cd /opt/novell/sentinel/3rdparty/postgresql/bin

    3. Delete all the old PostgreSQL files by using the following command:

      ./delete_old_cluster.sh

  14. Log in to Sentinel and verify the migrated data such as alerts, Security Intelligence data, and so on.

  15. The data in MongoDB is now redundant because Sentinel 8.3 and later will store data only in PostgreSQL. To clear up the disk space, delete this data. For more information, see Removing Data from MongoDB.

  16. To upgrade Collector Manager systems and Correlation Engine systems, see Upgrading the Collector Manager or the Correlation Engine.