Prepare to Upgrade an HA + DR Deployment
Download the LR Database Upgrade Tool
Download the LogRhythm Database Upgrade Tool from the LogRhythm Community. You must create a user account if you do not already have one.
The Database Upgrade Tool is packaged in a .zip archive. After downloading the archive, copy it to each XM or Platform Manager appliance or server that you want to upgrade, and then extract the contents of the archive into a new directory.
Download the LR Install Wizard
The LogRhythm Install Wizard can install any supported combination of the LogRhythm components on an appliance or server. You can download the Install Wizard from the LogRhythm Community.
The Install Wizard is packaged in a .zip archive. After downloading the archive, copy it to each appliance or server that you want to upgrade, and then extract the contents of the archive into a new directory.
Each of the LogRhythm component installers are included with the Install Wizard. They can be found in the Installers directory where you extracted the archive.
Exit all Client Consoles
Client Consoles running on all systems should be closed.
SIOS DataKeeper and LifeKeeper at Version 8.7
Your SIOS product versions must be at least version 8.6. Version 8.7.0 is included and automatically installed with the installer scripts.
If you need to add DataKeeper or LifeKeeper manually, you can download the SIOS setup files from the LogRhythm Community, and they must be run on both nodes in the HA pair. A reboot after the installation is required. To minimize downtime:
- Run the installer on Node 1 (the active system) and then reboot Node 1.
- Failover resources from Node 1 to Node 2.
- Install on Node 2 and then reboot Node 2.
Address Pending Restarts
If there are updates or restarts pending on the Windows server, you must address them prior to performing an upgrade on SQL or LogRhythm. Address any other updates or actions requiring a restart before the upgrade.
Record Service Credentials
If the LogRhythm services in your deployment use Windows accounts, you need the account name and password to complete this upgrade.
- To see if a service is running under a Windows account, click Start, click All Programs, click Administrative Tools, and then click Services.
- Double-click a LogRhythm service.
- In Service Properties, click the Log On tab. If the This account option button is selected, this service is running under Windows credentials.
- For each LogRhythm service, note the account name and obtain the account password from your network administrator.
Shutdown Antivirus and Endpoint Protection Software
Shut down any antivirus or endpoint protection software you have running on all LogRhythm systems. In the case of endpoint protection software, you may need to uninstall the software from all LogRhythm systems as it has been known to interfere with the LogRhythm solution. When the LogRhythm installation is complete, you can enable or install antivirus or endpoint protection software again.
Synchronize the Stored Knowledge Base
If a Knowledge Base has been downloaded but not synchronized, synchronize it before starting the upgrade. If you do not have a downloaded Knowledge Base, you can skip this step. To Migrate Common Event Changes, perform any of the following steps as needed: If Action Required is displayed, some items need to be updated due to Common Event migration changes. Follow the instructions below. If Action Required is not displayed, go to step 9.
The Knowledge Base Manager appears. If a downloaded Knowledge Base is ready for synchronization, a notice is displayed at the top of the window.
The Knowledge Base Import Wizard appears and starts unpacking and validating the Knowledge Base file. The file is checked for compatibility with your current deployment and prepared for import. This may take several minutes.
When finished, the Unpack Progress: Knowledge Base unpacked message appears.
The Enable Selected Modules dialogue box appears.
The Enable Modules box displays a confirmation message.
Run the Pre-Upgrade Script on Each HA Node
If not already done, download the HA Upgrade 10.1 zip file from the LogRhythm Community.
- On the Primary HA node, browse to where the HA Upgrade 10.1 zip file was saved.
- Extract the files from the HA Upgrade 10.1 zip file. When the files are extracted, they are stored in the HA Upgrade 10.1 subdirectory.
- Browse to the HA Upgrade 10.1 subdirectory.
- Right-click the PreUpgrade.ps1 file and then click Run with PowerShell.
- When the script completes, complete the steps again on the Secondary Node.