Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Preparation Checklist for JSA Upgrades

To successfully upgrade an JSA system, verify your upgrade path, especially when you upgrade from older versions that require intermediate steps. You must also review the software, hardware, and high availability (HA) requirements.

ISO files are used for major operating system version upgrades and SFS files are used for any upgrades that do not include a major operating system version upgrade.

Use the following checklist to make sure that you are prepared for an upgrade.

  • Review the JSA Release Notes (https://www.juniper.net/documentation/product/en_US/juniper-secure-analytics/).

  • Run a health check and fix any failures. See "Running health checks" in the Juniper Secure Analytics Troubleshooting Guide.

  • Notify users of scheduled maintenance.

  • Verify that running scans and reports are complete.

  • Request that users close all JSA sessions and screen sessions.

  • Download the SFS file. See https://support.juniper.net/support/downloads/.

  • Verify the checksum of the SFS file.

  • Get a CSV file that contains a list of IP addresses for each appliance in your deployment if you don't already have this information, by typing the following command:

    /opt/qradar/support/deployment_info.sh

  • Back up all third-party data, such as:

    1. - scripts

    2. - personal utilities

    3. - important files or exports

    4. - JAR files or interim fixes that were provided by JSA support

    5. - static route files for network interfaces

  • If you have HA appliances in your deployment, verify that your primary appliances are in the Active state, and your secondary appliances are in the Standby state.

  • Ensure that you have direct access to the command line on all appliances. If you are using IMM, iDRAC, Raritan, KVM, or other technology for command line access, ensure that they are configured and functional.

  • Back up your custom content by typing the following command:

    /opt/qradar/bin/contentManagement.pl --action export --content-type all

  • Confirm that all appliances in your deployment are at the same software version by typing the following commands:

    /opt/qradar/support/all_servers.sh -C -k /opt/qradar/bin/myver > myver_output.txt

    cat myver_output.txt

  • Confirm that all previous updates are unmounted by typing the following commands:

    /opt/qradar/support/all_servers.sh -k "umount /media/cdrom"

    /opt/qradar/support/all_servers.sh -k "umount /media/updates"

  • If you have HA appliances in your deployment:

    1. - Verify that the /store file system is mounted on the primary appliance and not mounted on the secondary appliance.

    2. - Verify that the /transient file system is mounted on both the primary and secondary appliances.

  • Review system notifications for errors and warnings for the following messages before you attempt to update. Resolve these error and warning system notifications before you attempt to update:

    1. - Performance or event pipeline degradation notifications

    2. - Memory notifications

    3. - TX sentry messages or process stopped notifications

    4. - HA active or HA standby failure system notifications

    5. - Disk failure system notifications

    6. - Disk Sentry noticed one or more storage partitions are unavailable notifications

    7. - Time synchronization system notifications

    8. - Unable to execute a backup request notifications

    9. - Data replication experiencing difficulty notifications

    10. - RAID controller misconfiguration notifications

  • Manually deploy changes in the user interface to verify that it completes successfully.

  • Verify that the latest configuration backup completed successfully and download the file to a safe location.

  • Ensure that all apps on your system are updated. Out-of-date apps might not work after you upgrade JSA.

  • Resolve any issues with applications in an error state or not displaying properly.

  • App Nodes are no longer supported as of JSA 7.3.2. If you have an App Node in your deployment, follow the steps in "Migrating from an App Node" in the Juniper Secure Analytics Administration Guide before you start the upgrade.