Checklist: Upgrading Your AWS Cluster

Use this checklist to complete the upgrade tasks in the listed order.

Throughout the rolling upgrade process, services not actively being upgraded will continue to be available. Services that utilize the ArcSight Database, such as event ingestion and search, will be interrupted during the Database upgrade phase, but any in-flight data would be cached and processed as soon as the Database upgrade completes.

If you deployed and configured your system for high availability, during the rolling Kubernetes worker node upgrade process, services delivered by pods on the affected worker node will be restarted on another worker node.  Similarly, the upgrade of Kubernetes pods is performed in a rolling manner, so there will be a brief pod-level service pause as pods are restarted to perform the upgrade.  Some services, such as Transformation Hub, can be configured for high availability with pod replicas so that there are no service pauses during the rolling upgrade.

	Task	See
	Ensure that you are upgrading from and to the correct version of ArcSight Platform	ArcSight Platform Upgrade Paths
	Identify the product versions, files to download, and known issues related to the upgrade	Release Notes for ArcSight Platform 23.3
	Download the installation packages	Downloading the Upgrade Packages for an AWS Deployment
	Back up the ArcSight Platform configuration data; the Postgres database, which contains the configuration of your deployed capabilities; and, if you have Intelligence or Recon deployed, the ArcSight Database	Backing Up and Restoring
	(Conditional) If your deployment includes Intelligence or Recon, upgrade the Database	Upgrading the Database in AWS
	Create new target groups with the new port values for the front-end and portal ingress controller services	Configuring Controller Services
	Upgrade the deployed capabilities	Upgrading Deployed Capabilities in AWS
	Backing Up the Elasticsearch Data	Backing Up the Elasticsearch Data
	Upgrade Kubernetes version of the control plane and worker nodes	Upgrading EKS
	Recovering and Restoring Elasticsearch Data	Recovering and Restoring Elasticsearch Data
	Complete post-upgrade tasks	Completing Post-Upgrade Tasks
	(Conditional) If your environment includes ESM, you should upgrade to the latest version	Upgrading ESM
	(Conditional) If you have purchased licenses for additional capabilities, deploy them to your environment	Adding Additional Capabilities to an Existing Cluster