The procedures in this chapter guide you through upgrading the Sentinel.
You can upgrade Sentinel from any lower versions to 8.3.1 first. From 8.3.1 you can upgrade to a higher version of Sentinel.
Until Sentinel 8.5.0.1, Python2 was supported on SLES 12x and RHEL 7x and Python3 on SLES 15x and RHEL 8x. Since Python2 has reached end of life, Python3 is supported beginning with Sentinel 8.6.0.0. Therefore, before upgrading to Sentinel 8.6.0.0, ensure that Python3-related packages are installed on the RHEL and SLES servers.
To install Python3 packages on SLES and RHEL severs, perform the following steps:
On SLES, run the following commands:
zypper in python36
zypper in openssl-1_1
On RHEL 8.x, run the following commands:
yum install python36
yum install openssl-1.1.1
On RHEL 7.9, run the following commands:
yum install python36
yum install openssl-1.0.2
Squashfs Package on Traditional Box
Earlier, the Sentinel server installer included the squashfs package. As the squashfs package is available on all operating systems, it has been removed from the Sentinel installer bundle from the 8.6.0.0 version onwards. Therefore, the following steps must performed before you upgrade to Sentinel 8.6.0.0:
Remove squashfs rpm that was previously installed on the Sentinel server by using the following command:
rpm -e –nodeps squashfs
Install the squashfs package that is available with the operating system by using the following command:
On SLES
zypper in squashfs
On RHEL (applicable to traditional boxes)
yum in squashfs-tools
Verify that the squashfs package is installed on the server by running the following command:
rpm -qa | grep squashfs
After installing the squashfs package, you can upgrade Sentinel version to 8.6.0.0.
You can upgrade from any version below 8.3.1 to 8.3.1 first, then from 8.3.1 need to upgrade to 8.6.0
IMPORTANT:If you are upgrading from earlier versions of Sentinel 8.3.0.0, below steps are applicable.
IMPORTANT:When you are upgrading the Sentinel server, make sure to upgrade Collector Manager systems and Correlation Engine systems to the same version of the Sentinel server. Otherwise, you might face some issues in the system due to schema changes or new features changes.
The upgrade process does the following:
Migrates Security Intelligence data and alerts data from MongoDB to PostgreSQL.
Sentinel now stores Security Intelligence data, alerts data, and so on in PostgreSQL instead of MongoDB. The upgrade process will first migrate this data to PostgreSQL and if successful, will automatically proceed with the upgrade. If the data migration is unsuccessful, you cannot upgrade Sentinel.
Generates a cleanup script that you can use to remove data and MongoDB related RPMs.
The data stored in MongoDB is retained as a backup.