McAfee EMM Best Practices Document Upgrading your High Availability EMM installation

Similar documents
McAfee VirusScan and McAfee epolicy Orchestrator Administration Course

Migration Guide. McAfee File and Removable Media Protection 5.0.0

McAfee Drive Encryption Administration Course

Workspace ONE UEM Upgrade Guide

Installation Guide. McAfee Enterprise Mobility Management 10.1

McAfee epolicy Orchestrator Update 2

McAfee Firewall Enterprise epolicy Orchestrator Extension

INSTALL GUIDE BIOVIA INSIGHT 2016

VMware vrealize Configuration Manager Backup and Disaster Recovery Guide vrealize Configuration Manager 5.8

VMware AirWatch Database Migration Guide A sample procedure for migrating your AirWatch database

Product Guide. McAfee Enterprise Mobility Management (McAfee EMM ) 9.6

McAfee Firewall Enterprise and 8.3.x

McAfee Security Management Center

INSTALL GUIDE BIOVIA INSIGHT 2.6

Release Notes McAfee Change Control 7.0.0

McAfee Network Security Platform Administration Course

SAS Activity-Based Management Server Software 6.1 for Windows

McAfee Web Gateway Administration

McAfee Web Gateway

McAfee Content Security Reporter Installation Guide. (McAfee epolicy Orchestrator)

Copyright SolarWinds. All rights reserved worldwide. No part of this document may be reproduced by any means nor modified, decompiled,

McAfee Embedded Control

Technical White Paper HP Access Control Upgrade Guide. August 2017

VMware AirWatch Certificate Authentication for EAS with ADCS

VMware AirWatch Integration with RSA PKI Guide

VERITAS StorageCentral 5.2

Release Notes McAfee Change Control 8.0.0

SC-T35/SC-T45/SC-T46/SC-T47 ViewSonic Device Manager User Guide

McAfee Data Protection for Cloud 1.0.1

Desktop Installation Guide

McAfee Web Gateway

VMware AirWatch Certificate Authentication for EAS with NDES-MSCEP

Connectware Manager Getting Started Guide

McAfee Firewall Enterprise

Installation Instructions for SAS Activity-Based Management 6.2

McAfee Enterprise Mobility Management 12.0 Software

UPGRADE TO CA PRODUCTIVITY ACCELERATOR V12

ControlPoint. Advanced Installation Guide. September 07,

Dell Statistica. Statistica Enterprise Server Installation Instructions

Upgrade Guide. Platform Compatibility. Dell SonicWALL Aventail E-Class SRA 10.7 Upgrade Guide. Secure Remote Access

UPGRADING SEER-HD TO SEER- HD

Self-Service Password Reset

Employee Web Services. Installation Guide

McAfee Host Intrusion Prevention 8.0

IP-guard v3.2 Migration Guideline

KYOCERA Device Manager User Guide

Desktop Installation Guide

VMware AirWatch Integration with SecureAuth PKI Guide

Relius Administration Version 17.0 Web/VRU/CSR Installation and Configuration. April 16, 2012

ArcGIS Enterprise Administration

Dell Security Management Server. Installation and Migration Guide v10.0

ACTIVANT PROPHET UPDATE GUIDE

Migrate to VMware Identity Manager 3.3 from AirWatch Installation (Windows) SEP 2018 VMware Identity Manager 3.3

McAfee Management of Native Encryption 3.0.0

VMware AirWatch Certificate Authentication for EAS with NDES-MSCEP. For VMware AirWatch

Installation Guide Worksoft Certify

Installing CaseMap Server User Guide

Metalogix ControlPoint 7.6. Advanced Iinstallation Guide

Firewall Enterprise epolicy Orchestrator

IBM Client Security Solutions. Client Security Software Version 1.0 Administrator's Guide

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

Manual. DriveLock Setup. Quick Start Guide

McAfee MVISION Mobile Microsoft Intune Integration Guide

INSIGHT Installation Instructions

Storage Center. Enterprise Manager 5.5. Installation and Setup Guide

x10data Application Platform v7.1 Installation Guide

Technical Brief Veritas Technical Education Services

Silk Performance Manager Installation and Setup Help

ControlPoint. Installation Guide for SharePoint August 23,

McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

Perceptive TransForm E-Forms Manager

Installing CaseMap Server User Guide

ER/Studio XE/Enterprise

SolarWinds. Migrating SolarWinds NPM Technical Reference

Installing CaseMap Server User Guide

McAfee File and Removable Media Protection Installation Guide

McAfee Internet Security Suite Quick-Start Guide

Endpoint Intelligence Agent 2.2.0

LiveNX Upgrade Guide from v5.2.0 to v5.2.1

McAfee Web Gateway

VMware AirWatch Integration with Microsoft ADCS via DCOM

SCCM Plug-in User Guide. Version 3.0

User Management Tool

Sophos Mobile Control Installation guide

Tofino CMP Installation & Upgrade Guide Tofino CMP Version Tofino Firmware Version 1.7.0

McAfee Content Security Reporter 2.6.x Installation Guide

Installation Guide. EventTracker Enterprise. Install Guide Centre Park Drive Publication Date: Aug 03, U.S. Toll Free:

Symantec Desktop and Laptop Option 8.0 SP2. Symantec Desktop Agent for Mac. Getting Started Guide

McAfee epolicy Orchestrator Release Notes

TIE1.80InstallationGuideUK

McAfee Embedded Control for Retail

Server Installation Guide

LiveNX Upgrade Guide from v5.1.2 to v Windows

Crystal Enterprise. Overview. Contents. Upgrading CE8.5 to CE10 Microsoft Windows

McAfee Content Security Reporter Release Notes. (McAfee epolicy Orchestrator)

INSTALLATION AND SETUP VMware Workspace ONE

Release Notes McAfee Application Control 6.1.0

Lasso Continuous Data Protection Lasso CDP Client Guide August 2005, Version Lasso CDP Client Guide Page 1 of All Rights Reserved.

SolidWorks Enterprise PDM Installation Guide

NetExtender for SSL-VPN

Transcription:

McAfee EMM Best Practices Document Upgrading your High Availability EMM installation For use with EMM 9.x and 10.x versions McAfee Support Enterprise Mobility Management (EMM) Document Rev. 2.2

Page 2 Introduction This document provides the general steps for upgrading your McAfee EMM software while maintaining service interruption to a minimum and ensuring you have all the tools to be able to restore your original installation in the case of a failure. Below are some important steps and best practices to keep in mind for upgrading your EMM installation. Back-up and other pre-upgrade measures The measures below will be necessary to restore your installation to a working state if the EMM upgrade fails for any reason: - Back up the EMM database (full backup) - Create snapshots of the hub and proxy servers in case a roll back is required (Only applicable if EMM runs on a virtual platform). - Verify the Push, MDM and Portal Certificates are current in the console and that no Trusted Certificates exist under the System Settings > Certificates section (if upgrading from 9.5.5). Also verify you have copies all the certificate files (pfx or p12 format) and their corresponding passwords. - Login to the EMM Console on the Hub server and export the Encryption key. You will have to click on the server name from the upper left hand corner of the Web UI Choose a password that you ll remember easily. You ll then need to save the file to a folder the server. Note: You will not be prompted for the encryption key unless the upgrade fails or the software is moved to a different physical server. If the upgrade fails, it will be necessary to uninstall all EMM components, install the version of EMM you were upgrading from as a custom installation and point the installer to the existing database. You will have the ability to specify the database encryption key when prompted. Refer to the EMM disaster recovery document for more information KB73237 - Make backups of the web.config documents for each installed component:

Page 3 Refer to the table below for the exact location of the web.config files for the different EMM components: EMM Component Default Location EMM Hub EMM Console EMM PKI Agent EMM BES Agent EMM Portal EMM EAS Proxy EMM Push Notifier C:\Program Files (x86)\mcafee\emmplatform\emmhub\web.config C:\Program Files (x86)\mcafee\emmplatform\emmconsole\web.config C:\Program Files (x86)\mcafee\emmplatform\emmcertenroll\web.config C:\Program Files (x86)\mcafee\emmplatform\emmbes\web.config C:\Program Files (x86)\mcafee\emmplatform\emmportal\web.config C:\Program Files (x86)\mcafee\emmplatform\eas Filter\TrustDigital-Server-ActiveSync\web.config C:\Program Files (x86)\mcafee\emmplatform\eas Filter\Proxy-Server-ActiveSync\web.config C:\Program Files (x86)\mcafee\emmplatform\eas Filter\filter.config C:\Program Files (x86)\mcafee\emmplatform\emmpushnotifier\emmpushnotifier.exe.config Once the disaster recovery steps above are followed and all back up files are safely stored, you can proceed with upgrading your EMM software. Upgrading your EMM installation 1. Ensure that you are logged on to Windows on your EMM Hub (internal) server with the service account that was used during the original install. The specific service account used for the original install can be found in the file InstallerData.xml in the EMM installation directory: C:\Program Files (x86)\mcafee\emmplatform Note: If SQL Authentication was used during the original EMM installation, you should be able to login to the server with any administrator account to run the upgrade. Verify that the SQL user still db_owner rights to the EMM database in SQL.

Page 4 2. Stop IIS on the proxy servers (DMZ) and on the EMM Hub (internal) servers you are not upgrading first in order to eliminate device requests to the EMMHub servers and write attempts from other EMM Hub servers to the database while the upgrade is running. Open a command prompt with Admin privileges (Window 2008) and run the following command iisreset stop 3. Run the setup.exe on the first EMM Hub (internal) server. Uncheck the box to Use configuration from a previous installation and click Next. 4. Choose the Upgrade option

Page 5 5. All the settings should be pre-populated from original installation settings. Specify any passwords that may be required and click Next. 6. Once all the components to be upgraded have been verified, click Upgrade.

Page 6 7. Each component being upgraded will complete with a green checkmark if successful or a red X if unsuccessful 8. Upgrade on the first Hub server is now complete. NOTE: Verify that you can log into the console and all the settings and policies look correct.

Page 7 9. Stop IIS on the server that was just upgraded. iisreset stop 10. Start IIS on the next EMMHub Server being upgraded. iisreset start 11. Repeat steps 3-8 on the second EMM Hub Server and on any additional Hub Servers if you have more than two. 12. Once the Upgrade is complete on all EMM Hub Servers, verify IIS is started on all servers iisreset start 13. Start the installation on the first EMM Proxy (DMZ) server and click Next.

Page 8 14. Choose the Upgrade option 15. Once all the components to be upgraded have been verified, click Upgrade.

Page 9 16. Each component being upgraded will complete with a green checkmark if successful or a red X if unsuccessful 17. Upgrade of the first Proxy Server is complete.

Page 10 18. Repeat Steps 13-17 on the remaining Proxy servers. 19. Your EMM Upgrade is now complete. Supported Upgrade paths McAfee strongly recommends that customers running older versions of EMM upgrade their installations to EMM 10.2. Refer to the chart below for the supported upgrade paths: Current EMM Version Upgrade to this version Then upgrade to this version 9.5.5 10.0.1 10.2 9.6.x 10.2 (directly) N/A 9.7.x 10.2 (directly) N/A 10.0.x 10.2 (directly) N/A 10.1.x 10.2 (directly) N/A Upgrade Failure In the case of an upgrade failure of one or more EMM Components, it is recommended that you contact McAfee Technical Support for assistance. You can also review KB73237 for additional instructions to rollback your installation. For contact details: Go to http://www.mcafee.com/us/about/contact/index.html Non-US customers - select your country from the list of Worldwide Offices. Alternatively: Log in to the ServicePortal at https://mysupport.mcafee.com If you are a registered user, type your User Id and Password and click OK. If you are not a registered user, click New User and complete the required fields. Your password and login instructions will be emailed to you The information in this document is provided only for educational purposes and for the convenience of McAfee customers. The information contained herein is subject to change without notice, and is provided AS IS without guarantee or warranty as to the accuracy or applicability of the information to any specific situation or circumstance. 2821 Mission College Boulevard Santa Clara, CA 95054 888 847 8766 www.mcafee.com McAfee and the McAfee logo are registered trademarks or trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other marks and brands may be claimed as the property of others. The product plans, specifications and descriptions herein are provided for information only and subject to change without notice, and are provided without warranty of any kind, express or implied. Copyright 2011 McAfee, Inc.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback