Upgrading the Cluster

Perform the following steps to upgrade a threat defense virtual cluster:

Before you begin

Before you upgrade a cluster in the public cloud, copy the target version image to your cloud image repository and update the image ID in the cluster deployment template (we actually recommend replacing the existing template with a modified copy). This ensures that after the upgrade, new instances — for example, instances launched during cluster scaling — will use the correct version. If the marketplace does not have the image you need, such as when the cluster has been patched, create a custom image from a snapshot of a standalone threat defense virtual instance running the correct version, with no instance-specific (day 0) configurations.
For threat defense virtual for AWS, suspend the HealthCheck and ReplaceUnhealthy processes before autoscaled cluster upgrade. This ensures that instances are not terminated by the Auto Scaling group during the post-upgrade reboot. You can resume the suspended processes afterwards. For instructions, see the Amazon EC2 Auto Scaling user guide: Suspend and resume Amazon EC2 Auto Scaling processes.

Step 1	Upload the target image version to the cloud image storage.
Step 2	Update the cloud instance template of the cluster with the updated target image version. Create a copy of the instance template with the target image version. Attach the newly created template to cluster instance group.
Step 3	Upload the target image version upgrade package to the management center.
Step 4	Perform readiness check on the cluster that you want to upgrade.
Step 5	After successful readiness check, initiate installation of upgrade package.
Step 6	The management center upgrades the cluster nodes one at a time.
Step 7	The management center displays a notification after successful upgrade of the cluster. There is no change in the serial number and UUID of the instance after the upgrade.