See below for how to upgrade your installation to Cryptographic Security Platform 1.1.0.
Upgrade requirements
Upgrading to Cryptographic Security Platform 1.1.0 requires the following installation.
Version | Installation mode |
|---|---|
Cryptographic Security Platform 1.0.0 | prod_mode |
If you have a previous version, upgrade it to Cryptographic Security Platform 1.0.0 as explained in section Upgrading of the Cryptographic Security Platform 1.0.0 guide.
If the Validation Authority or Timestamp Authority solutions are already deployed in the upgraded installation, ensure the value of the following parameter equals or exceeds 4096.
Solution | Parameter | Section |
|---|---|---|
Validation authority | Max header bytes | |
Timestamping Authority | Max header bytes |
Upgrade process
See below for how to run the upgrade process.
To upgrade Cryptographic Security Platform 1.0.0 to 1.1.0
- Follow the steps in Downloading the installation files to download the PKI Hub 1.2.0 for VMWare vSphere, Hyper-V and Nutanix file. You need this ISO image file to upgrade any installation, ISO-based or non-ISO-based.
Backup the installation state as explained in section Backing up of the Cryptographic Security Platform 1.0.0 guide.
- Repeat the following steps on each Cryptographic Security Platform node.
- Use an SFTP client to copy the Cryptographic Security Platform ISO image file to the
/home/sysadminnode folder. - Run the clusterctl upgrade command and wait until completion (around 2 hours).
- Use an SFTP client to copy the Cryptographic Security Platform ISO image file to the
- Reboot each node sequentially, with at least 15 minutes before each reboot.
- Back up the installation state as explained in section Backing up of this guide.
Supported commands during the upgrade
During the upgrade process or while fixing a failed upgrade, you can only run the following commands (or equivalent Management Console operations)