| Description | This article describes the process for upgrading Threat Hunting Repository (EDRv2) from existing 5.0 version to newer 5.0 release. | |
| Scope | 5.0.3.2x to 5.0.3.5x. | |
| Solution |
|
ON PREM UPGRADE:
Upgrading the Threat Hunter version. The required upgrade file is provided to user by Fortinet. It is used to perform the procedure below.
Prerequisite(s) before upgrading:
Refer to CPU & RAM requirements here (for existing Threat Hunter Repository): https://docs.fortinet.com/document/fortiedr/5.0.0/administration-guide/633631/installing-fortiedr#Sy... Backup the existing Threat Hunting Repository or snapshot if VM.
To upgrade the Threat Hunter Repository:
Upload FortiEDR Repository Software ISO, launch the FortiEDR_RepositoryInsaller_MW-x.x.xxx_STR-x.x.x.xxx ISO file. (received from Fortinet support) to the virtual environment data store: - Connect to Disk Image File (iso) via VMWare. - Log into Threat Hunter Repository as rancher with password - Type command: sudo su - - Run the following command:
bash /k3os/system/install_edr2.sh Enter 2 Upgrade will start.
Once completed, this will appear:
SUCCESS: edr-streamer service deployed. Log into the manager and check it is green and running. Need to refresh the console view a few times awaiting the report to come back online to running state. |
