Upgrading to the latest version of AppScan Enterprise
For a successful upgrade to the latest version of AppScan Enterprise, read this topic carefully.
Planning the upgrade
Planning an upgrade is similar to planning a deployment. It is important to review your environment and requirements carefully.
Procedure
- Identify and document hardware elements that host software
components:
- AppScan® Enterprise Server (main application server hosted by IIS)
- AppScan Enterprise dynamic scanning agents
- Microsoft™ SQL Server database
- Create a table like this one to track your information:
Table 1. Proposed environment server requirements Component Server Operating System Technical Specifications Required Software AppScan Enterprise Server SQL Server AppScan Dynamic Analysis Scanner server - Validate identified software and hardware elements meet the system requirements.
- Identify and document security elements:
- Installation account ID, rights and password
- Service Account ID, rights and password (used for database interaction)
- AppScan Enterprise URL
- Product administrator ID and password
- Export or create a server certificate to use with IBM® WebSphere® Application Server Liberty Core.
- Check that you have the correct AppScan® Enterprise Licenses for your upgrade.
-
Obtain AppScan® Enterprise 10.x.0 software from HCL® FNO:
- AppScan® Enterprise Server and License Key Server
- AppScan® Enterprise Dynamic Analysis Scanner
- If you use AppScan® Source, you can obtain the 10.0.1 software from HCL® FNO. You also need to upgrade your Oracle database.
- Back up your SQL Server database.
- If you upgrade your SQL Server, configure the SQL Server database for AppScan® Enterprise.
- Verify product changes that might affect the version you are upgrading from.
Building the staging (testing) environment for upgrade
Use these instructions for building a staging environment or if you are only upgrading your production environment.
Procedure
- Create three virtual or physical machines (one machine each for the SQL Server, AppScan Enterprise Server and the Dynamic Analysis Scanner) to meet the system requirements.
-
Install required software (Application Services, SQL Server Services, etc.) to support the
three components which will make up the staging environment.
Note: If you do not install SQL Server on a separate machine, make sure that you specify "HOSTNAME\SQL_SERVER_NAME" as the SQL Server name in the Database Connection window during configuration. Liberty server does not support "." as a replacement for 'localhost'.
- Back up the production database, and load the database into the staging SQL Server.
- Install AppScan® Enterprise
Server to the application server.
- Install AppScan® Enterprise Dynamic Analysis Scanner to the dynamic scanner machines. Unzip to machine and run ASE_DASSetup_<version>.exe. After you complete the installation, run the Server Configuration Wizard, and repeat for all Dynamic Analysis Scanner machines.
- Optional: Upgrade AppScan Source to latest version. See Upgrading AppScan Source for complete instructions.
- If you use AppScan Source and connect with an Oracle database, modify the filepath to point to Liberty instead of Jazz Team Server. See Upgrading the AppScan Source LDAP connection with an Oracle database.
- If you upgrade from v8.8, the database is unencrypted. Read these topics to learn how to encrypt the database.
Testing the staging environment
Procedure
- Verify all configured services are functioning as intended.
- Verify usage of the HCL AppScan software is functioning
as intended.
- authentication
- building scans
- running scans
- reporting
Results
Upgrading the AppScan Enterprise production environment
If you are only upgrading your production environment, refer to the detailed instructions explained in the "Building the staging (testing) environment for upgrade" topic above.
Preparing production for AppScan Enterprise Software upgrade
Procedure
- Notify your users that services will be unavailable for the period of time while upgrade has been introduced, and testing has been completed.
- Back up the production database.
- Take existing agent servers out of service before upgrade is performed.
- Take existing application server out of service before upgrade is performed.
- Take existing SQL server out of service before upgrade is performed.
Upgrading production AppScan Enterprise software
Procedure
- Upgrade production AppScan Enterprise Server to the latest
release:Note:
- Always uninstall AppScan Enterprise components before installing new versions or fixpacks.
- Always leave existing components of AppScan Enterprise in place and install on top of these when you apply an iFix or a patch.
- Upgrade production SQL server to the latest release that AppScan Enterprise supports.
- Upgrade production Agent Dynamic Analysis Scanner servers to the latest release.
- Perform system reboot, then put AppScan Enterprise server in service.
- Perform system reboot, then put Agent Scanner servers in service.
Testing production AppScan Enterprise software post upgrade
Procedure
- Verify all services are available and ready for use.
- Verify usage of the HCL AppScan software is functioning
as intended.
- authentication
- building scans
- running scans
- reporting