Upgrading the Presentation Server in the high-availability mode using the wizard

Where you are in the Upgrade process

Step	Task
1	Preparing to upgrade TrueSight Operations Management solution
2	Upgrade Remedy Single Sign-On
3	Upgrade TrueSight Presentation Server (You are here)
4	Upgrade TrueSight Infrastructure Management
5	Upgrade App Visibility Manager
6	Upgrade Real End User Experience Monitoring Software Edition
7	Upgrade TrueSight IT Data Analytics

Before you begin

Go to the secondary computer and stop the TrueSight Presentation Server:

(Windows) Navigate to the TrueSightPServer\truesightpserver\bin directory, and run tssh server stop command.
(Linux) Navigate to the TrueSightPServer/truesightpserver/bin directory, and run ./tssh server stop command.

Note

The Load Balancer Health Check URL formats have changed between TrueSight Operations Management versions 10.x and 11.x. For more information, see Guidelines for load balancers.

To upgrade the TrueSight Presentation Server in the high-availability mode using the wizard-based installer

You need to perform the following tasks to upgrade TrueSight Presentation Server in a high-availability environment.

Step A: Upgrade TrueSight Presentation Server on the primary computer

Tip

To know whether the computer on which you plan to upgrade is the primary computer or the secondary computer, run the tssh ha status command.

Preparing the primary server by verifying the XML properties

Perform the following steps on the computer where the existing version of the primary Presentation Server is installed:

Edit the <Primary Server Installation Directory>/TrueSightPServerInstalledConfiguration.xml file.
Locate and change the following property values. If the following properties are not present, add them by obtaining it from the ha.conf file in the <Primary Server Installation Directory>\TrueSightPServer\truesightpserver\conf\ha directory:

<property>
<name>TrueSight_high_availability_enabled</name>
<value>1</value>
</property>
<property>
<name>TrueSight_high_availability_type</name>
<value>1</value>
</property>
<property>
<name>TrueSight_high_availability_server_pair_name</name>
<value>truesight</value>
</property>
<property>
<name>TrueSight_high_availability_secondary_server_fqdn</name>
<value>secondary_server_fqdn</value>
</property>
<property>
<name>TrueSight_high_availability_secondary_database_port</name>
<value>5432</value>
</property>
<property>
<name>TrueSight_high_availability_secondary_cache_replication_port</name>
<value>7800</value>
</property>
<property>
<name>TrueSight_high_availability_primary_cache_port</name>
<value>7800</value>
</property>
<property>
<name>TrueSight_high_availability_primary_control_port</name>
<value>8800</value>
</property>
<property>
<name>TrueSight_high_availability_secondary_control_port</name>
<value>8800</value>
</property>

In the preceding properties, ensure that the value is set as follows:
- TrueSight_high_availability_enabled: Indicates that the high availability is enabled. Value must be set to 1.
- TrueSight_high_availability_type: Indicates the type of server - primary or secondary. Value must be set to 1.

On the primary computer, extract the downloaded files (the upgrade installer) to a temporary location outside the following location to avoid any file sharing conflicts:
- (Windows) C:\Program Files
- (Linux) /opt
(Linux) Set the DISPLAY environment variable to ensure that the wizard-based installer launches the screens appropriately:
export DISPLAY=<IP address of the host computer>:0.0
(Linux) Perform the following steps to provide ownership permissions to the non-root user for all the upgrade-related installation files:
1. Log on as a root user.
2. Run the following command:
```
chown -R <nonrootuser> <installationDirectoryFolderName>
```
  In the preceding command, the following definitions apply:
  - <nonrootuser> is the name of the non-root user.
  - <installationDirectoryFolderName> is the name of the folder that contains the installation files.
  For example, chown -R nonrootuser /Linux/Disk1.

Navigate to the Disk1 directory of the extracted folder, use one of the following options to run the installer.

Environment type Command

Production environment with the existing encryption setting

(Windows) install.cmd

(Linux - as a non-root user)./install.sh

Test environment with the existing encryption setting

(Windows) install.cmd -J MINIMAL=TRUE

(Linux - as a non-root user)./install.sh -J MINIMAL=TRUE

Review the welcome page, and click Next.
Read the license agreement, agree to the terms, and click Next.
On the Upgrade Confirmation page, click Yes, and click Next.
(Applicable if you are upgrading from a version earlier than 11.0) Provide the following details for Remedy SSO and click Next.
1. Type the FQDN of the host computer on which you have installed Remedy SSO.
2. Type the tomcat port number that you have configured while installing Remedy SSO. The default port number for Remedy SSO is:
  - (Windows) HTTPS: 448 and HTTP: 88
  - (Linux) HTTPS: 8048 and HTTP: 8088
3. Type the Remedy SSO server superuser password. The Remedy SSO superuser name is Admin.
4. Select HTTP or HTTPS depending on the Remedy SSO configuration. By default, Remedy SSO is configured in the HTTPS mode.
5. Select Yes or No to import the Remedy SSO private certificate. If you select:
  - Yes: Specify the directory where the Remedy SSO private certificate is stored.
  - No: You can import the Remedy SSO certificate after the upgrade is completed. For more information, see Applying Remedy Single Sign-On Server private certificate to the TrueSight Presentation Server.
Preview the details, and verify the configurations.
Click Install to start the upgrade. A local upgrade may take upto 15 minutes.
After the upgrade is complete, the Installation Summary page is displayed.
Click View Log to view the upgrade log details on the screen. From the log view, you can expand and view the log messages. You can also navigate to the following default location of logs:
- (Windows) \Temp\truesightpserver_install_log.txt
- (Linux)/tmp/truesightpserver_install_log.txt
Click Done to exit the installer.

Note: (Optional) After the installation is complete, you can revoke the write permission on the /opt directory.
Verify the TrueSight Presentation Server status:
- (Windows) Navigate to the TrueSightPServer\truesightpserver\bin directory, and run the tssh server status command.
- (Linux) Navigate to the TrueSightPServer/truesightpserver/bin directory, and run the ./tssh server status command.
A list of include Presentation Server processes are displayed as shown in the following example.
Process status ================================ Core Server Running (13176) Index Server Running (11028) Database Server Running (6052)
If errors occur when you run the tssh server status command, restart the TrueSight Presentation Server by running the following command:
- (Windows) tssh server start
- (Linux) tssh server start&
  The & character at the end of the tssh server start command ensures that the process runs in the background, and you can continue to use the shell.
(Linux only) Register the BMCTSPSSvc.service service by performing the following steps:
Note: The systemd service BMCTSPSSvc.service is supported only from version 11.3.04. For more information on this service, see Starting and stopping the TrueSight Operations Management components.
1. As a root user, run the tssh service register <Non-RootUserName>. This command registers the BMCTSPSSvc.service service under the /etc/systemd/system folder.
2. (SUSE Linux Enterprise Server only) Run the chkconfig --add BMCTSPSSvc.service command.
If you restart the TrueSight Presentation Server host without registering the BMCTSPSSvc service, the processes do not come up and you will need to start the TrueSight Presentation Server manually.
Verify whether the service is registered with the following steps:
1. Ensure that you have read and write permissions for the installedDirectory\truesightpserver\logs\tssh.log file.
2. Running the systemctl status BMCTSPSSvc.service command.
To start and stop the service, run the following commands:
- systemctl start BMCTSPSSvc.service
- systemctl stop BMCTSPSSvc.service
(Applies only if you had configured HTTP access before the upgrade) Reconfigure the TrueSight Presentation Server for HTTP access as described in the steps.
Steps for configuring HTTP access
1. Log in to the Presentation Server host computer, and navigate to the following directory:
  (Windows): <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf
  (Linux): <Presentation Server installation directory>/truesightpserver/modules/tomcat/conf
2. In a text editor, edit the \web.xml file and comment out the security-constraint section so that it reads as follows:
  
  
3. In a text editor, edit the <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf\server.xml file:
  1. Modify the following line:
    
    <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1" redirectPort="443"/>
    
    Then, remove the redirectPort information and copy the compressableMimeType, compression, and compressionMinSize property information from the HTTPS connector so that it reads as follows:
    
    <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1" compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,application/javascript,application/json" compression="on" compressionMinSize="1024" />
    
    Note
    
    The default port for Windows is 80 and Linux is 8080. If you specified a custom port during installation, enter that port number instead.
  2. Comment out the following line so that it reads as follows:
    
    
4. From the <Presentation Server installation directory>\truesightpserver\truesightpserver\bin folder, use a command prompt to run the following commands:
  
  tssh properties set tspsPreferredWebServiceProtocol http
  tssh properties set tsps.xsrf.cookie.secure false
5. If you want to use the TrueSight console to deploy and install packages on a PATROL Agent, from the <Presentation Server installation directory>\truesightpserver\truesightpserver\bin folder, use a command prompt to run the following command:
  
  tssh properties set server.port.websrv.protocol http
6. Restart the TrueSight Presentation Server.
7. On each Infrastructure Management server connected to the TrueSight Presentation Server, set the following properties In the <Infrastructure Management installation directory>\pw\custom\conf\pronet.conf file:
  tsps.tsim.http.enabled=true
  pronet.xsrf.token.secure=false
8. On each Infrastructure Management server, reload the newly updated properties of the Infrastructure Management server running the pw jproperties reload command.
(Applicable if in a previous version you connected to the TrueSight Presentation Server with an alias name) The TrueSight Presentation Server validates all incoming requests to prevent Cross-Site Forgery (CSRF) attacks. After running the upgrade, you must configure all hosts, aliases, or proxies for CSRF validation. Unless you do this, you cannot access TrueSight Presentation Server even if the upgrade completed successfully.
Run the following commands to enable the CSRF filter for the alias names set:
1. Navigate to the following location:
  - (Windows) TrueSightPServer\truesightpserver\bin
  - (Linux)TrueSightPServer/truesightpserver/bin
2. Run the tssh properties set tspsProxyHosts <alias1>,<alias2>,<alias3> command.
  Example
  
  If you have set a single alias name for the TrueSight Presentation Server host:
  tssh properties set tspsProxyHosts HostHouston
  If you have set multiple alias names for the TrueSight Presentation Server host:
  tssh properties set tspsProxyHosts HostHouston,HostLondon,HostPune
3. Run the tssh properties reload command.
To disable the CSRF filter
Note

If implementing the CSRF validation degrades the performance of the UI, you can disable the CSRF filter. However, BMC strongly discourages this action.
Run the following commands:
1. Navigate to the following location:
  - (Windows) TrueSightPServer\truesightpserver\bin
  - (Linux) TrueSightPServer/truesightpserver/bin
2. Run the tssh properties set csrfFilter false command.
3. Run the tssh properties reload command.
(Optional) Perform the steps mentioned in the Troubleshooting a failed deployment only if both of the following statements are true:
- You have upgraded the TrueSight Presentation Server to version 11.3.04, but you are not planning to upgrade your Integration Service or TrueSight Infrastructure Management server (they are running on one of the lower versions, such as 11.3.03 or earlier.)
- You are using the BMC-provided security certificates.

Step B: Upgrade TrueSight Presentation Server on the secondary computer

Preparing the secondary server by verifying the XML properties

Before you upgrade TrueSight Presentation Server on the secondary computer, perform the following steps:

Ensure that the primary computer is running and in active mode. To know the primary computer status, run the tssh ha status command.
Perform the following steps on the computer where the existing version of the secondary Presentation Server is installed:
1. Ensure that the ha-shared.conf file is available at the location set in the <Secondary Server Installation Directory>/TrueSightPServerInstalledConfiguration.xml file TrueSight_high_availability_configuration_file property. If the ha-shared.conf file is not available, copy the file from the <Primary Server Installation Directory>/truesightpserver/conf directory and paste it in the location set in the <Secondary Server Installation Directory>/TrueSightPServerInstalledConfiguration.xml file TrueSight_high_availability_configuration_file property.
2. Edit the <Secondary Server Installation Directory>/TrueSightPServerInstalledConfiguration.xml file.
3. Locate and change the following property values. If the following properties are not present, add them:
  
  <property>
  <name>TrueSight_high_availability_enabled</name>
  <value>1</value>
  </property>
  <property>
  <name>TrueSight_high_availability_type</name>
  <value>2</value>
  </property>
  <property>
  <name>TrueSight_high_availability_configuration_file</name>
  <value>ha-shared.conf_FileLocation<value/>
  </property>
  
  In the preceding properties, ensure that the value is set as follows:
  - TrueSight_high_availability_enabled: Indicates that the high availability is enabled. Value must be set to 1.
  - TrueSight_high_availability_type: Indicates the type of server - primary or secondary. Value must be set to 2.
  - TrueSight_high_availability_configuration_file: Specify the complete location path of the ha-shared.conf file copied from the primary server.

On the secondary computer, extract the downloaded files (the upgrade installer) to a temporary location outside the following location to avoid any file sharing conflicts:
- (Windows) C:\Program Files
- (Linux) /opt
(Linux) Set the DISPLAY environment variable to ensure that the wizard-based installer launches the screens appropriately:
export DISPLAY=<IP address of the host computer>:0.0
(Linux) Perform the following steps to provide ownership permissions to the non-root user for all the upgrade-related installation files:
1. Log on as a root user.
2. Run the following command:
```
chown -R <nonrootuser> <installationDirectoryFolderName>
```
  In the preceding command, the following definitions apply:
  - <nonrootuser> is the name of the non-root user.
  - <installationDirectoryFolderName> is the name of the folder that contains the installation files.
  For example, chown -R nonrootuser /Linux/Disk1.

Navigate to the Disk1 directory of the extracted folder, use one of the following options to run the installer.

Environment type Command

Production environment with the existing encryption setting

(Windows) install.cmd

(Linux - as a non-root user)./install.sh

Test environment with the existing encryption setting

(Windows) install.cmd -J MINIMAL=TRUE

(Linux - as a non-root user)./install.sh -J MINIMAL=TRUE

Review the welcome page, and click Next.
Read the license agreement, agree to the terms, and click Next.
On the Upgrade Confirmation page, click Yes, and click Next.
Preview the details, and verify the configurations.
Click Install to start the upgrade. A local upgrade may take upto 15 minutes.
After the upgrade is complete, the Installation Summary page is displayed.
Click View Log to view the upgrade log details on the screen. From the log view, you can expand and view the log messages. You can also navigate to the following default location of logs:
- (Windows) \Temp\truesightpserver_install_log.txt
- (Linux)/tmp/truesightpserver_install_log.txt
Click Done to exit the installer.

Note: (Optional) After the installation is complete, you can revoke the write permission on the /opt directory.
Verify the TrueSight Presentation Server status:
- (Windows) Navigate to the TrueSightPServer\truesightpserver\bin directory, and run the tssh server status command.
- (Linux) Navigate to the TrueSightPServer/truesightpserver/bin directory, and run the ./tssh server status command.
A list of include Presentation Server processes are displayed as shown in the following example.
Process status ================================ Core Server Running (13176) Index Server Running (11028) Database Server Running (6052)
If errors occur when you run the tssh server status command, restart the TrueSight Presentation Server by running the following command:
- (Windows) tssh server start
- (Linux) tssh server start&
  The & character at the end of the tssh server start command ensures that the process runs in the background, and you can continue to use the shell.
(Linux only) Register the BMCTSPSSvc.service service by performing the following steps:
Note: The systemd service BMCTSPSSvc.service is supported only from version 11.3.04. For more information on this service, see Starting and stopping the TrueSight Operations Management components.
1. As a root user, run the tssh service register <Non-RootUserName>. This command registers the BMCTSPSSvc.service service under the /etc/systemd/system folder.
2. (SUSE Linux Enterprise Server only) Run the chkconfig --add BMCTSPSSvc.service command.
If you restart the TrueSight Presentation Server host without registering the BMCTSPSSvc service, the processes do not come up and you will need to start the TrueSight Presentation Server manually.
Verify whether the service is registered with the following steps:
1. Ensure that you have read and write permissions for the installedDirectory\truesightpserver\logs\tssh.log file.
2. Running the systemctl status BMCTSPSSvc.service command.
To start and stop the service, run the following commands:
- systemctl start BMCTSPSSvc.service
- systemctl stop BMCTSPSSvc.service
(Applicable if you customized Tomcat files before the upgrade) Manually re-add the modifications in the web.xml and server.xml files.
Verify the TrueSight Presentation Server HA upgrade by logging on to the primary and secondary computers.
The URL format is: http(s)://<TSPS_FQDN>:<tomcat_port>
- On the primary computer: You must be able to view the application without any errors.
- On the secondary computer: You must be able to see the following message:
  You accessed a system that is in standby mode. Contact you system administrator for assistance.
(Applies only if you had configured HTTP access before the upgrade) Reconfigure the TrueSight Presentation Server for HTTP access as described in the steps.
Steps for configuring HTTP access
1. Log in to the Presentation Server host computer, and navigate to the following directory:
  (Windows): <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf
  (Linux): <Presentation Server installation directory>/truesightpserver/modules/tomcat/conf
2. In a text editor, edit the \web.xml file and comment out the security-constraint section so that it reads as follows:
  
  
3. In a text editor, edit the <Presentation Server installation directory>\truesightpserver\modules\tomcat\conf\server.xml file:
  1. Modify the following line:
    
    <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1" redirectPort="443"/>
    
    Then, remove the redirectPort information and copy the compressableMimeType, compression, and compressionMinSize property information from the HTTPS connector so that it reads as follows:
    
    <Connector connectionTimeout="20000" enableLookups="false" port="80" protocol="HTTP/1.1" compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,application/javascript,application/json" compression="on" compressionMinSize="1024" />
    
    Note
    
    The default port for Windows is 80 and Linux is 8080. If you specified a custom port during installation, enter that port number instead.
  2. Comment out the following line so that it reads as follows:
    
    
4. Restart the TrueSight Presentation Server.
5. On each Infrastructure Management server connected to the TrueSight Presentation Server, set the following properties In the <Infrastructure Management installation directory>\pw\custom\conf\pronet.conf file:
  tsps.tsim.http.enabled=true
  pronet.xsrf.token.secure=false
6. On each Infrastructure Management server, reload the newly updated properties of the Infrastructure Management server running the pw jproperties reload command.
Your upgrade is now complete.
You do not need additional configurations for the load balancer.
(Optional) Perform the steps mentioned in the Troubleshooting a failed deployment only if both of the following statements are true:
- You have upgraded the TrueSight Presentation Server to version 11.3.04, but you are not planning to upgrade your Integration Service or TrueSight Infrastructure Management server (they are running on one of the lower versions, such as 11.3.03 or earlier.)
- You are using the BMC-provided security certificates.

Post-upgrade notes

Ensure that you review the information in the Troubleshooting version 11.3.04 upgrade and post-upgrade issues topic after you upgrade.
The system requirements are validated each time you restart the host computer or product services. If the system requirements are not met, the product services are not started. To force-start the product services, see Starting and stopping the TrueSight Operations Management components.

In the previous installation, if an IP address was used to access the TrueSight console, post upgrade, map the IP address to the FQDN in the following file:
- (Windows)System32\drivers\etc\hosts
- (Linux) \etc\hosts
After mapping, update bookmarked IP addresses (in browsers) to refer to this FQDN.

Post upgrade, you can ignore the following messages in these two log files:
- database.stdout.log
  ERROR: role "admin" already exists
  STATEMENT: CREATE ROLE admin;
  ERROR: database "truesight" already exists
- DBBackupAndRestoreErrorLog.log
  psql:C:/NDL/TrueSightPServer/db_backup.sql:14: ERROR: role "admin" already exists
  psql:C:/NDL/TrueSightPServer/db_backup.sql:28: ERROR: database "truesight" already exists
If you have configured any custom tuning parameters, check and ensure that they are correct. If required, restore them by using the backup files located at installationDirectory\TrueSightPServer\truesightpserver_<version>\conf\services and copy them to the installationDirectory\conf\custom folder.

Troubleshooting upgrade issues

If you face issues related to upgrade, see Troubleshooting the Presentation Server deployment Open link .

After an unsuccessful upgrade, if you want to restore to the earlier version, see Restoring the earlier version of the Presentation Server if the upgrade fails. Open link .

Next step in the Upgrade process

Now that you have successfully upgraded the TrueSight Presentation Server, upgrade the other TrueSight components as per your requirements. For instructions, see Upgrading.