Upgrading

All RSS-based products are part of the RSS product suite. RSS is the infrastructure component that is automatically installed with the product. 

The RSS product suite provides improved performance, and Reliability, Availability, and Serviceability (RAS) by using a single, common infrastructure and installation framework for all RSS products. You need to download the product suite only once. You control product activation with a license key.

For details about upgrading, see Upgrading.

Related topics

Installing

Administering

Upgrading the TPP adaptable driver

(SPE2507)

To upgrade the driver, follow the installation instructions in Installing the TPP adaptable driver and other utilities.

Each version of the driver has its own files and directories, so you can have multiple driver versions installed at the same time.

You do not need to shut down or restart Venafi Trust Protection Platform (TPP) when you install a new version of the driver or PowerShell script.

To remove an older version, follow these steps:

  1. Make sure that the version is not referenced in the TPP policy tree.
  2. Shut down TPP.
  3. Remove the desired files and directories.
  4. Restart TPP.
Important

You must notify the TPP policy administrator of any upgrade to the driver so that they can make the appropriate changes to the TPP policies, such as:

  • Create a new policy subtree for a new version of EC for Venafi and move a subset of application objects there.
  • Alter the existing configuration to use the new version for all application objects.

Backward compatibility

(SPE2404)

We recommend that you maintain all BMC AMI Enterprise Connector for Venafi components at the same version level. Because this is not always feasible, EC for Venafi supports backward compatibility with one version. For example, a TPP adaptable driver at version 2.3 SPE2404 communicates with a gateway or agent at version 2.3 SPE2401, but it does not communicate with a gateway or agent at version 2.3 SPE2310.

With every call, the TPP adaptable driver verifies whether the gateway and agent versions are in the supported range:

  • If they are the same version as the driver, normal processing continues.
  • If they are not the same version but are in the supported range, processing continues and a warning is recorded in the application object's debug log (if enabled).
    For more information about the debug log, see Task 7: Debug logging in "Using TPP certificates and application objects."
  • If they are out of the supported range (two or more versions too old or new), the driver stops processing and returns an error to TPP.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*