Move a DLP server to a new server as part of a hardware refresh or operating system upgrade.

search cancel

Move a DLP server to a new server as part of a hardware refresh or operating system upgrade.

book

Article ID: 173957

calendar_today

Updated On:

Products

Data Loss Prevention Endpoint Prevent Data Loss Prevention Data Loss Prevention Enforce Data Loss Prevention Endpoint Suite Data Loss Prevention Endpoint Discover

Issue/Introduction

What are the steps to perform an upgrade of the operating system on your Symantec Data Loss Prevention (DLP) Server or move to a new system as part of a hardware refresh.

Environment

15.8, 16.0, 16.1, 25.1

Resolution

Please note the following:

If you plan to upgrade the existing operating system, shut down DLP services prior to performing the OS upgrade and ensure that the version of Java used to run DLP is compatible with the new OS version.
If you are migrating the Enforce server, It is recommended that you take a full backup of the system before proceeding with the following steps. See the maintenance guide below for steps to back it up (Link below).
Detection servers don't retain sensitive data, so there is minimal impact installing the software onto a new server. Migration isn't always necessary. If you have made custom configuration changes or use custom certificates, those will need to be migrated from the old detection server to the new one.
If you are moving an endpoint server, the endpoint agents will continue to attempt connection to the DNS name or IP address per their existing configuration.
- If you are using an IP address in the agent configuration, make sure the agents are updated before removing the endpoint server or you will need to update the configuration manually on each endpoint agent.
- If you are using DNS for the endpoint agents, make sure the appropriate DNS entries are updated for the new detection server.
If you are changing the hostname of the detection server in the process, then you will want to update the policy groups for the detection server as well as any relevant discovery targets if it is a discovery server.

The guides in the links below have specific steps to perform the backup/install/migration.

Backup up the configuration files and keystore.
- 15.8 Symantec Data Loss Prevention System Maintenance Guide
- 16.0 Maintaining the DLP System
- 16.1 Maintaining the DLP System
- 25.1 Maintaining the DLP System
Uninstall the Detection server.
- 15.8 Windows: Symantec_DLP_15.8_Install_Guide_Win.pdf
  15.8 Linux: Symantec_DLP_15.8_Install_Guide_Lin.pdf
- 16.0 Uninstalling a server from a Windows system or Linux system.
- 16.1 Uninstalling a server from a Windows system or Linux system.
- 25.1 Uninstalling a server from a Windows system or Linux system.
Upgrade the OS.
Install the DLP server.
- 15.8 Windows: Symantec_DLP_15.8_Install_Guide_Win.pdf
  15.8 Linux: Symantec_DLP_15.8_Install_Guide_Lin.pdf
- 16.0 Installing a detection server on Windows or Linux.
- 16.1 Installing a detection server on Windows or Linux.
- 25.1 Installing a detection server on Windows or Linux.
Restore the configuration files and keystore.
- 15.8 Symantec Data Loss Prevention System Maintenance Guide
- 16.0 Maintaining the DLP System
- 16.1 Maintaining the DLP System
- 25.1 Maintaining the DLP System

Additional Information

Symantec Data Loss Prevention Help Center 16.1

Symantec Data Loss Prevention Help Center 16.0

Symantec Data Loss Prevention Help Center 15.8

Feedback

thumb_up Yes

thumb_down No