ATTENTION! When a new Agent Installer is uploaded to the Server, the global option to upgrade Agents (manually or automatically) via the Console is automatically turned off. Before turning this feature on verify which Policies are configured to start Automatic Upgrades or those which are not, and adjust accordingly.
Verify Policy Configuration
Navigate to Rules > Policies.
Click Show Columns and add the relevant Column name:
Server 8.10.0 and higher: Automatically Upgrade Agents
Server 8.9.x or earlier: Allow Upgrades
Edit the relevant Policies accordingly to disable or enable automatic upgrades per-Policy.
Enable Console Upgrades
Navigate to Settings > System Configuration > Advanced Options > Edit.
Locate the section: Carbon Black App Control Agent:
Server 8.10.0 and higher: Automatic Agent Upgrades
Server 8.9.x or earlier: Allow Agent Upgrades
Choose Enabled and click Save.
Starting Agent Upgrades
Manually upgrading individual Agents
Navigate to Assets > Computers
Check the box for the relevant Computer(s)
Action > Upgrade Computers
Automatically upgrading all Agents in a Policy
Navigate to Rules > Policies > Edit the relevant Policy
Check the box for Automatically Upgrade Agents (or Allow Upgrades)
Windows
Manual Upgrade via Command Line (Major version)
A Major version upgrade requires the install flag "msiexec /i" be used when the product GUID changes (e.g. from 8.9 to 8.10).
It is recommended to follow the same upgrade pacing as the Server (max 360 Agent upgrades/hr) when upgrading via 3rd party utilities.
Agent upgrades via 3rd party utilities require temporarily enabling allow_upgrade=1 before issuing the relevant upgrade command.
An Agent Config can be created for All Hosts in a specific Policy with this Value:
allow_upgrade=1
Having this Agent Config received by the Agent, prior to issuing the upgrade command, would remove the requirement to script authenticating with the Agent and using the setconfigprop command.
This Agent Config should only be used temporarily, and disabled after upgrades are completed.
If allow_upgrade is not set via Agent Config, use the following commands to authenticate with the Agent and set manually: