Introduction:
CDT Advanced Mode completes a Deployment Plan on each remote Security Gateway. The Deployment Plan can run a number of actions one after the other. For the full list of actions, see Deployment Plan.
Workflow:
CentralDeploymentTool.xml
file to change the settings:To generate an Installation Candidates List:
Management Server |
Instructions |
---|---|
Security Management Server |
# ./CentralDeploymentTool -generate -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml |
Multi-Domain Security Management Server |
# mdsenv <IP Address or Name of Domain Management Server>
# ./CentralDeploymentTool -generate -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml -server=<IP Address or Name of Domain Management Server> |
Note - The CDT generates a Candidates List filtered only according to the first package mentioned in the deployment plan.
There are two ways to limit the execution of a Deployment Plan to specified Security Gateways:
Management Server |
Instructions |
---|---|
Security Management Server |
# ./CentralDeploymentTool -generate -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml -filter=<Name of Filter File> |
Multi-Domain Security Management Server |
# mdsenv <IP Address or Name of Domain Management Server>
# ./CentralDeploymentTool -generate -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml -filter=<Name of Filter File> -server=<IP Address or Name of Domain Management Server> |
Management Server |
Instructions |
---|---|
Security Management Server |
# ./CentralDeploymentTool -execute -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml -filter=<Name of Filter File> |
Multi-Domain Security Management Server |
# mdsenv <IP Address or Name of Domain Management Server>
# ./CentralDeploymentTool -execute -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml -filter=<Name of Filter File> -server=<IP Address or Name of Domain Management Server> |
Execution:
Management Server |
Instructions |
---|---|
Security Management Server |
# ./CentralDeploymentTool -execute -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml |
Multi-Domain Security Management Server |
# mdsenv <IP Address or Name of Domain Management Server>
# ./CentralDeploymentTool -execute -candidates=<Name of Candidates List file>.csv -deploymentplan=<Name of Deployment Plan file>.xml <IP Address or Name of Domain Management Server> |
The CDT shows the installation progress on the screen.
CDT writes the progress details at 5 seconds intervals to these files in the directory of the CentralDeploymentTool
binary file:
File |
Description |
---|---|
|
Full description of the last completed stage and current stage of all Security Gateways and Cluster Members statuses. |
|
Brief description (current stage only) of all Security Gateways and Cluster Members statuses currently in execution. Useful if your screen area is limited. |
We recommend to run the watch
command to read the file continuously.
Example:# watch -d cat CDT_status.txt
Note - The error is not blocking, if you defined the action in the deployment plan with the parameter "iscritical=false
".
Note - The error is blocking, if you defined the action in the deployment plan with the parameter "iscritical=true
".
Retry:
If the installation failed on some of the Security Gateways, but continues on the remaining Security Gateways:
CDT tries to continue execution on failed Security Gateways and Cluster Members, starting from the last failed stage. Retry is only possible when the CDT runs. To perform retry:
Management Server |
Instructions |
---|---|
Security Management Server |
# ./CentralDeploymentTool -retry |
Multi-Domain Security Management Server |
# mdsenv <IP Address or Name of Domain Management Server>
# ./CentralDeploymentTool -retry <IP Address or Name of Domain Management Server> |