Introduction:
CDT Basic Mode lets you:
Step |
Description |
---|---|
1 |
Connect to the command line on your Management Server you use for package distribution. |
2 |
Log in to Expert mode. |
3 |
Make sure there is no active GUI client that locks the management database, such as SmartDashboard or SmartConsole. |
4 |
Install the CDT RPM package (if it is not already installed on your system) from sk111158. |
5 |
Edit the
|
6 |
Generate the Installation Candidates List (see below) to get a full list of the Security Gateways and Cluster Members connected to your Management Server. Note - You can edit the Candidates List file to make sure the specified Security Gateways are not included. |
7 |
Optional: Run preparations or extended preparations before the installation itself, to save deployment time during maintenance windows. The CDT runs all the defined Pre-Installation scripts. |
8 |
Install the selected package and run all Pre-Installation and Post-Installation scripts. Note: If you use preparations, or extended preparations method, the CDT does not run the Pre-Installation scripts again. |
To generate an Installation Candidates List:
Management Server |
Instructions |
---|---|
Security Management Server |
|
Multi-Domain Server |
|
If you have a tight maintenance window, use the preparations mode to save deployment time and prepare in advance.
In this scenario, the CDT does these actions:
/var/log/upload/
directory)./var/log/upload/
directory).To use simple preparations on all marked candidates in the Candidates List file, run:
Management Server |
Instructions |
---|---|
Security Management Server |
|
Multi-Domain Server |
|
You can extend the preparations flow. In this scenario, the CDT does these actions:
/var/log/upload/
directory)./var/log/upload/
directory).Note - Update of the CPUSE Agent might cause short connectivity loss in some rare cases.
To use extended preparations on all marked candidates in the Candidates List file, run:
Management Server |
Instructions |
---|---|
Security Management Server |
|
Multi-Domain Server |
|
Management Server |
Instructions |
---|---|
Security Management Server |
|
Multi-Domain Server |
|
The CDT shows the installation progress on the screen.
CDT writes the progress details at 5 seconds intervals to these files in the directory of the CentralDeploymentTool
binary file:
File |
Description |
---|---|
|
Full description of the last completed stage and current stage of all Security Gateways and Cluster Members statuses. |
|
Brief description (current stage only) of all Security Gateways and Cluster Members statuses currently in execution. Useful if your screen area is limited. |
We recommend to run the watch
command to read the file continuously.
Example:# watch -d cat CDT_status.txt
Note - The error is blocking, if the package fails to install, or if you defined an installation script as blocking with the parameter "IsBlocking
" (see Elements of the CDT Primary Configuration File).
If the installation failed on some of the Security Gateways, but continues on the remaining Security Gateways:
CDT tries to continue execution on failed Security Gateways and Cluster Members, starting from the last failed stage. Retry is only possible when the CDT runs.
To perform the retry:
Management Server |
Instructions |
---|---|
Security Management Server |
|
Multi-Domain Server |
|