The Cloudera Cybersecurity Platform (CCP) upgrade uses the default configuration for
the new Metron version. If you made any changes to the Metron configuration in the previous
version, you must back up your old configuration so you can incorporate those changes into the
new Metron configuration. You will also need to re-enter values for the Metron properties in
Ambari.
- Create a backup directory.
mkdir /$HCP_BACKUP_DIRECTORY
- Back up your configuration information in ZooKeeper to your backup directory:
${METRON_HOME}/bin/zk_load_configs.sh -m DUMP -z $ZOOKEEPER >
/$HCP_BACKUP_DIRECTORY/$BACKUP_CONFIG.txt
- Back up the following property files in the $METRON_HOME/config directory
to your backup directory:
- elasticsearch.properties
- enrichment.properties
- pcap.properties
For example:
cp elasticsearch.properties /$HCP_BACKUP_DIRECTORY/elasticsearch.properties
- Copy the zookeeper directory to your backup directory:
cp -R zookeeper/ /$HCP_BACKUP_DIRECTORY/zookeeper
-
Back up your Metron configuration.
The easiest way to do this is to take a screenshot of each of the Metron
configuration pages that you modifed in Ambari. At a minimum, take a screen shot of
the following configuration pages:
- Index Settings
- Parsers
- REST
