Upgrades
For customers using the installer-based Director only: If you upgraded to Mandiant Security Validation (MSV) 4.13.0.0 or later from a previous release and you're using the installer-based deployment, use following manual steps to get the Integrations service enabled.
- Connect to the Director using SSH.
- Switch to the root user:
sudo bash
- Navigate to the msi_rpms directory:
cd /opt/apps/verodin/planner/tmp/msi_rpms
- List the files or directories to see the version of the MSI RPM files:
ls | grep msi
The output looks similar to the following:
41502101dce5e50f599783d171fe91cde32119ef586729bfb620fb884a6a0ad7-msi-service-[Version].x86_64. rpmec60c32d13c668c4883707fffa0a8dc924ae67da2254d6cd3fdc73662aed8d14-msi-updater-[Version].x86_64.rpm
- Install the MSI service RPM:
yum install *-msi-service-.x86_64.rpm
For example:
yum install *-msi-service-1.2.1.3-5.el7.x86_64.rpm
New installations
For customers using the installer-based Director only: If you did a new installation of an MSV version that supports Integrations (4.13.0.0 onward) and you're using the installer-based deployment, use following manual steps to get the Integrations service enabled.
- Connect to the Director using SSH.
- Switch to the root user:
sudo bash
- Navigate to
/files/centos7_packages. This subdirectory resides where the Director package is extracted.For example:
cd /home/nodeone/director_4.11.0.0-147.el7/files/centos7_packages
- Verify that the MSI rpms are available:
ls -la | grep msi
- Install the MSI rpms:
yum install msi-*.rpm
On RHEL installation, this step creates a policy file:/etc/containers/policy.json. For the MSI service to work correctly, locate the following lines:"keyPaths": ["/etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release", "/etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-beta"]
Then, replace them with this line:
"keyPath": "/etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release"
- Unmask and enable the service:
systemctl unmask msi-service
systemctl enable msi-service