logo

Knowledge Base

Access official resources from Carbon Black experts

Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

EDR: How To Upgrade the CB-Event-Forwarder

EDR: How To Upgrade the CB-Event-Forwarder

Environment

  • EDR: All Supported Versions
  • Event Forwarder:  All Supported Versions

Objective

How to upgrade the CB-Event-Forwarder

Resolution

  1. Backup the existing configuration:
mkdir /root/cb-event-forwarder_bak && cp /etc/cb/integrations/event-forwarder/* /root/cb-event-forwarder_bak/
ls /root/cb-event-forwarder_bak/
  cb-event-forwarder.conf  cb-event-forwarder.conf.bak
  1. Run the command to upgrade:
yum -y update cb-event-forwarder
  1. Restart the CB Event Forwarder service to ensure the changes are pushed through, run the commands based on the OS version:
  • CentOS 6.x
service cb-event-forwarder stop
service cb-event-forwarder start
  • CentOS 7.x/8.x
systemctl stop cb-event-forwarder
systemctl start cb-event-forwarder

Additional Notes

If a repo error is faced during the upgrade, the CBOpenSource repo may need to be reinstalled:
EDR : Error getting repository data for CbOpenSource while upgrading Event Forwarder

Related Content


Labels (1)
Labels:
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
CB_Support
Creation Date:
‎12-26-2018
Views:
1491
Contributors
logo

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.