Need reality check/advice on upgrade plan SEP 11.0 to 12.1.2 (encryption password missing)
We are interested in updating our SEP from V 11 to 12.1.2 to support Win 8 clients (Win 8 is in testing mode here … the current machine has an unmanaged version of 12.1.2 on it).
In going over the somewhat complex upgrade procedure and the “Disaster Recovery” part, I note that we do not have the encryption password (a previous employee installed it and did not recover it). This means that we could go through an update in place but would need to run SYLINKREPLACER and push a new Sylink out to the clients. It’s a small enough network that this shouldn’t be a huge problem, but obviously this made me think.
I’d like to be able to “back out” easily and be able to minimize downtime for the application. Our current SEP console runs on a VM. I was wondering how feasible the following might be:
- Gather all backups for current SEP server per DR document
- Re-name and Re-IP the current SEP server
- Redistribute sylink.xml and see how things look on the console
- Build new server with the name and IP of the “original” server
- Install 12.1.2 fresh on server with parameters from old server (if so which ones beyond name and IP?)
- Run limited test
- Restore database from old server (this can be from step 1, before rename)
- Run sylinkreplacer again when I’m ready to pull the plug
- Check the clients populating on new server (with original name and IP)
- Stop SEP services on former server, decommission
If I can accomplish this with the steps in another order (e.g. build the 12.1.2 server and then rename/re-IP it after testing is done and before restoring the database), I’m all ears.
As a wrinkle, we do have some XP and 2000 clients that are “legacy” – not many, and they have already been moved into a separate OU under SEP, but they will need the old client version.
Are there white papers or old threads about this? Has someone been through the process recently and have wisdom to impart? I did a Google search but apparently wasn’t using good terms, as I didn’t get the results I was hoping for.