This article applies to:

• LME 1.2.1

Question:

• How do I upgrade from Log Management Enterprise 1.2.1 to the current version?

Procedure:

This article will cover how to upgrade LME 1.2.1 to the current DM and SP.

You can get the files to upgrade from the File Library on the Product Support Portal at https://login.trustwave.com/. They are stored under Private -> SIEM -> SIEM - Log Management Enterprise (LME) -> LME-1.2.1

Customers should have access to these files. If you do not have access, contact Trustwave TAC.

Install the SPs and DMs in the following order:

1. LME_1.2.1_SP23 
   
   Dependencies: Trustwave SIEM 1.2.1 SP-17 DM-16
   Support Package Files: SP-23.tgz, SP-.tgz.md5, SIEM_1.2.1_SP23_release_notes.pdf
2. LME_1.2.1_DM18
   
   Dependencies: Trustwave SIEM 1.2.1 SP-17 and DM17
   Support Package Files: DM-18.tgz 
3. LME_1.2.1_DM19
   
   Dependencies: Trustwave SIEM 1.2.1 SP-17 and DM18
   Support Package Files: DM-19.tgz 
4. LME_1.2.1_DM20
   
   Dependencies: Trustwave SIEM 1.2.1 SP-17 and DM19
   Support Packages: DM-20.tgz, DM-20.tgz.md5, Trustwave SIEM 1.2.1 DM-20.docx
   
   New Data Modules & Solution Content:
   
   • Safensoft TPSecure via DB
   • Symantec Brightmail via EM Syslog
   • Microsoft Sharepoint via Flatfile
   • Splunk Audit via Syslog/Flatfile
   • Enghouse IP Call Recording via Flatfile
   • AirWatch MDM via Syslog 
5. LME_1.2.1_DM21
   
   Dependencies: Trustwave SIEM 1.2.1 SP-18 and DM20
   Support Packages: DM-21.tgz, DM-21.tgz.md5, Trustwave SIEM 1.2.1 DM-21.pdf
   
   New Data Modules & Solution Content:
   • Accellion Kiteworks
   • Hitachi Unified Storage
   • IBM Sterling B2B Integrator
   • IBM Tivoli Access Manager
   • McAfee OTP Server
   • Modirum MDpay MPI
   • Sophos Secure Web Gateway
   • Trustwave FIM 
6. LME_1.2.1_DM22
   
   Dependencies: Trustwave SIEM 1.2.1 SP-20 and DM21
   Support Packages: DM-22.tgz, DM-22.tgz.md5, Trustwave SIEM 1.2.1 DM-22.pdf
   
   New Data Modules & Solution Content:
   • ACI Worldwide PRM
   • Aloha Configuration Center
   • AppSecInc DbProtect
   • EMC Centera
   • McAfee Stonesoft NGN
   • Sophos Cyberoam UTM Firewall
   • Trustwave Antivirus
   
   New Acquisition Methods:
   • Microsoft Windows Non-Security Logs 2000-2008 EM/Snare/Splunk/Balabit/Lasso/Datagram
   • Microsoft Windows Security Log 2008 - WinCollect  
7. LME_1.2.1_DM23 
    
   Dependencies: Trustwave SIEM 1.2.1 SP-23 and DM22
   Support Packages: DM-23.tgz, DM-23.tgz.md5, Trustwave SIEM 1.2.1 DM-23.pdf
   
   New Data Modules & Solution Content:
   • Catbird vSecurity
   • ExtremeNetworks ExtremeXOS
   • NCR RPOS
   • Zscaler NSS
   • ZyXel ZyWALL
   
   New Acquisition Methods:
   • IBM iSeries via Halcyon Syslog
   
   Enhanced Data Modules
   • Juniper JunOS 
8. LME_1.2.1_SP24
   
   Dependencies: Trustwave SIEM 1.2.1 DM-21 SP-16 to SP-23
   Support Packages: SP-24.tgz, SP-24.tgz.md5, Trustwave SIEM 1.2.1 SP-24.pdf
9. LME_1.2.1_SP25
   
   Dependencies: Trustwave SIEM 1.2.1 DM-21 SP-24
   Support Packages: SP-25.tgz, SP-25.tgz.md5, Trustwave SIEM 1.2.1 SP-25.pdf
10. LME_1.2.1_SP26
    
    Dependencies: Trustwave SIEM 1.2.1 DM-21 SP-25
    Support Packages: SP-26.tgz, SP-26.tgz.md5, Trustwave SIEM 1.2.1 SP-26.pdf
11.  LME_1.2.1_SP27
    
    Dependencies: Trustwave SIEM 1.2.1 DM-21 SP-26
    Support Packages: SP-27.tgz, SP-27.tgz.md5, Trustwave SIEM 1.2.1 SP-27.pdf
12. LME_1.2.1_DM24
    
    Dependencies: Trustwave SIEM 1.2.1 SP-23 and DM23
    Support Packages: DM-24.tgz, DM-24.tgz.md5, Trustwave SIEM 1.2.1 DM-24.pdf
    
    New Data Modules & Solution Content: 

• Actian Ingres via Flatfile
• Apache Qpid via Syslog
• Cylance Protect via Syslog
• Network Box UTM via Syslog
• Trustwave SEG via EM
• VASCO IAS via Flatfile
• Vormetric DSM via Syslog

New Acqusition Methods:

• ISC Bind via Flatfile  

Update Instructions:

1. Download the Support Update from the Support Portal.
2. Log on to the SIEM appliance as an administrator.
3. On the Admin tab, open System Management | File Manager.
4. On the File Manager tab, scroll down to Support Package Upload.
5. Expand the item and click Add.
6. Browse to the file you want to add, and select it.
7. Click Upload. When the ‘successful upload’ window appears, close the window.
8. Check that the Support Package has been installed by viewing the install.log under Common Logs on the File Manager tab. Look for entries that show the time-stamps of when you added the file.