Configure Live Backup

Install and configure Cortex XSOAR on the backup main server.
Run the
./<demistoserver-xxxx.sh> -- -multi-tenant -dr -do-not-start-server
command as root user to install Cortex XSOAR.
On the main server machine, set all necessary server configurations, for example,
External host name
,
Archiving
,
Log Level
, and so on.
On the main server machine go to
Settings
Account Management
+Add Host
to download a host installer file.
Get the host installer file by one of the following methods.
Download the file.
Retrieve the file from the
/artifacts
folder.
Install and configure the host server and backup host server.
Copy the host installer file from the main server to the backup host server.
On the backup host server machine run the
./<hostinstaller.sh> -- -dr -do-not-start-server
command as root user to install Cortex XSOAR.
On the host server machine, set all necessary server configurations, for example,
External host name
,
Archiving
,
Log Level
,
Log level
, and so on.
On the main server machine, go to
Settings
Account Management
and verify that the main server recognizes the host server.
All statuses should be green.
Configure Live Backup for the main server.
On the main server machine, go to
Settings
Advanced
Backups
and enable the Live Backup option.
Enable the
Live Backup
option.
In the
Hostname/IP Address
field enter the hostname or IP address of the backup main server.
In the
Port
field enter the port of the backup main server.
Click
Save Live Backup configuration
.
Configure Live Backup for the host server.
On the main server machine, go to
Settings
Account Management
.
Click
Edit
next to the host name.
Enable the
Live Backup
option.
In the
Hostname/IP Address
field enter the hostname or IP address of the backup host server.
In the
Port
field enter the port of the backup host server.
Click
Save Live Backup configuration
.
When prompted, restart the servers.
Shut down the main server and host server in the following order.
Main server
Host server
For each server (main server and all hosts), create a tarball file of the necessary files and folders and copy to the backup server.
Ensure that all files and folders located in
/var/lib/demisto
have
demisto:demisto
ownership:
chown -R demisto:demisto /var/lib/demisto
Create the tarball file:
tar --ignore-failed-read -pczf demistoBackup.tgz /var/lib/demisto/data /var/lib/demisto/artifacts /var/lib/demisto/attachments /var/lib/demisto/images /var/lib/demisto/systemTools /var/lib/demisto/d2_server.key /usr/local/demisto/cert* /usr/local/demisto/demisto.lic
Sometimes the
demisto.lic
file is located in
/var/lib/demisto/demisto.lic
rather than
/usr/local/demisto/demisto.lic
. If so, change the directory in the command.
If you have not set up a D2 server, you can remove
/var/lib/demisto/d2_server.key
.
Verify the integrity of the tar file:
md5sum demistoBackup.tgz
Print the contents of the tar file to a text file:
tar -tvf demistoBackup.tgz > demistoBackup.txt
Do not delete the text file.
Transfer the tarball file (
demistoBackup.tgz
) to the backup server, using your preferred tool such as scp:
# scp demistoBackup.tgz root@<yourBackupServerIPortHostname>:/root
On the backup server, check the MD5 Checksum and compare it to the original file to verify the tar file is 100% valid:
md5sum demistoBackup.tgz
The MD5 sum is displayed. Compare this value against the MD5 sum saved in demistoBackup.txt in Step 4.
On the backup server, extract the backup tarball file (original file permissions and ownership are preserved):
sudo tar -C / -xzpvf demistoBackup.tgz
Ensure all the copied files and folders have
demisto:demisto
ownership.
Start the servers in the following order.
Backup main server
Backup host server
Main server
Host server
When all servers are up, confirm that Live Backup is running successfully.
On the main server machine, go to
Settings
Advanced
Backups
and verify that there are no errors.
(
Recommended
) Create an incident on each tenant account and verify that there are no errors.