Article Rating

  • 0 Rating(s)
  • 0
  • 0
  • 0
  • 0
  • 0

Upgrading Secret Server without outbound access

Secret Server periodically polls our update server to detect for updates. However, if your Secret Server is on an internal network that does not have outbound access or goes through a proxy, Secret Server will not be able to perform updates.

As of 7.1.00015, the recommended method is the using 'Advanced options' to manually select and upload the upgrade file.

File Upload Steps:

  1. Go to the http:/your secret server/Installer.aspx page, and click Next up to step 4. Download Updates 
  2. Click the Advanced (not required) to expand the file upload options
  3. Download the latest Version zip from the Get Latest Version link (for example Version_7_1_00015.zip)
  4. In the Upload File dialog select the zip file that was downloaded above, and click Upload File
  5. Complete the Installer steps
Note: You should not use the fresh install SecretServer.zip or setup.exe that is first downloaded from thycotic.com, only the Get Latest Version link should be used as there is a difference between the upgrade file and fresh install zip.


 





Legacy Options:

If you are on a earlier version than 7.1.00015, there are two legacy options for doing an update from the local server.



Legacy Option 1: Modified Updates.config File

  1. Download our update zip from the internet from another machine. You can check what the latest version is by going to http://updates.thycotic.net/secretserver/latestversion.aspx . After checking the latest version number you will have to create a link that uses this version number. The URL should be http://updates.thycotic.net/secretserver/Version  followed by an underscore then the version number replacing the "."s with "_" (underscores) and then .zip, For example version 6.2.000004 would become:   http://updates.thycotic.net/secretserver/Version_6_2_000013.zip      
  2. Backup the updates.config file located under the  web application folder
  3. Download the modified updates.config file found in a zip file here. Replace the existing updates.config file
  4. On your server where secret server is installed, create a virtual directory called “Update” and place the update zip file in it for step 1. If you browse to it using localhost, it should look something like http://localhost/Update
  5. In the same folder, create a empty text document called LatestVersion.aspx and inside of it, place the version number that you retrieved from : http://updates.thycotic.net/secretserver/latestversion.aspx  in our example:  6.2.000013.
  6. Make sure the “secretserver” virtual directory is configured to run ASP.NET 2.XX and has execute permission in IIS.
  7. Browse to http://localhost/Update/latestversion.aspx and ensure it is working properly.
  8. Run the secret server upgrader as you normally would.   You may have to do an IIS Reset to see the link appear above the header navigation bar.
  9. Once the instance has been upgraded restore the original updates.config file from step 2.

Please contact support if you have any issues or trouble.

Legacy Option 2: Host File Work Around

The other work around is to modify your HOSTS file to have your own server act as our update server. 

  1. If you have replaced your update.config file in the past or previously failed an upgrade, replace the update.config file in your Secret Server directory with the default file. To do this, you can download Secret Server from http://updates.thycotic.net/SecretServer/SecretServer.zip. Then, extract the zip file to a directory, copy the update.config file in the extracted directory, and paste it to your working Secret Server directory.
  2. Download our update zip from the internet from another machine. You can check what the latest version is by going to http://updates.thycotic.net/secretserver/latestversion.aspx . After checking the latest version number you will have to create a link that uses this version number. The URL should be http://updates.thycotic.net/secretserver/Version  followed by an underscore, then by the version number after replacing the "."s with "_" (underscores), and then .zip. For example, version 6.2.000004 would be:   http://updates.thycotic.net/secretserver/Version_6_2_000004.zip
  3. On your server where Secret Server is installed, find the Default Web Site. This should be the web site that is accessible by going to http://localhost on your server. Under this web site, create a virtual directory called “secretserver” and place the update zip file in it. 
  4. In the same folder, create a empty text document called LatestVersion.aspx and inside of it, place the version number that you retrieved from : http://updates.thycotic.net/secretserver/latestversion.aspx  in our example:  6.1.000013.
  5. Make sure the “secretserver” virtual directory is configured to run ASP.NET 2.XX and has execute permission in IIS.
  6. Modify the HOSTS file  of the server Secret Server is installed on (usually located in C:\WINDOWS\SYSTEM32\drivers\etc) and add the following entry at the bottom:

    127.0.0.1              updates.thycotic.net

    Replace 127.0.0.1 with the IP of where the virtual directory is located.

    Browse to     http://updates.thycotic.net/secretserver/latestversion.aspx and ensure it is working properly. Make sure it is hitting the correct machine.
  7. Run the secret server upgrader as you normally would.   You may have to do an IIS Reset to see the link appear above the header navigation bar.

Please contact support if you have any issues.

Article ID: 7, Created On: 6/12/2007, Modified: 1/24/2012