[RESOLVED] Waptupgrade and verify_cert packages

Share your tips or issues concerning the WAPT Console or WAPT Agent here
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Locked
l.costes
Messages: 3
Registration: May 6, 2020 - 09:38

May 6, 2020 - 09:55

Hello,
I've enabled SSL verification (certificate signed by an internal CA).
Certificate verification works fine for newly deployed agents or when forcing the configuration on client machines.

To automate the configuration of existing clients, I created a new WaptUpgrade package, checking the "Verify SSL" box and pointing to a concatenated certificate + CA file.

However, upgrading the WaptUpgrade package (via self-service or the console) doesn't change this configuration on already installed machines.
I still have the parameter `[global] verify_cert=0`.
Any ideas?
:?:

- Installed WAPT version: 1.8.1
- Server OS: RHEL 7.7
- Administration/package creation machine OS: Windows 10
Last edited by l.costes on May 12, 2020 - 4:40 PM, edited 1 time.
High
User avatar
sfonteneau
WAPT Expert
Messages: 2318
Registered: July 10, 2014 - 11:52 PM
Contact :
Contact Sfonteneau

May 6, 2020 - 11:54

Yes, that's a problem today...
If the version is identical, you can right-click on the waptupgrade package and click on "Force Installation".
High
User avatar
sfonteneau
WAPT Expert
Messages: 2318
Registered: July 10, 2014 - 11:52 PM
Contact :
Contact Sfonteneau

May 6, 2020 - 11:58

Otherwise, in the file:

C:\Program Files (x86)\wapt\waptupgrade\setup.py

You can add:

Code: Select all

def install():
    force=True
Then restart the generation of an agent
High
User avatar
dcardon
WAPT Expert
Messages: 1932
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

May 6, 2020 - 12:10

Hello l.coste,

you can also modify the wapt-get.ini files with a WAPT package, see https://wapt.tranquil.it/store/tis-wapt-conf-policy.

As Simon indicated, currently the waptupgrade package only upgrades the client if the agent's executable version has changed; it ignores the package version suffix (similar to install_exe_if_needed). We're looking into whether to change this behavior in a future version.

Regards,

Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
l.costes
Messages: 3
Registration: May 6, 2020 - 09:38

May 6, 2020 - 3:47 PM

Thanks for your replies!

I preferred to create a dedicated configuration package as suggested; I haven't yet developed the habit of creating separate packages,
but this product is amazing, the possibilities are enormous,

congratulations on your work!!

Also, just to understand the first question:
what does the file C:\Program Files (x86)\wapt\waptupgrade\setup.py manage?

We'll get the license in 2021; it's in the budget. :)
High
Locked

Return to "WAPT usage (Console, Agent) / WAPT usage (Console, Agent)"


  • To go further with WAPT