Upgrading
New versions of Puppet Comply are released regularly. Upgrading to the current version ensures you are always taking advantage of the latest features, fixes, and improvements.
Important: The CIS-CAT assessor setup process is embedded in the
comply
module. To ensure you always have the latest
version, upgrade the comply
module before you
upgrade the Comply application. Note that you cannot
run scans until you complete both of these upgrades. Upgrade from Comply 1.0.4 to 2.6.0
Comply 2.6.0 automatically upgrades the CIS-CAT Pro Assessor to the latest version every time you upgrade Comply.
Upgrade from Comply 2.2.2 to 2.3.0
Comply 2.3.0 automatically upgrades the CIS-CAT assessor to the latest version every time you upgrade Comply.
Before you begin
Make sure you have generated certificates in Puppet Enterprise (PE) and set up Mutual Transport Layer Security
(MTLS) in Puppet Application Manager (PAM). MTLS enables a secure
authenticated connection between your nodes and Comply.
For more information, see Configure Comply TLS certificates.Upgrade Comply in an online environment
Check for download and deploy updates from the Version history tab in the Puppet Application Manager UI.
Before you begin
Upgrade the comply
module. Upgrade Comply in an offline environment
If your environments do not have direct access to the internet, use the links below to upgrade to the latest version of Comply.
Before you begin
Upgrade the comply
module. -
Navigate to the portal provided to you by Puppet
in the licence email, for example,
https://get.replicated.com/airgap/#/kots/comply/
, and login with the password. -
Select Embeded cluster and download the latest Comply release
.airgap
file. -
Log into Puppet Application Manager —
https://<PLATFORM-ADMIN-CONSOLE-ADDRESS>:8800
. -
Select Version history, and upload the new version of
the
.airgap
file that you downloaded in step 2. - Click Deploy.