Education - Australia / New Zealand

 View Only
last person joined: 21 days ago 

A local community of education customers across Australia / NZ. This group will be moderated by HPE Aruba Networking staff and kept up to date with any upcoming training or events that are relevant to the EDU space.

Airwave Upgrade from 8.2.4 to

This thread has been viewed 7 times
  • 1.  Airwave Upgrade from 8.2.4 to

    Posted Feb 11, 2018 05:17 AM

    I recently went through the process of upgrading Airwave in my lab from 8.2.4 to It was troublesome, to say the least. A fundamental change was introduced in versions from 8.2.4 onwards - full access to the Linux shell is no longer possible, with a text menu provided instead.
    AMPadmin 8.2.4.png
    This is discussed at length in many posts; some of them are listed in "Other Related Material".



    With a virtual version of Airwave, taking a snapshot of the system with ESX is quick and easy, and provides one or more restore points in case things don't work out as planned.

    Snapshot of Airwave-186.png

    Keep them dated and labelled properly, and remove them once the task is completed.

    Get the file on the Airwave server
    This is where the lack of root access became a problem for me, along with the limited options for file access.

    Once the upgrade file is copied on to the Airwave server, the upgrade process should find it and run the upgrade!

    My first attempt failed:

    Upgrade script AMP- was not found in local cache.
    Upgrade package found in local cache.
    Validating the upgrade package...
    Upgrade package is OK.
    Using upgrade script extracted from local package.
    Upgrade package found in local cache.
    Checking iptables.
    Checking the database schema.
    Upgrade aborted!
    Error occurred while checking the database schema. Please check the upgrade logs.

    However, the second attempt was successful! It took about 1hour 45min.

    Checking iptables.
    Checking the database schema.
    Validating the upgrade package...
    Verifying authenticity of the upgrade package....
    gpg: checking the trustdb
    gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
    gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
    Verifying signature....
    Good Signature....
    Verifying checksum....
    Upgrade package verified....
    Upgrading AMP to version from version 8.2.4...
    Detailed log will be written to /var/log/upgrade/AMP-
    STEP 1: Moving old version aside.
    STEP 2: Unpacking upgrade package.
    STEP 3: Checking for compatibility.
    STEP 4: Stopping AMP services.
    STEP 5: Installing upgrade.
    Updated kernel packages that fix various security issues are now
    available for your OS. To upgrade, select 'Upgrade' menu item on the AMPCLI Menu,
    and then choose 'Upgrade OS Kernel' menu item.
    For more information refer to the security advisory:
    Duplicate devices or devices with incomplete information exist in the AMP database.
    See /var/log/duplicate_or_incomplete_devices for details.
    For additional information please contact Aruba Support at:
    1-800-WiFi-LAN or
    STEP 6: Restarting AMP services.
    Setting up AMPCLI
    Setting bootloader password...
    Bootloader password already set
    Generating encryption keys...
    Encryption keys already generated
    Importing Official key...
    Fixing up post_nightly_maintenance script...
    post_nightly_maintenace script already set up
    Adding recovery user...
    Setting up secure accounts...
    Setting admin username...
    Note: admin user ampadmin exists
    Removing alias for less...
    AMPCLI Setup completed
    Post upgrade schema check is in progress..
    This may take a few minutes..
    Upgrade from 8.2.4 to is successful.

    Version provides some additional menu options too, and some of the upgrade issues are said to be ironed out.


    Root Access
    This process (from ) would probably be fine - except the GRUB bootloader is also password protected! It may be possible to bypass the bootloader password as well, but I did not pursue this.


    1. Reboot the server with CTRL-ALT-DELETE.
    2. When the blue boot screen pops up (depending on what OS you have, you may have an AirWave logo or CentOS or another OS logo on this page), press "e" to edit the boot configuration.
    3. Move the cursor down to the line that starts with 'kernel', and press "e" again to edit that line
    4. Make sure you're at the end of the line, give a space and add the word "single" (without quotes) to the string, then hit
    5. Type 'b' to continue the boot process; you'll boot quickly into a shell without having to enter a password
    6. Use the 'passwd' command to enter and confirm a new password for the root user
    7. Write down the new password and keep it someplace safe.
    8. Add root acces back vi /etc/passwd
    9. change the first line to: root:x:0:0:root:/root:/bin/bash
    10. Use the 'reboot' command to reboot the server into full operations mode.
    11. Log back in and create new user so you can log in without root

      Other Related Material
      --> whole long discussion