Rolling Back the Security Agents

Apex One can only rollback Security Agents to the same version of the server being restored. You cannot rollback Security Agents to an older version than the server.

Important:

Ensure that you roll back Security Agents before rolling back the Apex One server.

  1. Ensure that Security Agents cannot upgrade the agent program.
    1. On the Apex One 2019 web console, go to Agents > Agent Management.
    2. Select the Security Agents to be rolled back.
    3. Click the Settings > Privileges and Other Settings > Other Settings tab.
    4. In the Security Agents only update the following components drop-down, select Pattern files, engines, drivers.
  2. On the Apex One 2019 web console, go to Updates > Agents > Update Source.
  3. Select Customized Update Source.
  4. On the Customized Update Source List, click Add.

    A new screen opens.

  5. Type the IP addresses of the Security Agents to be rolled back.
  6. Type the update source URL.

    For example, type:

    http://<IP address of the Apex One server>:<port>/Apex One/download/Rollback

  7. Click Save.
  8. Click Notify All Agents.

    When the Security Agent to be rolled back updates from the update source, the Security Agent is uninstalled and the previous Security Agent version is installed.

    Tip:

    Administrators can speed up the rollback process by initiating a Manual Update on Security Agents. For details, see Updating Security Agents Manually.

  9. After the previous Security Agent version is installed, inform the user to restart the endpoint.

    After the rollback process is complete, the Security Agent continues to report to the same Apex One server.

    Note:

    After rolling back the Security Agent, all components, including the Virus Pattern, also roll back to the previous version. If administrators do not roll back the Apex One server, the rolled-back Security Agent cannot update components. Administrators must change the update source of the rolled-back Security Agent to the standard update source to receive further component updates.