Upgrading BOSH Director on AWS
Page last updated:
This topic describes how to upgrade BOSH Director for Pivotal Platform on Amazon Web Services (AWS).
Complete the tasks in this topic as part of the Ops Manager upgrade process. For more information, see Task 2: Upgrade Ops Manager and Installed Products to v2.11 in Upgrading Pivotal Platform.
In this procedure, you create an Ops Manager VM instance to host the upgraded version of Ops Manager. Then, to complete the Ops Manager upgrade, you export your existing Ops Manager installation onto this new VM.
For Pivotal Platform installations on AWS, the VM that hosts the new version of Ops Manager uses an Amazon Machine Image (AMI) specific to your region.
To create an Ops Manager VM instance:
Retrieve the Ops Manager AMI ID. For more information, see Retrieve Ops Manager AMI ID.
Launch the AMI. For more information, see Launch Ops Manager AMI.
Edit the Ops Manager DNS A Record. For more information, see Edit Ops Manager DNS A Record.
To complete the Ops Manager upgrade, you must have your Ops Manager decryption passphrase. You defined this decryption passphrase during the initial installation of Ops Manager.
Ops Manager has a different AMI ID for each region. Retrieve and record the AMI ID for your region. You use this AMI ID when launching the Ops Manager AMI instance.
To retrieve the AMI ID for Ops Manager:
Navigate to the Ops Manager page on VMware Tanzu Network.
Select the version of Pivotal Platform you want to install from the Releases dropdown.
In the Release Download Files, click the file named Ops Manager for AWS to download a PDF.
Open the PDF and record the AMI ID for your region.
Use the AMI ID for your region to launch an AMI instance that hosts the new version of Ops Manager.
To launch the AMI for Ops Manager:
Navigate to your EC2 Dashboard.
Click AMIs from the Images menu.
Select Public images from the dropdown filter that says Owned by me.
Copy the AMI ID for your region into the search bar and press enter.
Note: There is a different AMI for each region. If you cannot locate the AMI for your region, verify that you have set your AWS Management Console to your desired region. If you still cannot locate the AMI, log in to the VMware Tanzu Network and file a support ticket.
(Optional) If you want to encrypt the VM that runs Ops Manager with AWS Key Management Service (KMS):
- Right-click the row that lists your AMI and click Copy AMI.
- Select your Destination region.
- Enable Encryption. For more information about AMI encryption, see Encryption and AMI Copy in Copying an AMI in the AWS documentation.
- Select your Master Key. To create a new custom key, see Creating Keys in the AWS documentation.
- Click Copy AMI. You can use the new AMI you copied for the next steps.
Select the row that lists your Ops Manager AMI and click Launch.
Choose m5.large for your instance type.
Click Next: Configure Instance Details.
Configure the following fields for your instance:
- Network: Select the VPC that you created.
- Subnet: Select
- Auto-assign for Public IP: Select Enable.
- IAM role: Select the IAM role associated with your pcf-user profile. If you have not created one, click Create new IAM role and follow the procedures in AWS Permissions Guidelines.
- For all other fields, accept the default values.
Click Next: Add Storage.
Adjust the Size (GiB) value. The default persistent disk value is 50 GB. VMware recommends increasing this value to a minimum of 100 GB.
Click Next: Tag Instance
On the Add Tags page, add a tag with the key
Click Next: Configure Security Group.
pcf-ops-manager-security-groupthat you created in Step 5: Configure a Security Group for Ops Manager in Preparing to Deploy Ops Manager on AWS Manually.
Click Review and Launch and confirm the instance launch details.
pcf-ops-manager-keykey pair, confirm that you have access to the private key file, and click Launch Instances. You use this key pair to access the Ops Manager VM.
After you deploy the new Ops Manager VM, edit the Ops Manager DNS record in the EC2 dashboard to point to the IP address for the new VM.
To edit the Ops Manager DNS A record:
Click View Instances to access the Instances page on the EC2 Dashboard.
Select the VM that you created in the previous section.
Locate the IPv4 Public IP value in the instance Description tab, and record this value for use in the next step.
In your DNS provider, edit the A record for
pcf.SYSTEM-DOMAINto point to the IP address recorded in the previous step, where
SYSTEM-DOMAINis the system domain of your Pivotal Platform deployment.
After you complete this procedure, continue to the upgrade instructions in Upgrading Pivotal Platform