SIRIS, ALTO, and NAS: Root certificate expiration

Follow

Topic

On May 3rd, 2020, the root certificates that we use to encrypt communication between Datto backup devices and agents will expire. Datto has deployed updates to the IRIS software on the Datto device and agent software on protected machines to update these certificates automatically. A small number of our devices and agents will not be able to receive these automatic updates and will require you to update them manually using the new software versions linked below. 

Once certificates expire, any machines that have not updated to the latest IRIS and agent software will no longer be able to perform backups. This article outlines the steps you need to take to ensure your backups continue uninterrupted after that date. 

If you do not take prompt action, your backups could begin to fail as early as April 18th, 2020.

Environment

  • Datto SIRIS
  • Datto ALTO
  • Datto Windows Agent
  • Datto Linux Agent
  • ShadowSnap Agent

Description

To ensure your backups continue to complete successfully, take the following actions as soon as possible.

1. Check the Agent versions on your protected machines

Ensure that you have the latest version of the agent software on every protected machine in your fleet.  If you cannot update to the latest version, at a minimum, you will need to be on the latest minor update for the version you are currently using. To determine your current agent version number see How to find your current agent versions below.

Datto Windows Agents 

No action is needed if you are on any of the following versions of DWA:

  • DWA 2.0.12.0
  • DWA 2.1.33.0
  • DWA 2.2.8.0
  • DWA 2.4.3.0

If a protected machine is not on one of the above versions of DWA, you need to update to the latest 2.4 version of the Datto Windows Agent (click to download), or for legacy Windows XP, 2003 or Vista machines version 2.0.12 (click to download). 

Datto Linux Agents

You need to be running the newest Datto Linux Agent version that is compatible with your Linux distribution. For steps to configure your agent to update to the latest Datto Linux Agent version automatically, see SIRIS, ALTO, and NAS: Creating an auto-update script for the Datto Linux Agent.

If, after April 18th, you are running a Linux distribution that is end-of-life and cannot be upgraded to the newest version of the Datto Linux Agent, or is not listed as supported by the Datto Linux Agent, Contact Datto Technical Support for assistance.

For a full list of supported Linux distributions, see Getting started with the Datto Linux Agent.

ShadowSnap Agents

No software update is required at this time.

2. Check the IRIS (IBU) version on your Datto devices

Verify that all your Datto devices have the newest IRIS release 3.97 installed. This update was pushed automatically from Datto, but you'll want to check to ensure it is installed on your Datto device. You can check which IRIS version you are currently running by going to the homepage of your device GUI, either locally or via the Datto Partner Portal. You'll see the IRIS version listed at the top of the page under Device Information. The first listing next to VERSION is your IRIS version.

ALTO.pngFigure 1: IRIS version (click to enlarge)
You can also find the IRIS version listed in the Partner Portal. Navigate to Status → BCDR Status and click on the name of the Datto device. The IRIS version displays under Hardware & Software Status.
IRIS.pngFigure 2: Partner Portal (click to enlarge)
If any of your Datto devices show a Device / Image version older than 3.97, you need to contact Datto Technical support for assistance in upgrading to the newest version.

How to find your current agent versions

If you're unsure which agent software versions your agents are running; you can generate a full report using Device Audit on the Partner Portal. When creating a Device Audit report, make sure to click Edit before running the report and ensure you've checked the following boxes under Volume Fields:

  • Group with device
  • Host
  • Agent Version

fig2.pngFigure 3: Device Audit options (click to enlarge)

You must complete the described steps before the May 3rd deadline. If you require assistance with this process, contact Datto Technical Support.


Was this article helpful?

4 out of 13 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Datto Community Forum or the Datto Community Online.

For more Business Management resources, see the Datto RMM Online Help and the Autotask PSA Online Help .

Still have questions? Get live help.

Datto Homepage