A potential issue exists when upgrading from Security Analytics 10.4.1.x to Security Analytics 10.5.1. If appliances are not upgraded immediately after 10.5.1 is retrieved into the Security Analytics updates repository, then the underlying infrastructure automatically applies the newer version of Java from the SA 10.5.1 bundle.
The Java version in SA 10.5.1 bundle is not compatible with SA 10.4.1.x and can result in the Security Analytics UI becoming inaccessible, or may prevent the Security Analytics server from being able to communicate with services such as the Reporting Engine, Incident Management, Malware Analysis, and ECAT.
To resolve the issue, follow the instructions below based on the scenario that is being experienced.
Security Analytics UI is inaccessible
Connect to the Security Analytics Server appliance via SSH as the root user.
Navigate to the directory for the updates repository.