In a Directory failover environment, when your main server is no longer adequate, you
can replace one of your secondary Directory servers with a new machine, then switch the main
server to that machine with minimal downtime.
What you should know
This server migration scenario works with the following assumptions:
- None of your existing Directory servers is adequate to assume the role the main server
in the long run.
- You have an adequate new machine ready to replace the old main server.
- All your Directory servers are up and running.
- You do not intend to increase the number of Directory servers in your system. Therefore,
you do not need to update your current license.
NOTE: There is a brief system downtime when all roles and applications switch from the
old main server to the new one. So pick the right time to perform this
operation.
Procedure
-
Install
Security Center on the new machine using the
Expansion server configuration and connect it to the main
server.
The new machine is now part of your system as an expansion server.
-
Log on to your system with Config Tool.
-
If there are roles other than the Directory role hosted on the main server, move them to the new server.
You need to do this if you intend to decommission your old main server at the end of
this operation. To see which roles are running on the main server:
-
Open the Network view task.
-
Select the main server () and click the Identity tab.
-
In the Relationships tree, expand the
Roles node.
-
Open the System task and click the Roles
view.
-
Select the Directory Manager () role, and then click the Directory servers
tab.
-
Select a server that is not your main server, and click Remove the
item ().
This is only temporary so you do not exceed the number of Directory servers permitted
by your license.
-
Click Add an item (), select
the server you just added, and click Add.
-
Reactivate your
Security Center license with the new list of
Directory servers from Config Tool.
-
Select the new server, click Activate Directory ()
and then click Apply.
The new server is now your main server. This causes a brief disruption to your
system as all roles and client applications must disconnect from the old server and
connect to the new one.
-
Select the old main server and click Remove the item ().
-
Click Add an item (), select
the server you temporarily removed from the Directory failover list, and click
Add.
-
Reactivate your
Security Center license one more time for the
new list of Directory servers from Config Tool.
The old main server is now running as a regular expansion server.
-
(Optional) Decommission your old main server.
-
Open the Network view task, and confirm that all your
expansion servers are online ().
-
Select the old main server and click Delete ()
and Delete.
No role should be running on the old main server, otherwise the deletion would
fail.
Tip: The list of roles should be empty in the
Identity tab.
-
Uninstall Security Center from your old
server.
After you finish
Notify your users with the DNS name or IP address of your new main server.