We are currently running a primary and a replica Authentication Manager virtual appliances. The replica is on hardware and VMware that has been patched and updated. I now want to do the same for the primary AM. There are a lot of firmware updates to apply which will take a couple of days. I have a 3rd system that can host a replica and want feedback on the best approach.
1. a. Build a replica on the 3rd system (this one is just temporary, no matter which approach I use)
b. Promote the current replica to be the permanent primary, demoting the current primary to a replica.
c. Perform the updates on the former primary's host system.
d. Restart the updated system. (Verify functionality, then shut down the 3rd system.)
1. a. Promote the current replica to be the permanent primary, demoting the current primary to a replica.
b. Shut down the system to be updated (which now hosts a replica).
c. Move the replica VM to the 3rd system, making sure to replicate the required VMware setup.
d. Update the 2nd system's firmware and VMware.
e. Move the replica back to the 2nd system.
Looking for advice, pros, cons, traps to watch out for, etc.