Hi.
We currently have two RSA AM appliances (8.1.1.4) - one is Primary and one is Replica and having a base license.
We have a requirement to migrate these appliances to a virtual appliance (VMware). I would like to seek your help on how to do this. I have a basic idea but could you please confirm if this is correct? Or advise if you have a simpler approach with less risk?
1. Shutdown the current Replica appliance
2. Install a new virtual instance (also 8.1.1.4) on VMWare and make it as a new Replica. I will use the IP address and FQDN of the previous replica appliance
3. Once set up, I will sync (need some details here) this Replica instance to the existing Primary appliance
4. On the Primary appliance, promote this new virtual Replica instance to Primary. So users will be able to use this new vm to authenticate. The Primary appliance will then demote itself and become a Replica
5. Shutdown the previous Primary appliance
6. Set up a second virtual appliance with the same version (8.1.1.4). Assign the FQDN and IP address of the previous Primary appliance. Set this up as a Replica.
7. Sync this new virtual Replica with the virtual Primary
Your feedback is appreciated.
Thanks.
If you have a primary and replica now, just install a 2nd replica as a new vmware replica, patch
it up to match the version of the primary, then do a planned promotion so it becomes the new
primary and the others are now replicas. Then delete one and install a new replica vmware.
This also works on a base license where we only allow 1 replica. On a base, you can add 1 more replica
(there will be an exceed replica limit warning, but it does not affect the systems)
so moving from hardware to vmware by 'leapfrogging' can be pretty seamless, and you are never without 1 replica.