I am starting to design how to build out in a new data center a copy of the current RSA Authentication Manager 8.1.x. The desire is to clone the current Active Directory Server and rename and re IP it. Also then the RSA Primary, Replicas and Web Tiers. Rename these devices and new IP them, then connect to the Newly named Active Directory for LDAP.
My Concern is will this keep all the assigned Tokens to the Users?
I welcome any thoughts about this, or any suggestions of how to do it better?
Thank you.
There's much to consider based on what you said. If you simply want to move the primary to a different data center, add a new replica there and promote it. You can do the same with replicas; add a new one and remove an old one. That's pretty standard. If the new AD is simply an additional address for the identity source, using it is pretty standard too.
However, you've mentioned a lot of moving parts. Are you simply adding a data center, or completely replacing the current one? Are you moving some or all of the Authentication Manager instances from the current data center to the new data center, or are you adding an additional Realm with the same users and tokens in it, which doesn't make sense but has to be asked. Are you using hardware appliances or VMs? Are there Authentication Manager instances that are NOT in the current data center, and what are your plans for them? Is the new AD going to have a new domain name? Will that affect the userids -- are they UPN or samAccountName? If the userid is affected you might need to change the identity source mapping within AM before you can use the new AD. Will the user record ObjectGUIDs have new values? If yes, that will require exporting, deleting, and re-importing the users and tokens, and then you will have to re-establish any Authentication Manager Administrator Role assignments, as those are not exported with the user record. The AMBA tool can help with that, if you're licensed for it.
That's off the top of my head; I'm sure there are other elements to consider. Good luck.