Hi:
I'm curious about process and a bit new to RSA Authentication Manger. I have a Prod and Dev setup running 8.3. Both systems consist of a Manager and a Replica. I am starting to try and automate the addition and removal of Agents and Users from the system and really need my Dev to be somewhat like Prod. To do this I would like to periodically do a backup of Prod and put it on Dev which is easy to do. My experience so far has been mixed. While it is possible to do this I have discovered that I loose my Replica on Dev in the process.
Is there a way around this so that I can have a real test/Dev system that is somewhat in sync with Prod. I don't what to have to "re-initalize" my Replica every time Dev gets updated.
Hopefully this makes some sense -
Thanks in advance -
M-
Unless you created your Prod primary as a VMWare VM first, then cloned it and at the VM level and put it on a Dev ESX server, then your Prod and Dev Primaries are not the same, even if they had the same name and IP address. When you deploy a primary, you create a unique Private / Public Key pair, and your replicas have unique GUIDs in the internal database. That is why, when you backup the Prod Database and then restore to the Dev Primary, you break any existing Dev replicas and need to redeploy them.
Therefore keeping your Prod and Dev systems in synch is not just a matter of backup and restore of the database. So you kind of have to decide how in synch you want them to be, because it might involve something like performing the same agent creations and user additions either manually or in bulk with AMBA. Or maybe you just want to use Dev to test patching before you patch Prod, so they are not completely in synch with all users and agents but are in lock step sycnh . Or maybe you want everything in VMWare, your Primary, Replicas, and your LDAP external Identity Sources, and you 'big' or important protected applications or agents all periodically cloned over to Dev.
Or after considering the can of worms I just opened for you, you decide re-deploying a replica or two is not so bad after all.