FortiNAC-F
FortiNAC-F is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks. For legacy FortiNAC articles prior to FortiNAC-F 7.2, see FortiNAC.
khoffman
Staff
Staff
Article Id 296188
Description This article describes how to manually resume control of the primary FortiNAC server using the CLI.
Scope FortiNAC-F v7.2+.
Solution

This process will involve both FortiNAC-F appliances being down for some time. If possible, this should be done during a maintenance window. 

 

  1. Establish SSH sessions for both primary and secondary appliances. 
  2. Shutdown processes on the primary FortiNAC appliance. Enter the following CLI commands:

 

execute enter-shell

shutdownNAC -kill

 

  1. Shutdown processes on the secondary appliance. Enter the following CLI commands:

execute enter-shell

shutdownNAC 

shutdownNAC -kill

 

  1. Change the status from 2 to 1 on both primary and secondary appliances. Enter the following CLI commands: 


vi  -N /bsc/campusMgr/bin/.networkConfig

 

Next, change Status=2 to Status=1.

Save the changes and exit the file.

 

  1. (optional) Restore Database backup from the last database backup. On the primary server:


cd /bsc/backups/database
sudo ydb_restore_full_backup <filename> 

 

  1. Start processes on the primary FortiNAC appliance. On the primary appliance:

    startupNAC 

    Allow approximately 10 minutes for the system to start.

  2. Once the primary server has fully started, start services on the secondary appliance:

    startupNAC