Manually resume control to primary server...

FortiNAC-F

FortiNAC-F is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks. For legacy FortiNAC articles prior to FortiNAC-F 7.2, see FortiNAC.

Article Id 296188

Description

This article describes how to manually resume control of the primary FortiNAC server using the CLI.

Scope

FortiNAC-F v7.2+.

Solution

This process will involve both FortiNAC-F appliances being down for some time. If possible, this should be done during a maintenance window.

Establish SSH sessions for both primary and secondary appliances.
Shutdown processes on the primary FortiNAC appliance. From the CLI type:

Type: execute enter-shell

Type: shutdownNAC -kill

3. Shutdown processes on the secondary appliance, From the CLI type:

Type: execute enter-shell

Type: shutdownNAC

Type: shutdownNAC -kill

4. Change the status from 2 to 1 on both primary and secondary appliances:

Type: cd /bsc/campusMgr/bin
Type: vi -N .networkConfig

Change Status=2 to Status=1

Save changes and exit file.

5. (optional) Restore Database backup from the last database backup. On the primary server:

Type: cd /bsc/backups/database
Type: sudo ydb_restore_full_backup <filename>

Start processes on the primary FortiNAC appliance. On the primary appliance:

Type: startupNAC

Allow about 10 minutes for the system to start.
Once the primary server has fully started, start services on the secondary appliance:

Type: startupNAC

1744

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Technical Tip: Manually resume control to primary server via CLI

You are leaving our website