The existing connectors only on the Primary FortiSOAR, for certain reasons before the upgrade, are not synced to a secondary after the upgrade. New connectors, not the existing ones, can be synced when they are installed after the upgrade.

Check the following log while trying to sync between both FortiSOARs:

cat /var/log/cyops/cyops-auth/ha.log or tail -F /var/log/cyops/cyops-auth/ha.log

An error message below might be seen:

Error: Failed to execute command [du -sh --total -b /opt/cyops/configs/cyops-api/.Defuse.key /opt/cyops/configs/keys/PASSWORD_E ities/models/ /opt/cyops-archival/archival/entities/migrations/ /opt/cyops/configs/cyops-ui/locales/mmd /opt/cyops/confi opt/cyops/configs/integrations/connectors_development] with error b"du: cannot access '/opt/cyops/configs/keys/PASSWORD_

This message means that PASSWORD_ENCRYPTION_KEY didn't exist in Primary.

Follow next and resolve this issue:

1. Create the file on Primary FortiSOAR because the key file will be synced to Secondary after forming a cluster.

touch /opt/cyops/configs/keys/PASSWORD_ENCRYPTION_KEY

2. Change file mode bits appropriately:

chmod 644 /opt/cyops/configs/keys/PASSWORD_ENCRYPTION_KEY

3. Perform this during the maintenance window because one of the Postgres Group processes gets up and down while regenerating the key:

python3 /opt/cyops/scripts/manage_passwords.py --generate-encryption-key

4. Perform join cluster:

csadm ha join-cluster --status active --role secondary