mdeparisse_FTNT
Staff
Created on
08-31-2016
07:24 AM
Edited on
11-25-2021
04:15 AM
By
Anthony_E
Article Id
191921
Description
This article addresses the deployment of multiple IDM redundant servers on the same VLAN.
Multiple VRRP cannot be deployed on the same VLAN as they are use the same VRRP password within the VRRP ADV packets, thus layer 3 virtualization has to be avoided.
Multiple VRRP cannot be deployed on the same VLAN as they are use the same VRRP password within the VRRP ADV packets, thus layer 3 virtualization has to be avoided.
Solution
In order to run multiple IDM redundant server systems they will have to be run without the IP virtualization.
The redundancy will be performed by using the multiple IP radius entries pushed down to the controller (radius client). In the case where one instance is not responding, the other one will take over and will also be synchronized.
In order to have more than one IDM instance of IDM server on the same VLAN, using VRRP must be avoided as there will be only one server acting as master instead of 1 per redundant group.
The solution is to use the automatic configuration on each IDM cluster servers group (DEVICES > Radius Clients > Automatic Setup). Use the Automatic config on the Registration server only and all the servers from the same cluster will be pushed on the radius client (controller). If IDM server is not being run in combination with a wireless Infrastructured controller, then it will be necessary to add manually all the radius authentication and accounting servers.
The redundancy will be performed by using the multiple IP radius entries pushed down to the controller (radius client). In the case where one instance is not responding, the other one will take over and will also be synchronized.
In order to have more than one IDM instance of IDM server on the same VLAN, using VRRP must be avoided as there will be only one server acting as master instead of 1 per redundant group.
The solution is to use the automatic configuration on each IDM cluster servers group (DEVICES > Radius Clients > Automatic Setup). Use the Automatic config on the Registration server only and all the servers from the same cluster will be pushed on the radius client (controller). If IDM server is not being run in combination with a wireless Infrastructured controller, then it will be necessary to add manually all the radius authentication and accounting servers.
Labels: