Technical Tip: Manually resume control to primary server via CLI

khoffman · ‎01-26-2024

Description

This article describes how to manually resume control of the primary FortiNAC server using the CLI.

Scope

FortiNAC-F v7.2+.

Solution

This process will involve both FortiNAC-F appliances being down for some time. If possible, this should be done during a maintenance window.

Establish SSH sessions for both primary and secondary appliances.
Shutdown processes on the primary FortiNAC appliance. From the CLI type:

Type: execute enter-shell

Type: shutdownNAC -kill

3. Shutdown processes on the secondary appliance, From the CLI type:

Type: execute enter-shell

Type: shutdownNAC

Type: shutdownNAC -kill

4. Change the status from 2 to 1 on both primary and secondary appliances:

Type: cd /bsc/campusMgr/bin
Type: vi -N .networkConfig

Change Status=2 to Status=1

Save changes and exit file.

5. (optional) Restore Database backup from the last database backup. On the primary server:

Type: cd /bsc/backups/database
Type: sudo ydb_restore_full_backup <filename>

Start processes on the primary FortiNAC appliance. On the primary appliance:

Type: startupNAC

Allow about 10 minutes for the system to start.
Once the primary server has fully started, start services on the secondary appliance:

Type: startupNAC