How to configure high availability for the IDM?
KB ARTICLE TYPE: Configuration
RELATED PRODUCTS: IDM
RELATED SOFTWARE VERSIONS: 13.2 and above.
KEYWORDS: High availability, IDM, VRRP
Virtual router redundancy protocol(VRRP) is a solution for this.
IP Address high availability allows a single virtual IP Address to be defined and shared between two Identity Manager Servers so that in the event of failure, the Virtual IP address is picked up by the backup server of the pair which then continues to service requests.
Identity Manager provides High Availability between 2 nodes in a local cluster belonging to the same subnet by using the VRRP Protocol. IP Address High Availability can be performed by following the steps below.
1. From the Identity Manager Interface go to Server --> Cluster Configuration and click on the IP Address High Availability tab.
2. IP Address High Availability uses the VRRP protocol to allow two Identity Managers to provide active/backup services for a shared IP Address. Devices are configured to use this virtual IP Address which by default runs on the Master node. In the event of the Master node failing the Backup node will take over the IP address and service requests.
• Enable VRRP - Check this box to enable VRRP settings.
• Server Mode - From the drop down menu select whether you wish to setup the Master or Backup mode.
• Virtual IP Address - Enter the virtual IP address for the server.
• Shared Secret - Enter and then confirm the shared secret for the server.
3. Click on Save once completed.
4. Once this has been completed the Server Status will show as “This server is currently active”.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.