Replace a Failed Secondary Cloud-Delivered Firewall Management Center (Unsuccessful Backup)
Two Cloud-Delivered Firewall Management Centers - FMC1 and FMC2 are part of a high availability pair. FMC1 is the primary and FMC2 is the secondary. This task describes the steps to replace a failed secondary Cloud-Delivered Firewall Management Center -FMC2 when data backup from the secondary is unsuccessful.
Procedure
Step 1 | Contact Support to request a replacement for a failed Cloud-Delivered Firewall Management Center - FMC2. |
Step 2 | Continue to use the primary Cloud-Delivered Firewall Management Center - FMC1 as the active Cloud-Delivered Firewall Management Center. |
Step 3 | Reimage the replacement Cloud-Delivered Firewall Management Center with the same software version as FMC2. |
Step 4 | Install required Cloud-Delivered Firewall Management Center patches, geolocation database (GeoDB) updates, vulnerability database (VDB) updates and system software updates to match FMC1. |
Step 5 | Access the web interface of the primary Cloud-Delivered Firewall Management Center - FMC1 and break Cloud-Delivered Firewall Management Center high availability. For more information, see Disabling Cloud-Delivered Firewall Management Center High Availability. When prompted to select an option for handling managed devices, choose Manage registered devices from this console. |
Step 6 | Re-establish Cloud-Delivered Firewall Management Center high availability, by setting up the Cloud-Delivered Firewall Management Center - FMC1 as the primary and Cloud-Delivered Firewall Management Center - FMC2 as the secondary. For more information , see Establishing Cloud-Delivered Firewall Management Center High Availability.
|
What to do next
High availability has now been re-established and the primary and the secondary Cloud-Delivered Firewall Management Centers will now work as expected.