Move a VM 3.0 with AD Integration to a new server. Creation date: 17/06/2008 Last Review: 26/06/2008 Revision number: 1



Similar documents
How to move an IDENTIKEY Authentication Server with embedded PostgreSQL DB to a new machine with new IP address?

DIGIPASS Pack for Citrix on WI 4.5 does not detect a login attempt. Creation date: 28/02/2008 Last Review: 04/03/2008 Revision number: 2

Creation date: 09/05/2007 Last Review: 31/01/2008 Revision number: 3

DIGIPASS Authentication for GajShield GS Series

DIGIPASS Authentication for Citrix Access Gateway VPN Connections

Digipass Plug-In for IAS troubleshooting guide. Creation date: 15/03/2007 Last Review: 24/09/2007 Revision number: 3

Integrating LANGuardian with Active Directory

Changing Passwords in Cisco Unity 8.x

Digipass for Citrix VM3.0: troubleshooting guide. Creation date: 11/07/2007 Last Review: 30/11/2007 Revision number: 2

Digipass Plug-In for IAS. IAS Plug-In IAS. Microsoft's Internet Authentication Service. Installation Guide

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

2007 Digipass Pack for OWA 2007 Basic Authentication IIS IIS 6 Module Authentication Server web site Digipass Pack for OWA 2007 Basic Authentication

How to speed up IDENTIKEY DNS lookup of the Windows Logon DAWL client on Windows 7?

A dm inistrator Reference

SSO Plugin. J System Solutions. Upgrading SSO Plugin 3x to 4x - BMC AR System & Mid Tier.

Identikey Server Getting Started Guide 3.1

Digipass Plug-In for IAS. IAS Plug-In IAS. Microsoft's Internet Authentication Service. Getting Started

Avatier Identity Management Suite

Chapter 3 Authenticating Users

Understand Troubleshooting Methodology

Installation Steps for PAN User-ID Agent

Configuring Sponsor Authentication

Use Enterprise SSO as the Credential Server for Protected Sites

DIGIPASS Authentication for Juniper ScreenOS

SonicWALL CDP 5.0 Microsoft Exchange InfoStore Backup and Restore

I n s t a lla t io n G u id e

SELF SERVICE RESET PASSWORD MANAGEMENT BACKUP GUIDE

Setting Up a Backup Domain Controller

System Administration and Log Management

Moving the Web Security Log Database

DC Agent Troubleshooting

This means that any user from the testing domain can now logon to Cognos 8 (and therefore Controller 8 etc.).

IDENTIKEY Server Administrator Reference 3.1

Implementing Microsoft SQL Server 2008 Exercise Guide. Database by Design

IDENTIKEY Appliance Administrator Guide

Using Logon Agent for Transparent User Identification

Multi-factor Authentication using Radius

Database Operations (Backup/Restore/Move/Manage) Technical Support Engineering Rosslare Security NA For more information please see

Installing Active Directory

Hands-On Microsoft Windows Server 2008

Moving the TRITON Reporting Databases

NSi Mobile Installation Guide. Version 6.2

Introduction. Before you begin. Installing efax from our CD-ROM. Installing efax after downloading from the internet

Setup and configuration for Intelicode. SQL Server Express

Video Administration Backup and Restore Procedures

Exchange Granular Restore User Guide

Identikey Server Administrator Reference 3.1

Exchange Granular Restore. User Guide

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

Getting Started. Backup Repositories. Getting Started 1/6

Tableau Server Trusted Authentication

Authenticate vsftpd (a secure FTP server for UNIXlike systems) with IDENTIKEY Authentication Sever

HELP DOCUMENTATION SSRPM WEB INTERFACE GUIDE

Digipass Authentication For IIS Basic 3.2

Exchange Granular Restore Instructional User Guide

External Authentication with Citrix Secure Gateway - Presentation server Authenticating Users Using SecurAccess Server by SecurEnvoy

2. Using Notepad, create a file called c:\demote.txt containing the following information:

How to Install the Active Directory Domain Services (AD DS) Role in Windows Server 2008 R2 and Promote a Server to a Domain Controller

SQL Express to SQL Server Database Migration MonitorIT v10.5

McAfee One Time Password

INTEGRATION GUIDE. DIGIPASS Authentication for Office 365 using IDENTIKEY Authentication Server with Basic Web Filter

SonicWALL CDP 5.0 Microsoft Exchange User Mailbox Backup and Restore

Synchronizer Installation

Using MailStore to Archive MDaemon

Upgrading from MSDE to SQL Server 2005 Express Edition with Advanced Services SP2

How to Backup and FTP your SQL database using E2.

Reconfiguring VMware vsphere Update Manager

TROUBLESHOOTING GUIDE

Practice Fusion API Client Installation Guide for Windows

SharePoint AD Information Sync Installation Instruction

Using RADIUS Agent for Transparent User Identification

Microsoft IAS Configuration for RADIUS Authorization

Creating a New Database and a Table Owner in SQL Server 2005 for exchange@pam

Knowledge Base Articles

DIGIPASS Authentication for Microsoft ISA 2006 Single Sign-On for Outlook Web Access

RSA Security Analytics

Backup of data residing on Open-E Data Storage Software with Backup Exec

Managing and Maintaining a Windows Server 2003 Network Environment

Direct Storage Access Using NetApp SnapDrive. Installation & Administration Guide

DIGIPASS Authentication for SonicWALL SSL-VPN

Integrating Trend Micro OfficeScan 10 EventTracker v7.x

Auditing manual. Archive Manager. Publication Date: November, 2015

SELF SERVICE RESET PASSWORD MANAGEMENT WEB INTERFACE GUIDE

Getting Started With Delegated Administration

Secrets of Event Viewer for Active Directory Security Auditing Lepide Software

XenClient Enterprise Synchronizer Migration

ILTA HAND 6B. Upgrading and Deploying. Windows Server In the Legal Environment

Configuration Guide for SQL Server This document explains the steps to configure LepideAuditor Suite to add and audit SQL Server.

JAMF Software Server Installation Guide for Linux. Version 8.6

Application Note 8: TrendView Recorders DCOM Settings and Firewall Plus DCOM Settings for Trendview Historian Server

Group Management Server User Guide

Virtual Dashboard for VMware and Hyper-V

How To Create An Easybelle History Database On A Microsoft Powerbook (Windows)

Installing LearningBay Enterprise Part 2

HELP DOCUMENTATION E-SSOM BACKUP AND RESTORE GUIDE

Getting Started with Tableau Server 6.1

Setting up an MS SQL Server for IGSS

Installation Guide. (June 2014)

AVALANCHE MC 5.3 AND DATABASE MANAGEMENT SYSTEMS

Transcription:

Move a VM 3.0 with AD Integration to a new server. Creation date: 17/06/2008 Last Review: 26/06/2008 Revision number: 1 Document type: How To Security status: EXTERNAL Summary This Document describes how to move a VACMAN Middleware (VM) 3.0 installation with AD Integration to a new server. Details We will describe step by step how to move an existing installation of VM 3.0 with AD Integration to a new machine with a different IP address. In our example we will refer to: The existing installation as old server. The IP address of this machine is 10.10.5.91 The server where the VM has to be moved to as the new server. The IP address of this machine is 10.10.1.92 In summary, the process to move the installation consists of the following steps: 1. On the old server, create an Authentication Server Component for the new server. 2. On the old server, license the new component, created in step 1. 3. On the old server, backup the configuration files. 4. On the new server, install the VM 3.0 from scratch. 5. On the new server, restore the configuration file(s). 6. On the new server, restart the VM Service and check that the VM started up correctly. 7. On the new server, remove the Authentication Server Component of the old server. 8. Optionally, if there are OWA or Citrix filters, let these filters point to the new server. Compared to the move of the VM 3.0 in an installation with embedded PostgreSQL Database, there are a few steps less: we do not have to backup and restore the database. In an installation with AD integration, AD is used as database. The database resides centrally on the domain controller, and is accessible for both the old and the new server. For more details, check KB 120055: Move a VM 3.0 with embedded PosgreSQL installation to a new server. Page 1 of 8

1. On the old server, create an Authentication Server Component for the new server. Create an Authentication Server Component with the IP address of the new server, as show in the screenshots below: Be sure to specify the IP address of the new server as the Location. Select the same Policy as the policy that is used for the Authentication Server Component of the old server: The result is 2 Authentication Server Components. One for the old server, and one for the new server: Page 2 of 8

2. On the old server, license the new component, created in step 1. If you need guidance with the licensing of the Authentication Server Component, please check KB article 120051: How to (re-)license VACMAN Middleware 3.0? 3. On the old server, backup the configuration files. The configuration files are located in the Bin subdirectory of the VM installation directory. The default location is: C:\Program Files\VASCO\VACMAN Middleware 3\Bin. The files to backup are: dpauthserver.xml dpadmincmd.xml (optionally, if the command-line administration is used) mdcconfig.xml (Optionally, if the message delivery component for Virtual Digipasses is used) 4. On the new server, install the VM 3.0 from scratch. You do not have to do an AD schema extension. This has already been done during the installation of the VM 3.0 on the old server. Be sure to select the option Server Install using Active DIrectory during the installation: Page 3 of 8

Be sure to check the checkbox This is not the first Authentication Server to be installed : You can skip the licensing part of the installation procedure. We licensed the new component in step 2. Page 4 of 8

5. On the new server, restore the configuration file(s). Copy the file dpauthserver.xml from step 3 in the bin subdirectory of the VM installation directory. In this configuration file, there will be references to the IP address of the old server. To change it to the IP address of the new server, we will have to change it in the Authentication Server Configuration. Open the Authentication Server Configuration from the Windows Start Menu: Change IP Address in the Component Location field from the old server IP address to the IP Address of the new server: Change here to the IP address of the new server, 10.10.5.92 in our example Page 5 of 8

You will be requested to restart the Authentication Service, press the Yes Button to do so: Copy the file dpadmincmd.xml from step 3 in the bin subdirectory of the VM installation directory. In this configuration file, there will be references to the IP address of the old server. To change it to the IP address of the new server, we will have to edit the file. Open the file in Wordpad, and change the IP address to the IP address of the new server in the 2 lines indicated in the screenshot below: Copy the file mdcconfig.xml from step 3 in the bin subdirectory of the VM installation directory. Page 6 of 8

6. Restart the Authentication Service and check the VM started up correctly. Restart the Digipass Authentication Server service manually from the Microsoft Services MMC, or from the computer management MMC: Check the Windows Event Viewer, application log. If anything went wrong, you will find error messages in there. Check the VM audit log. The audit log can be found in the Log subdirectory of the VM installation directory. By default this is: C:\Program Files\VASCO\VACMAN Middleware 3\Log The filename is in the format: dpauthserv200806.audit, where 2008 is the year, and 06 is the month. (By default, there will be a new audit file every month) Look for the following 2 lines, indicating that the VM started up correctly: 2008/06/26 14:26:46, Info, 0x8D6F0777D5A0E7F36C74891DAD3A58BA, Initialization, VACMAN Middleware 3, I-002004, "The RADIUS protocol handler has been initialized successfully.", Version ["3.0.14.154"], Configuration Details ["Request-Cache:{max_age: 5, max_size: 0, clean_threshold: 200, min_clean_interval: 30, max_references: 0}, Proxy-Cache:{max_age: 99999999, max_size: 0, clean_threshold: 200, min_clean_interval: 30, max_references: 2}, IP-Address:10.10.5.92, Authentication-Port:1812, Accounting-Port:1813"] and 2008/06/26 14:26:46, Info, 0xA1054F85CAAD8F35DE61C53E2B15860E, Initialization, VACMAN Middleware 3, I-001002, "The Authentication Server has started up successfully.", Configuration Details ["Trace-File:C:\\Program Files\\VASCO\\VACMAN Middleware 3\\Log\\dpauthserv.trace, Trace- Mask:0x3FFFFFFF, AAL3-Library-Path:C:\\Program Files\\VASCO\\VACMAN Middleware 3\\Bin\\aal3ad30.dll, Component-Location:10.10.5.92, Component- Cache:{max_age: 900, max_size: 1000, clean_threshold: 800, min_clean_interval: 60}, Require-Client-Component:false, Max-Concurrent- Sessions:10, Max-Session-Time:86400, Session-Timeout:28800, Communicators:{C:\\Program Files\\VASCO\\VACMAN Middleware Page 7 of 8

3\\Bin\\dpauthseal.dll, C:\\Program Files\\VASCO\\VACMAN Middleware 3\\Bin\\dpauthradius.dll}"], Source Location ["10.10.5.92"], Version ["3.0.14.154"], Data Source ["File"], Data Source Location ["C:\\Program Files\\VASCO\\VACMAN Middleware 3\\Bin\\dpauthserver.xml"] 2008/06/26 14:18:32, Success, 0x9865136F635371A9D0A4C032244D7318, Database, VACMAN Middleware 3, S-001001, "A query for a single [Component] record was successful.", Object ["Component"], Input Details ["Component Type:Authentication Server, Location:10.10.5.92"], Output Details ["Component Type:Authentication Server, Location:10.10.5.92, Policy ID:VM3 ADMINISTRATION LOGON, Created Time:2008/06/17 17:35:33, Modified Time:2008/06/17 17:35:33"] 7. On the new server, remove the Authentication Server Component of the old server. Open de VM administration MMC from the Windows Start menu. Select the components from the tree in the Left Pane. Right click the Authentication Server component of the old server and delete it. Applies to: VACMAN Middleware 3.0 Page 8 of 8

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information