Create an FDM-Managed High Availability Pair
Before you create an FDM-managed HA pair in Security Cloud Control, you must first onboard two standalone FDM-managed devices that meet the requirements described in FDM-Managed High Availability Pair Requirements.
Note | To create an HA pair in Security Cloud Control, both devices must have management interfaces configured. If the devices have data interfaces configure, you must create the HA pair through the FDM console, and then onboard the pair to Security Cloud Control. |
Once you create an FDM-managed HA pair, the primary device is active and the secondary device is standby by default. All configuration changes or deployments are made through the primary device and the secondary device remains in standby mode until the primary unit becomes unavailable.
Note that when you opt to accept configuration changes from or deploy to an FDM-managed HA pair, you are communicating with the active device of the HA pair. Any changes made to the primary device are transferred over the link between the primary and the secondary device. Security Cloud Control deploys to and accepts changes only from the primary device; thusly, the Security Devices page displays a single entry for the pair. Once the deploy occurs, the primary device synchronized any configuration changes to the secondary device.
Simi liar to how Security Cloud Control communicates with only the active device, when you schedule or opt to back up an FDM-managed HA pair, only the active device is eligible to back up.
Note | If the HA devices experience an issue during the creation process or the HA pair does not result with a healthy status, you must manually break the HA configuration before you attempt to create the pair again. |