Replace a Failed Secondary Firewall Management Center (Successful Backup)
Two Firewall Management Centers - FMC1 and FMC2 are part of a high availability pair. FMC1 is the primary and FMC2 is the secondary. This task describes the steps to replace a failed secondary Firewall Management Center -FMC2 when data backup from the secondary is successful.
Before you begin
Verify that the data backup from the failed secondary Firewall Management Center is successful.
Procedure
Step 1 | Contact Support to request a replacement for a failed Firewall Management Center - FMC2. |
Step 2 | Continue to use the primary Firewall Management Center - FMC1 as the active Firewall Management Center. |
Step 3 | Reimage the replacement Firewall Management Center with the same software version as FMC2. |
Step 4 | Restore the data backup from FMC2 to the new Firewall Management Center. |
Step 5 | Install required Firewall Management Center patches, geolocation database (GeoDB) updates, vulnerability database (VDB) updates and system software updates to match FMC1. |
Step 6 | Resume data synchronization (if paused) from the web interface of the new Firewall Management Center - FMC2, to synchronize the latest configuration from the primary Firewall Management Center - FMC1. For more information, see Restarting Communication Between Paired Firewall Management Centers. Classic and Smart Licenses work seamlessly. |
What to do next
High availability has now been re-established and the primary and the secondary Firewall Management Centers will now work as expected.