Replace a Failed Secondary Firewall Management Center (Unsuccessful Backup)
Two Firewall Management Centers - FMC1 and FMC2 are part of a high availability pair. FMC1 is the primary and FMC2 is the secondary. This task describes the steps to replace a failed secondary Firewall Management Center -FMC2 when data backup from the secondary is unsuccessful.
Procedure
Step 1 | Contact Support to request a replacement for a failed Firewall Management Center - FMC2. |
Step 2 | Continue to use the primary Firewall Management Center - FMC1 as the active Firewall Management Center. |
Step 3 | Reimage the replacement Firewall Management Center with the same software version as FMC2. |
Step 4 | Install required Firewall Management Center patches, geolocation database (GeoDB) updates, vulnerability database (VDB) updates and system software updates to match FMC1. |
Step 5 | Access the web interface of the primary Firewall Management Center - FMC1 and break Firewall Management Center high availability. For more information, see Disabling Firewall Management Center High Availability. When prompted to select an option for handling managed devices, choose Manage registered devices from this console. |
Step 6 | Re-establish Firewall Management Center high availability, by setting up the Firewall Management Center - FMC1 as the primary and Firewall Management Center - FMC2 as the secondary. For more information , see Establishing Firewall Management Center High Availability.
|
What to do next
High availability has now been re-established and the primary and the secondary Firewall Management Centers will now work as expected.