12-15-2010 12:24 PM - edited 02-21-2020 04:11 AM
NAC Manager stop responding HTTPS after activation of HA
I currently installing NAC in a lab, and as soon as I reboot the Manager after configuring the HA the server stop responding to HTTPS and I received Service Temporarily Unavailable. After reboot the server I saw on the console something about verifying the HA setting but I can't see this message again and I dont know how to check thoses setting in CLI.
Solved! Go to Solution.
12-16-2010 12:13 AM
Hi,
This may mean that HA is not properly configured (problem with certificates, heartbeat, etc.).
The best thing to do is to login via SSH to both CAMs, go to /etc/ha.d/ and delete the files: "perfigo.conf" and "ha.cf".
These are the files which contain HA configuration, so after deletion, reboot the machines and they will come up as standalone again.
When in standalone, you can startover HA config again, making sure you follow the required steps:
http://www.cisco.com/en/US/docs/security/nac/appliance/installation_guide/hardware/48/hi_ha.html.
HTH,
Tiago
--
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
12-15-2010 02:52 PM
Helo,
After configuring HA, if you try to access the standby server, you will receive the message that service is unavailable.
Acessing the service ip should work fine. And if you realy can not access any node, you can try to run the com mand "service perfigo config" on the command line to reconfig the servers
Enviado via iPod
Em 15/12/2010, às 18:25, "jroussy@avance.info"
luciano.carvalho,
A new message was posted in the thread "NAC Manager stop responding HTTPS after activation of HA":
https://supportforums.cisco.com/message/3249791#3249791
Author : jroussy@avance.info
Profile : https://supportforums.cisco.com/people/jroussy@avance.info
Message:
12-16-2010 12:13 AM
Hi,
This may mean that HA is not properly configured (problem with certificates, heartbeat, etc.).
The best thing to do is to login via SSH to both CAMs, go to /etc/ha.d/ and delete the files: "perfigo.conf" and "ha.cf".
These are the files which contain HA configuration, so after deletion, reboot the machines and they will come up as standalone again.
When in standalone, you can startover HA config again, making sure you follow the required steps:
http://www.cisco.com/en/US/docs/security/nac/appliance/installation_guide/hardware/48/hi_ha.html.
HTH,
Tiago
--
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
12-16-2010 05:58 AM
Thank you!! It work now! Will have to be
careful about my HA setting now!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide