Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance

621

622

623

624

625

626

627

628

629

630

14-62

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 14 Administering the CAM

Backing Up the CAM Database

Step 5 Navigate to the Administration > Backup web console page on the HA-Primary CAM, click the

Browse button next to the Snapshot to Upload field, find the file in the external directory structure, and

click Upload Snapshot.

Step 6 Log into the HA-Primary CAM CLI console and shut down services on the CAM using the service

perfigo stop

command.

Step 7 Enter the /perfigo/dbscripts/dbbackup.sh command. The existing configuration is overridden by the

configuration in the snapshot.

Warning

Entering the “./dbbackup.sh” command using “sh ./dbbackup.sh”syntax can cause the backup

process to enter an endless loop, repeatedly asking you to verify the restoration process. Do not use

the “sh ./dbbackup.sh”syntax.

Step 8 Restart services on the HA-Primary CAM using the service perfigo start command.

Step 9 To complete the snapshot restoration, bring up the HA-Secondary CAM and wait approximately 5

minutes for the HA-Secondary CAM to automatically "sync up" with the HA-Primary.

Step 10 Reboot the HA-Primary CAM. Once the CAM has restarted and you can log in via the web console,

reboot the HA-Secondary CAM.

Restore Both HA-Primary and HA-Secondary CASs from Snapshot

To restore the HA-Primary and HA-Secondary CASs in a failover deployment to the configuration state

of the snapshot:

1. Install and initially configure the HA-Primary CAS and HA-Secondary CAS so that they feature the

same attributes as before your HA deployment went down as described in the Cisco NAC Appliance

Hardware Installation Guide, Release 4.9(x).

2. Reconfigure both the HA-Primary and HA-Secondary CASs as an HA pair as described in the Cisco

NAC Appliance Hardware Installation Guide, Release 4.9(x).

Warning

Ensure you follow the instructions in the “Configuring High Availability (HA)” chapter in the order they

are presented to successfully re-establish your CAS HA connection.

3. Simulate failover events between the HA-Primary and HA-Secondary CASs by shutting

down/disconnecting the HA-Primary CAS to allow the HA-Secondary CAS to assume access

control functions. Once the standby CAS assumes the active role, simulate the same failover for the

HA-Secondary CAS (the new active CAS) when the HA-Primary (standby) comes back “online.”

Performing these failover simulations on both the HA-Primary and HA-Secondary CASs ensures

that each one gets the current database information from the CAM.

Backing Up and Restoring CAM/CAS Authorization Settings

As an added security measure, Authorization and certificate trust store settings are not backed up with

other elements of the CAM/CAS configuration. Therefore, when backing up your CAM/CAS

configuration, you must back up Authorization and certificate trust store files separately from the

standard database backup/snapshot.