Creating a PGP Universal Server 3.x Cluster Server

Article:TECH149968  |  Created: 2010-09-20  |  Updated: 2012-08-27  |  Article URL http://www.symantec.com/docs/TECH149968
Article Type
Technical Solution


Issue




When you have two or more PGP Universal Servers operating in your organization, you can configure them to synchronize with each other; this arrangement is called a cluster.

Servers in a cluster can all keep data replicated from the other servers in the cluster: users, keys, managed domains, and policies. For those servers running PGP Universal Web Messenger they can also replicate Web Messenger data.


Environment



Solution




You can begin creating a cluster as soon as you have a single PGP Universal Server installed and running on your network. Use the following steps to add a new server as a PGP Universal Server cluster member.

1. Install the joining server using the PGP Universal Server installation DVD and enter the following information:

  • IP address
  • Subnet mask
  • Default gateway
  • DNS information
  • Hostname

2. After initial setup is complete and the joining server reboots, connect to the server through a browser interface at https://<hostname>:9000 or https://<IP address>:9000 to complete the administration setup.

3. Click the Forward arrow and read the license agreement.

4. Scroll down and then click I Agree.

5. On the Setup Type screen, select Cluster Member and click the Forward arrow.

6. Set the date and time for the server and click the Forward arrow.

7. Confirm the Network Setup for the server and click the Forward arrow.

8. Enter information for a proxy server or click Skip.

9. Click Done.

10. On the sponsoring PGP Universal Server, go to System > Clustering in the administrative interface and click Add Cluster Member.

11. Enter the hostname/IP address for the joining cluster member server and then click Save.

Note: If private keys should be replicated to the joining server, leave the Host private keys for Internal Users option checked. Uncheck the option if private keys should NOT be replicated to this server.

If the joining server is located in your corporate DMZ, check This server is located in the DMZ.


12. After the joining cluster server restarts, enter the license information for the server and then click the Forward arrow.

13. Type the hostname or IP address of the sponsoring cluster server and click the Forward arrow.

14. Click Done.

15. Once the joining server is restarted, switch to the admin interface of the sponsor server and click System > Clustering.

16. Next to the joining server, click Contact. The sponsoring server completes the clustering process and replicates its data to the new joining server.

The Contact function assumes that the joining server has already requested to join the cluster, specifying the IP address or hostname of the server from which you did the Add Cluster Member request (the sponsoring server).

Note: In order for the sponsoring server to successfully contact the joining server, the hostname and IP address of the joining server must be resolvable via DNS. If not, the sponsoring server will not be able to contact the joiner, and the join will not succeed.

Note: In order for the sponsoring server to accept the connection from the joining server they must agree on the current time.

Note: If the version of the joining server does not match that of the sponsor, clustering will fail.

 




Legacy ID



2256


Article URL http://www.symantec.com/docs/TECH149968


Terms of use for this information are found in Legal Notices