CA EEM Getting StartedConfiguring Failover › CA EEM Server Failover

Previous Topic: Configure the Application Data Store Failover

Next Topic: Configure CA EEM Files

CA EEM Server Failover

Configure each CA EEM Server to trust certificates from all the other secondary servers in the failover configuration. Repeat the following procedure on all the servers in the failover configuration.

Note: CA EEM failover does not support storing certificates in PKCS#11 devices.

To configure the CA EEM Server for failover

  1. Copy the rootcert.cer file from all the failover servers to the Server1.

    Note: The PEM certificate file (rootcert.cer) is located in the iTechnology directory of each failover server.

  2. Enter the URL https://server1:5250/spin.
  3. Select iTech Administrator, and click Go.

    A page appears displaying the dashboard for an iTech Administrator.

  4. Click Login, Select iAuthority as the Option Type and login as EiamAdmin.

    The iTechnology Administrator GUI opens.

  5. Click the Configure tab, add the hostname of failover server ServerN in the Trust another iAuthority pane and click Trust.

    An entry is added in iControl.conf file and Server1 starts trusting sessions from ServerN.

    Note: Repeat this step to add the hostnames of all other failover servers.

  6. Click the iAuthority tab, and in the Add Trusted Root pane enter a Label to identify ServerN, browse to the location of PEM Certificate file for ServerN on the localhost, and click Add Trusted Root.

    An entry is added in iAuthority.conf and Server1 starts trusting certificates from ServerN.

    Note: Repeat this step to add certificate entries for all other servers in the failover setup.