To configure a cluster, you must be running the server in a Microsoft cluster environment. Refer to Microsoft failover clustering documentation for information about setting up this service. These procedures describe how to setup Reflection for Secure IT to run in the cluster environment.
Install Reflection for Secure IT Server for Windows on each node of your cluster
Install the Reflection for Secure IT server on the node and restart Windows.
NOTE:Restarting Windows is required to complete the Reflection for Secure IT installation, and this restart automatically starts the Reflection for Secure IT service. In a cluster, the Reflection for Secure IT service should not be started until after the cluster is correctly configured. The next step ensures that the server is not running on any node until after configuration is complete.
Launch the Reflection for Secure IT console and stop the server (
> ).Repeat these steps on every node that you want to include in your cluster.
Configure the cluster
Open the Microsoft Failover Cluster Manager.
Create a cluster group for Reflection for Secure IT Server for Windows.
Add the following items to the Reflection for Secure IT cluster group.
Resource Type |
Description |
---|---|
Physical Disk |
Location of the Reflection for Secure IT data folder. |
IP Address |
The IP address used by the server. |
Network Name |
The host name used by the server. |
Add the Reflection for Secure IT service to the cluster group using the following settings:
Settings |
Values |
---|---|
Resource Type |
Generic Service |
Generic Service Parameters |
|
Dependencies |
Add the following resources: Physical Disk IP Address Network Name |
Registry Replication |
Add this HKEY_LOCAL_MACHINE key: SOFTWARE\Micro Focus\RSecureServer |
Configure Reflection for Secure IT Server for Windows
Open the Reflection for Secure IT console on the active node of your cluster group.
From the
menu, click .Select
.For default data folder The default data folder location is: C:\ProgramData\Micro Focus\RSecureServer . This should be a local folder on the shared physical disk you have set up as part of your cluster group.
, specify the folder you want to use for Reflection for Secure IT data. This replaces theConfigure Reflection for Secure IT server settings.
NOTE:When you change the
setting, Reflection for Secure IT creates a new host key and a new default configuration file in the new location unless these files already exist in the new location. As a result, any settings you have previously configured are no longer used. After you make this change, you can use the console to configure your desired settings and the changes will be saved to the new location. Or, you can copy existing data (such as the host key and your existing configuration file) to the new data folder location.Check to be sure that no files or folders configured for use by Reflection for Secure IT reside on any individual node in your cluster. This ensures that files accessed by users will remain available after a failover.
By default, the following settings use the Windows user profile folder The user profile folder is configurable by the Windows system administrator. The default is: \Users\username (specified by %D). Depending on your current configuration, you may need to reconfigure the Windows profile folder location, or modify your Reflection for Secure IT settings.
Setting |
Notes |
---|---|
|
Used for user public key authentication. The default is %D\.ssh2. |
|
The default login directory for SFTP and SCP2 file transfer is %D. |
Start Reflection for Secure IT Server for Windows
After the cluster is correctly configured, you can start the service from the Reflection for Secure IT console or from the cluster management tool.
To use |
Do this |
---|---|
The Reflection for Secure IT console |
Open the console on the active node and start the server ( > ). |
The Microsoft cluster management tool |
Bring the Reflection for Secure IT service online. |