Document toolboxDocument toolbox

(12.04.120) Adding Further Servers to the HA Network

Further HA servers – with UMS Server, UMS Load Balancer, or both – can be installed in the same way as the first one. However, you do not need to create a new IGEL network token. Instead, you must select the network token created previously during the installation of the first server in an HA network. 

In addition, a connection with the same database that is used by the first server must be established. The UMS HA network only works if all servers are connected to the same database.


Prerequisites

The database connection should be defined during the installation of the first UMS Server in an HA network. In this case, all relevant configuration information is automatically copied to the additional UMS Servers.

Instructions

To add a new server to the UMS HA installation, follow the instructions in the order given:

  1. Preparing the Server

  2. Preparing the IGEL Network Token

  3. Starting the Installation

  4. Checking the Installation

Preparing the Server

  1. Verify that the server can "see" the other servers via the network.

  • High Availability with IGEL UMS Load Balancers: All UMS Servers and UMS Load Balancers must reside on the same VLAN.

  • For High Availability (UMS HA) with IGEL UMS Load Balancers, network traffic must be allowed over UDP broadcast port 6155, and TCP traffic and UDP broadcast traffic over port 61616. For further port configuration, see IGEL UMS Communication Ports.

  • The network configuration on Windows Servers must have the TCP/IPv6 option enabled for UMS 12.

  • IGEL UMS HA installation with IGEL UMS Load Balancers is not supported in cloud environments like Azure / AWS as they do not allow broadcast traffic within their networks. The HA installation without IGEL UMS Load Balancers (as well as the Distributed UMS) is, however, supported in cloud environments as of UMS version 6.10.

 

  1. Verify that the time on all servers is synchronized.

To avoid problems with your HA installation, make sure that the time on the servers of the HA network does not differ by more than one minute. After each manual time reset, the HA services on the relevant server must be restarted.

 

  1. For Linux systems, make the directory /root writable for the user root.

Preparing the IGEL Network Token

→ If you have not yet done so, save the IGEL network token created during the installation of the first HA server, e.g. on a portable storage medium.

If the path has not been changed, the file IGEL-Network.token can be found by default in the home directory of the administrator user on a UMS Server host.

 

If you have a fully functional UMS HA network already in use and simply want to enlarge it with one more HA server, make sure you use for the additional HA server installation the current IGEL network token. 
If you have not saved it:

→ Restart the IGEL RMGUIServer service (for the instruction, see IGEL UMS HA Services and Processes) and use in this case the network token created upon the UMS Server startup from the directory:
Windows: C:\Windows\System32\config\systemprofile\IGEL-Network.token
Linux: /root/IGEL-Network.token

Starting the Installation

  1. Launch the UMS installer.

You need administration rights to install the IGEL UMS HA.

  1. Read and confirm the License Agreement.

  2. Read the Information regarding the installation process.

  3. Select a path for the installation.

  4. Select the components to be installed depending on your desired HA network configuration. See also IGEL UMS HA Configuration Options.

    image-20240617-122627.png

  5. Confirm the system requirements dialog if your system fulfills them.

  6. Select the UMS data directory, in which Universal Firmware Updates and files are to be saved.

  7. Disable the option for creating an IGEL network token.

     

  8. Select the IGEL network token to be used.

 

  1. If the internal Windows firewall is active on your host: Review the settings under Windows firewall settings and change them where necessary. Each port that is activated here will be set as rule in the Windows firewall. 

UMS 12 Communication Ports

If you are going to make network changes, consider the following ports and paths:

  • For IGEL OS 12 devices, TCP 8443 /device-connector/* is required.
    SSL can be terminated at the reverse proxy / external load balancer (see IGEL Universal Management Suite Network Configuration ) or at the UMS Server. 

  • For importing IGEL OS 12 Apps to the UMS from the IGEL App Portal, the URL https://app.igel.com/ (TCP 443) is required. 

  • For the UMS Web App, TCP 8443 /webapp/* and /wums-app/* are required.

  • For the UMS Console, the root is required, i.e. TCP 8443 /*

  • For IGEL OS 11 devices, TCP 30001 and TCP/UDP 30005 are required.

For more information on UMS ports, see IGEL UMS Communication Ports .

 

  1. Under Select Start Menu Folder, specify a folder name for the shortcut.

  2. Under Select Additional Tasks, specify whether you would like to create shortcuts for the UMS Console and UMS Administrator on the desktop.

  3. Read the summary and start the installation process.

  4. Close the UMS installer once the installation is complete.

If you have included a UMS Server in the installation, the UMS installer creates entries in the Windows software directory and the start menu. The UMS Console and UMS Administrator applications are installed, and, if this was selected, their shortcuts are placed on the desktop.

If you have installed an individual load balancer, only the option for uninstalling the UMS will be set up in the Windows start menu. No configuration on the load balancer is necessary. It connects automatically to the HA network during booting.

If SQL Server AD Native is used, you must also set the correct startup type and logon settings for the "IGEL RMGUIServer" service and restart the service. This must be done on ALL UMS Server hosts. For more information, see Microsoft SQL Server/Cluster with Native Active Directory (AD) Authentication.

Checking the Installation

  1. Check if all processes are running. For the list of UMS HA processes, see IGEL UMS HA Services and Processes.

  2. If you have included a UMS Server in the installation, open UMS Administrator > Datasource and verify that the database connection has been successfully transferred from the already running UMS Server.

Default path to the UMS Administrator:

Linux: /opt/IGEL/RemoteManager/RMAdmin.sh
Windows: C:\Program Files\IGEL\RemoteManager\rmadmin\RMAdmin.exe

The IGEL UMS Administrator application can only be started on the UMS Server.


If the database connection has not been defined automatically, enter under UMS Administrator > Datasource > Add exactly the same database parameters you used during the installation of the first HA server and click Activate.

image-20240617-122804.png

  1. In the UMS Console, go to UMS Administration > UMS Network and check the items Server and/or Load Balancer.


    Additionally, you can use the feature for checking the HA installation, see UMS HA Health Check - Analyse Your IGEL UMS High Availability and Distributed UMS Systems.

For the management of IGEL OS 12 devices, it is necessary to register your UMS after the installation, see Registering the IGEL UMS.

For the future, you may also find it useful to read: Creating a Backup of the IGEL UMS and Which Files Are Automatically Synchronized between the IGEL UMS Servers?.