How do I configure High Availability (HA) for Tectia MobileID?

On the primary mobileid server do normal installation:

• note the IP address of the server
• FIND OUT THE PROXY USER PASSWORD
• locate file webaccess.conf
• on that file you should find a line proxy_password “some-random-string”
• Note the proxy_user name (this should be the same by default on both installations)

On the secondary mobileid server (after normal installation):

• shutdown the webaccess

• remove the eDirectory instance

  ndsconfig rm –a <eDirectory admin>

• re-create the instance as replica of the primary

  ndsconfig add –t mobileid –a <eDirectory admin> –n o=root –p <addressofprimaryserver>

• if you are not using TLS

  ndsconfig –a <eDirectory admin> –s “Require TLS for simple binds with password=no”

• CHANGE THE PROXY USER PASSWORD TO MATCH THE ONE IN THE PRIMARY MOBILE ID

• locate file webaccess.conf
• change the proxy_password to match the one on primary
• verify that the proxy_user name matches the primary
• start webaccess

NOTE on replication: this only replicates the configuration data. To apply the changes, you need to log in to webaccess of each server and perform mobileid server restart/reload.