Beruflich Dokumente
Kultur Dokumente
PERPETUAL INNOVATION
Table of Contents
Chapter 1: Overview ....................................................................5
What is Clustering? ......................................................................................... 5
How It Works ..................................................................................................................... 6
Important Installation Notes .............................................................................................. 6
revision 1 3
Table of Contents
4 revision 1
Chapter 1:
Overview
OnGuard 2010 with Windows Server 2008 Enterprise Edition and Microsoft
Cluster Services provides a clustering solution for access control. This allows
OnGuard to continue running if a server or managed resource on the server fails.
The failure of a server or resource in a cluster is transparent (by not tying
resources to a physical server). Microsoft Cluster Service allows for the creation
of a customized failover process.
What is Clustering?
In order to ensure system availability in the event of a failure, or to enhance
performance, two or more servers can be connected by a high speed interconnect
and reference data on a shared data storage device. This grouping is called a
cluster. In a cluster, resources are connected to a virtual server that can easily be
referenced between the servers in the cluster.
revision 1 5
1: Overview
How It Works
If one of the servers in the cluster stops functioning, a process called failover
automatically shifts the workload of the failed server to another server in the
cluster. The failover process is designed to ensure continuous availability for
critical applications and data.
Although clusters are designed to handle failure, they are not fault tolerant with
regards to user data. The cluster by itself does not guard against loss of user data
such as the actual SQL Server 2008 database. The recovery of the lost data would
typically be handled by third party software or by taking advantage of a RAID
configuration for data redundancy.
Network settings and properties are configured for all network cards in each
server
MS Cluster Services must be installed and configured (This also requires the
installation of IIS - Internet Information Server)
Volumes created for both the SQL data and the QUORUM drive
OnGuard Requirements
6 revision 1
OnGuard 2010 must be installed on both servers. This also requires the
installation of DirectX 9.0.
The LS Services registry fix is applied to both servers and configured. For
more information, refer to OnGuard Service Registry Fix on page 34.
All OnGuard services except for LS Login Driver are set to Manual
startup
revision 1 7
1: Overview
8 revision 1
Chapter 2:
Hardware Configuration
1.
2.
revision 1 9
2: Hardware Configuration
3.
Ensure that the shared media device contains at least two configured
volumes. One configured volume will host the database; the other
configured volume will host the quorum and clustering logs. The DATA and
QUORUM drives must be two different physical volumes.
4.
On each server, connect one NIC to your public network. The other NIC is to
be directly connected to the other server using a cross-over Ethernet RJ-45
cable. Configure the NICs with the following pretensions:
Important:
Note:
Make sure you have reserved enough static IP addresses for the NIC and
cluster configuration. These addresses will be used for:
a.
Two (2) public static IP addresses for each NIC connected to the
public network.
b.
Two (2) private static IP addresses for each NIC connected to the
private network.
c.
One (1) public static IP address for the clusters access point.
d.
One (1) public static IP address for SQL Servers access point.
You also need to reserve one (1) static IP address for each service and
application. For example, you would need to reserve five (5) more static IP
addresses if the following services and application are configured for the
cluster:
- License Server
- Login Driver
- Communication Server
- Replicator
- MSDTC (Microsoft Distributed Transaction Coordinator)
When adding the services to the cluster, service names cannot contain any
spaces.
Make sure the public network link on each server is the first NIC
connection accessed by the DNS.
To do this:
a.
b.
c.
In the Connections section, make sure the public network link NIC
is the first connection in the list. If it is not, highlight the connection
and use the arrows to move it up to first in the list.
Make sure the private network link on each server maintains an empty
WINS address.
To do this:
10 revision 1
a.
b.
c.
Note:
revision 1 11
2: Hardware Configuration
12 revision 1
Chapter 3:
Important:
Make sure to install the cluster services on both servers in the cluster.
1.
On cold boot, configure the PERC controller and update the NVRAM
accordingly.
2.
3.
a.
b.
c.
d.
After Windows Server 2008 Enterprise Edition has been installed, prepare
the shared media device hard drives for clustering:
Important:
Create primary partitions that are 100% of the drive space, and format
them as NTFS.
revision 1 13
4.
Note:
a.
b.
Type the <Full Computer Name> for each server in cluster. Click
[Next].
c.
The Testing Options window is displayed. Select the Select Run all
tests radio button. Click [Next].
d.
You may want to create a second Administrator account for user validation
during cluster configuration.
5.
14 revision 1
Start the Failover Cluster Manager. Click the Start button, and then select
Administrative Tools > Failover Cluster Manager.
Review the proposed cluster configuration. If you are happy with it,
click [Next] to create the cluster.
b.
When the tests are completed, click [Finish] returning you to the
Failover Cluster Manager.
c.
If there are any errors, correct them, and then run the Validate a
Configuration Wizard again as done in step 4 on page 14.
6.
7.
8.
Click on the Create a Cluster link to display the Create Cluster Wizard.
b.
c.
Type the <Full Computer Name> for each server in cluster. Click
[Next]. The Access Point for Administering the Cluster.
d.
Enter the Cluster Name and the IP address. Click [Next] to validate the
settings.
e.
f.
On the left pane, right-click the cluster, and then select More Actions >
Configure Cluster Quorum Settings. The Configure Cluster Quorum
Wizard is displayed.
b.
c.
Ensure the default Node and Disk Majority radio button is selected.
Click [Next].
d.
On the Configure Storage Witness window, select the disk you want to
use for the cluster quorum. Click [Next].
e.
f.
revision 1 15
16 revision 1
b.
c.
d.
On the Client Access Point window, type the IP address for the MSDTC
service. Click [Next].
e.
On the Select Storage window, select one of the available cluster disks,
and then click [Next].
f.
g.
h.
Click [Next].
Chapter 4:
Note:
In order to install SQL Server 2008 successfully, you may need to do this as
a local administrator. However, when you are configuring the Service
Accounts, you must have a domain account to run these services.
1.
2.
Insert the SQL Server 2008 Enterprise Edition installation disc into the disc
drive located on the active node.
If the Microsoft SQL Server 2008 splash screen does not automatically
display, click the Start button, then select Run. In the Run window,
browse for setup.exe on the disc drive. Alternatively, you can run
setup.exe from Explorer. The Microsoft SQL Server 2008 splash screen
is displayed.
revision 1 17
18 revision 1
3.
Click the New SQL Server failover cluster installation hyperlink. SQL
Server 2008 Setup begins. When setup verification is complete, click [OK].
4.
5.
6.
On the Product Key window, in the Enter the product key field, type the
product key. Click [Next].
7.
In the License Terms window, read the license agreement, and then select the
I accept the license terms check box. Click [Next]
8.
9.
revision 1 19
b.
c.
10. On the Disk Space Requirements window, verify the Disk Usage Summary
information. Click [Next].
20 revision 1
11. On the Cluster Resource Group, verify the resources. Make sure there is
available storage. A new resource will be created on your SQL Server. Click
[Next].
12. On the Cluster Disk Selection window, if necessary, select the available
shared disk. Click [Next].
revision 1 21
13. On the Cluster Network Configuration window, deselect the DHCP check
box. In the Address field, type the static IP address for the SQL Server, and
then click [Next].
14. On the Cluster Security Policy window, accept the default values. Click
[Next].
22 revision 1
15. On the Server Configuration window Service Accounts tab, enter the
credentials you will use for the SQL services accounts, and then click
[Next].
Note:
b.
c.
revision 1 23
d.
Click [Next].
24 revision 1
21. Run SQL Server 2008 setup.exe again, and then click Installation in the left
pane.
22. Click the Add node to SQL Server failover cluster hyperlink.
23. On the Setup Support Rules window, validate that the tests return successful
results, and then click [OK].
revision 1 25
24. On the Product Key window, type the product key that came with your
installation media and click [Next].
Note:
During this step, the error message The current SKU is invalid may
display. This error typically occurs when you use media with a supplied
product key. A workaround for this error is to copy the installation media
onto a local disk, locate the DefaultSetup.ini file from the installation files,
and move the DefaultSetup.ini file to different location.
Note:
Because the DefaultSetup.ini file contains your product key, you will now
need to enter it manually.
25. On the Setup Support Rules window, click [Install]. Validate that the tests
return successful results. Click [Install].
26. On the License Terms window, select the I accept the license terms check
box, and then click [Next].
27. On the Cluster Node Configuration window, validate that the information for
the existing SQL Server 2008 cluster is correct. Click [Next].
26 revision 1
28. On the Service Accounts window, type the credentials for the service
accounts, and then click [Next].
revision 1 27
28 revision 1
Chapter 5:
Note:
2.
3.
4.
When prompted, read the License Agreement. If you agree to its terms:
5.
a.
b.
Click [Server].
Note:
6.
b.
c.
Click [Next].
revision 1 29
7.
8.
9.
b.
Change the license server name to the name of the cluster in the Provide
the location of your license server field. In this document,
MSCLUSTER was used.
c.
In the Port field, enter the number of the port to be used for access
control system communication. It is recommended that you accept the
default value of 8189. This should be the default value.
d.
Change the database location to the SQL Server name. In this document,
VSQL2008 was used.
e.
Click [Next].
Expand the Server Applications node, and scroll to the Web Application
Server feature.
b.
Click the down-arrow to open the pop-up menu for this feature and
select This feature will be installed on local hard drive.
c.
Click [Next].
A message may display informing you that the Web Application Virtual
Directories have been created.
If you want to cancel the installation and remove the language pack by
yourself, click [Cancel].
If you want to remove the language pack and continue the installation,
click [Remove & Continue].
10. After the installation is complete, the database installation utility and
Security Utility run. Complete the on-screen instructions to finish the
installation.
Note:
The database installation utility only applies to SQL Server Express Edition.
30 revision 1
License Installation
Important:
Prerequisite: In order to log onto License Administration, you must complete the
following steps:
1.
2.
3.
4.
Note:
HASP parallel dongles are no longer supported. If you are using a HASP
dongle, contact Lenel for a replacement dongle before installing the
OnGuard software.
revision 1 31
Important:
You must install the driver for the hardware key BEFORE attaching the USB
hardware key to the computer.
2.
3.
Install the SafeNet USB hardware key driver by doing the following:
a.
b.
c.
d.
The wizard continues, and the Setup Type window opens. Select the
Custom radio button, and then click [Next].
e.
The Custom Setup window opens. Make sure only the Parallel Driver
and the USB System Driver get installed. You do not need to install any
of the Sentinel Servers or Sentinel Security Runtime. Click on Sentinel
Protection Server, Sentinel Keys Server, and Sentinel Security Runtime
and then select, This feature will not be available. [Click Next].
f.
Click [Install].
g.
b.
c.
32 revision 1
1.
Obtain a new OnGuard license file. License files have the extension (*.xml,
*.lic, or *.lic.xml). Make sure you know where the license file is saved, as
you will need to know the location to successfully install the license.
2.
3.
Start License Administration. Click the Start button, and then select All
Programs > OnGuard 2010 > License Administration. If your browser
has JavaScript support enabled, a new window will open with the License
4.
5.
6.
In the License file field, type the name and location of the file containing the
license you want to install. You can use the [Browse] button to locate the
file. Click [Next].
7.
View the license in order to verify that the license is the correct license.
8.
Scroll down to the bottom of the window, and then click [Next].
If the license is not the correct license, click [Back] to go back and choose
another license file.
9.
Read the terms of the license agreement, and then select the Yes radio button
if you agree to the terms of the license.
10. Click [Finish]. The license will be installed. The entry that is displayed in the
Installed Licenses drop-down indicates the name of the product that the
license controls, and will be updated to include the new license.
11. Manually stop the LS License Server service. Make sure the service is still
configured for Manual startup.
12. Execute a manual failover of the cluster.
13. Repeat steps 1 - 12 on the second server.
Important:
When using Crystal Reports, the database name can begin only with a letter.
The rest of the name can contain only numbers, letters, and underscores.
Important:
revision 1 33
1.
2.
Click the Start button, then select All Programs > OnGuard 2010 >
Database Setup.
3.
You will be prompted for a valid LENEL login to SQL. Enter the password
and click [OK].
4.
5.
Select the Create new database radio button if you do not already have
a database. This option will install the access control-related reports,
tables, triggers, and default data.
b.
Click [Continue].
6.
7.
Apply patch for the OnGuard services to the registry by running the registry
file named OnGuard_Clustering_Services_Fix.reg from the Supplemental
Materials disc in High Availability > Microsoft Clustering.
2.
Note:
If the virtual computer name is not FAILOVER, the registry keys will need
to be further edited.
3.
Note:
a.
HKEY_LOCAL_MACHINE\SOFTWARE\Vinca\CoStandby\ClusterItems\
CLU_IPADDRS\192.168.1.111
34 revision 1
Note:
The directory that is named as the IP address does not have to be changed to
match your virtual cluster IP address, however, it can be if you would like.
b.
c.
d.
4.
5.
revision 1 35
36 revision 1
Chapter 6:
revision 1 37
38 revision 1
2.
3.
Note:
4.
On the Select Service window, scroll down, and then choose the service you
want to add to the cluster. Click [Next].
5.
On the Client Access Point window, type a Name for the service. In the
Address field, enter the static IP address for the service. Click [Next].
When adding the services to the cluster, service names cannot contain any
spaces.
revision 1 39
6.
On the next three windows, Select Storage, Replicate Registry Settings, and
Confirmation, click [Next] to complete the service configuration.
7.
8.
9.
After all the necessary services have been added to the cluster, your Failover
Cluster Manager should list the service, the status, and the owner.
10. (Optional) If you want to verify the configuration, execute a manual failover
to test and verify your cluster configuration. If you have configured
everything successfully, all the services should come online, you should be
able to access all OnGuard applications, and monitor configured hardware
from the active cluster server.
40 revision 1
Chapter 7:
Upgrade OnGuard
Assumptions:
This upgrade is for OnGuard 6.0.148 or later. For upgrades from earlier
versions, contact Technical Support if you require further assistance.
Prerequisites:
NET 3.5 SP1 is installed on both nodes before performing the upgrade
procedure.
2.
Important:
3.
Ensure the first node is the active server and all cluster groups are running on
that node.
4.
5.
6.
7.
8.
Verify that all of the OnGuard services on the inactive node are set to
Manual and are not running.
9.
Open the ODBC Data Source Administrator and verify the driver type is
SQL Native Client.
10. If the driver type is incorrect, remove the existing data source (after noting
the name) and add a new data source of the same name but using SQL
Native Client as the driver.
revision 1 41
7: Upgrade OnGuard
11. Open the Configuration Editor and verify the ConnectionString and
Lnl.LicenseSystem.Client.Host information are set correctly. For example,
the DataSource should be set to the Virtual SQL Server Name while the
Lnl.LicenseSystem.Client.Host should be set to the Virtual Server Name.
12. Start Database Setup.
13. Run the Form Translator Utility.
14. Move all cluster groups to the second node where OnGuard was just
upgraded.
15. Verify that the OnGuard applications work properly when served from the
second node.
16. Start the OnGuard installation on the first node (now inactive).
17. If any of the prerequisites recommend a restart, then perform a restart on the
first node. After any restarts resulting from prerequisite installations, the
installation should continue automatically. If it does not, run setup.exe again
from the OnGuard installation directory.
18. If the existing installation included Web Applications, you will be prompted
for the LS Application Server name during the upgrade. Enter the Virtual
Server Name rather than the current node name.
Important:
19. Verify that all OnGuard services on the inactive node are set to Manual
startup and are not running.
20. Open the ODBC Data Source Administrator and verify that the driver type is
SQL Native Client.
21. If the driver type is incorrect:
a.
b.
Add a new data source of the same name but using SQL Native Client
as the driver.
22. Open the Configuration Editor and verify that the ConnectionString and
Lnl.LicenseSystem.Client.Host information are set correctly. For example,
the DataSource should be set to the Virtual SQL Server Name while the
Lnl.LicenseSystem.Client.Host should be set to the Virtual Server Name.
23. Restart the first node.
24. Move all of the cluster groups back to the first node.
25. Verify that the OnGuard applications work properly when served from the
first node.
42 revision 1
Index
A
Clustering
description...................................................... 5
how it works .................................................. 6
installing and configuring OnGuard for ...... 29
SQL Server requirements .............................. 6
Configure
parallel port hardware key ........................... 31
USB hardware key....................................... 32
Configuring
NICs............................................................. 10
OnGuard for clustering ................................ 29
PERC controller........................................... 13
Configuring hardware ........................................... 9
Requirements
cluster............................................................. 6
OnGuard ........................................................ 6
SQL Server .................................................... 6
Upgrade OnGuard............................................... 41
USB hardware key .............................................. 32
Database
recovery ......................................................... 6
setting up OnGuard...................................... 33
S
Services
adding to cluster failover ............................. 37
registry fix.................................................... 34
Setting up the OnGuard database........................ 33
SQL Server requirements...................................... 6
U
H
Hardware configuration ........................................ 9
I
Install OnGuard...................................................
Install the OnGuard license.......................... 31,
Installing
hardware key................................................
license file....................................................
OnGuard for clustering ................................
29
32
31
31
29
L
License
configure the hardware key ......................... 31
License file.......................................................... 31
O
OnGuard
adding services to the cluster failover ......... 37
installation and configuration for clustering
services ................................................. 29
requirements .................................................. 6
service registry fix ....................................... 34
setting up the database ................................. 33
upgrade ........................................................ 41
revision 1 43