Because this HA feature does not work across dispersed locations (due to their different IP addressing), both the primary and secondary systems must be on the same subnet.
To avoid any network failures that could affect Sheriff CSM high availability, nodes must be connected through a dedicated network cable, without any networking equipment.
Use isolated interfaces (for example, eth1) at each node.
Make sure that the primary and secondary nodes are running the same image of Sheriff CSM. For example, if the primary node is updated to Sheriff CSM version 5.3 from a previous version but the secondary node is a fresh install of Sheriff CSM version 5.3, HA will not work properly.
When setting up HA in Sheriff CSM Enterprise systems, the root user password must not contain the following characters: ? * [ ] { } ! \ ^ $ " / ' ` < > |
Both the primary and secondary nodes require their own dedicated NTP Server. These NTP Servers should be configured identically.
The primary and secondary nodes of a Sheriff CSM component in an HA deployment cannot share the same hostname.
You cannot change the IP or hostname of any component in a high availability system once configured.
You must register both nodes of each component.
Both the primary and secondary instances must have the same time zone setting.
Make sure that you always keep the secondary HA instance at parity with the primary Sheriff CSM instance.