How to Upgrade Neverfail Servers in an Active Directory Domain with Secure Policies Enforced

Follow

Summary

This Knowledgebase article provides information about how to upgrade Neverfail servers in a secure domain and enforce policies on domain servers.


More Information

The usual procedure for performing upgrades requires a Management IP, but passive servers in secure domains are not configured with Management IPs. To work around this requirement, perform the following procedure before performing the upgrade on secure domains.

Procedure

WARNING ! You should try other methods first and use this procedure only as a "last resort."
  1. In Active Directory Users and Computers Microsoft Management Console, move the Heartbeat Server into an Active Directory Organizational Unit container that does not enforce the Secure policy. Create the container if one does not exist.
  2. Temporarily configure DisablePasswordChange on the passive server from 0 to 1.
  3. Perform the following command: gpupdate.exe /force .
  4. Perform the appropriate upgrade procedure described in Knowledgebase Article #1797 How to Upgrade a Protected Application with Neverfail Heartbeat Installed .
  5. In Active Directory Users and Computers Microsoft Management Console, move the Heartbeat Server into the original Active Directory Organizational Unit.
  6. Reset DisablePasswordChange from 1 to 0 on the passive server.
  7. Perform the gpupdate.exe /force command again.

Applies To

Neverfail Heartbeat version 5.5 and more recent.


Related Information

This Knowledgebase article supplements Knowledgebase Article #1797 How to Upgrade a Protected Application with Neverfail Heartbeat Installed .

KBID-1826

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.