ACS Distributed System故障解决

故障描述

目的：

两个ACS之间通过Distributed System建立主备关系

操作步骤：

System Administration > Operations > Local Operations > Deployment Operations 输入主节点ACS地址，用户名及密码

报错信息：

This System Failure occurred: Registration failed due to Invalid Certificate. Your changes have not been saved.Click OK to return to the list page.

故障产生原因：

When you enable trust communication in an ACS deployment, the primary and the secondary ACS instances verify their respective CA certificates before establishing a secure tunnel for communication. If the corresponding CAs are valid, they establish a secure tunnel between them. After a successful registration, the primary instance database is replicated to the newly added secondary instance. If the CA of an ACS instance is invalid, the ACS deployment rejects that ACS instance. You can enable trust communication on both the primary and secondary ACS instances. Or, you can enable it on either the primary ACS instance or the secondary ACS instance.

解决办法：

System Administration > Configuration > Global System Options > Trust Communication Settings

去掉勾选Enable Nodes Trust Communication 选项。

成功结果示例