Home
Support
Product Support
Cloud and Systems Management
Cisco IoT Field Network Director
Install and Upgrade Guides

Oracle-Based Deployment Guide for Cisco IoT FND, Release 5.x.x and Later

View all Saved Content

PDF

Is this helpful?

Helpful Unhelpful

Feedback

Thank you for your feedback. Your response has been recorded.

Ask about this document

Cisco Configuration Guide, Release 4.2

Table of contents

Expand all sections

About this document

Recommended computing resources

Minimum system requirements
Oracle DB server hardware requirements
Tunnel provisioning servers hardware requirements
Application servers hardware requirements
Obtain Cisco licenses for Oracle DB on Cisco IoT FND
Install the required Linux packages for Oracle database on Cisco IoT FND server
RPM package requirements
Configure the NTP service
Cisco IoT FND ISO image zip file contents
Verify the signature of ISO and RPM images

Certificates

Cisco IoT FND certificates
Types of certificates
Role of certificates
Keystore
Generate and export certificates
Install certificates on Cisco IoT FND and TPS proxy servers

Properties used in Cisco IoT FND and TPS configuration

Install Cisco IoT FND on Oracle DB

Install and setup Cisco IoT FND DB
Install and setup the SSM
Install and set up Cisco IoT FND
Install Cisco IoT FND
Set up Cisco IoT FND
Configure the database settings
Configure the standby DB settings
Configure the Cisco IoT FND DB password
Configure the keystore password
Change the web root user password
Configure the FTPS settings
Run the Cisco IoT FND DB migration script
Access Cisco IoT FND
Cisco IoT FND CLIs
Clean up the Cisco IoT FND database
Cisco IoT FND helper scripts
Cisco IoT FND TPS Proxy
Backup and restore Cisco IoT FND DB

Upgrade Cisco IoT FND

Pre-upgrade checklist
Verifying certificates and system requirements
Upgrade Cisco IoT FND
Upgrade the Cisco IoT FND TPS proxy server
Post-upgrade checklist
Upgrade Cisco IoT FND in HA configuration or clustered mode

HA for Cisco IoT FND

HA for Cisco IoT FND
Restrictions
Solution components
Cisco IoT FND server HA
Load balancer
Load-Balancing policies
DB HA
Set up the Cisco IoT FND DB for HA
Set up the standby DB
Set up the primary DB
Set up the observer
Validate Cisco IoT FND Oracle Database HA
Set up the Cisco IoT FND DB for HA
Disable Cisco IoT FND DB HA
Tunnel HA
HER redundancy
Configure tunnel provisioning policy
Define a policy for mapping interfaces between FAR and HER
FAR tunnel addition template
HER tunnel addition template
FAR redundancy
PKI
Troubleshoot

Cisco IoT FND server HA

Updated: March 2, 2026

Want to summarize with AI?

Overview

This topic explains how to achieve high availability (HA) for Cisco IoT FND servers using multiple application servers and load balancers, including configuration requirements and certificate considerations.

Cisco IoT FND Server HA can be achieved by having two or more Cisco IoT FND application servers that are balanced using load balancers.

Load balancers can take in incoming connections, monitor the load on each Cisco IoT FND and serve traffic accordingly.

Note
If there are cgmesh keys, enter these parameters in /opt/cgms/server/cgms/conf/cgms.properties file to fetch mesh keys from the primary CGR in a HA setup.

cgr-ha-fetch-mesh-key-attempts = 3 <-- you can modify the number of attempts to fetch the mesh keys

cgr-ha-fetch-mesh-key-delay-mins = 1 <-- number of minutes (interval) between mesh-key-attempts

The following configuration is required for Cisco IoT FND application server HA.

Configure at the /opt/cgms/bin/cgms.conf file that specifies the CLUSTER_BIND_ADDR and UDP_MULTICAST_ADDR

CLUSTER_BIND_ADDR= a.b.c.d

UDP_MULTICAST_ADDR= w.x.y.z

where CLUSTER_BIND_ADDR is the IP address of the server itself and UDP_MULTICAST_ADDR must be the same on all instances. It can be either an IPv4 multicast address or an IPv6 address which is not used in the network.
See Certificate requirements for Cisco IoT FND server HA deployment for more information on generating certificate for Cisco IoT FND server HA deployment.
In FND UI, the provisioning settings must point to the cluster VIP IP of the FND servers. For example, if there are fndserver1 and fndserver2, and they are served by fndserverhaVIP.ciscolab.com, then provide it in Admin > System Management > Provisioning Settings.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.