My PCS instance is hosted in AWS. Since I only have 1 instance running, the failure of this instance implies down time.
My goal is to achieve a redundant architecture to avoid that without introducing vTM in the architecture.
AWS best practices suggest creating multiple EC2 isntances and put them behind a load balancer.
However, I have 1 issue with this setup: the license. Since I have one license for PSA, another license for concurrent vpn users, if PCS #1 fails (where both previously mentioned licesnes are installed) and the traffic is sent to PCS #2, how are the licenses transfered to the other one? How do yo automate this? If this is impossible to implement, do you suggest other approaches?
Thanks in advance.
To have an uninterrupted PCS deployment, you must have a High Availability Cluster on your deployment. We offer 2 options: Active/Passive and Active/Active deployments.
For your request, you don’t need to have a new set of licenses if you use option 1: Active/Passive Cluster. In addition, one caveat is to have the same PCS appliance in a cluster. Also if it fails you have 20-day grace period to the licenses as long as your active/passive servers are in a cluster.
For further details of our high availability and licensing solution download the PCS Licensing Managemeng Guide at https://www-prev.pulsesecure.net/techpubs
9.0R3 PCS and PPS License Management Guide