Skip to content

Deploy a PingDataSync Failover Server

You'll use Docker Compose to deploy a PingDirectory and PingDataSync stack. PingDataSync will synchronize data from a source tree on a PingDirectory instance to a destination tree on the same PingDirectory instance. The entries from ou=source,o=sync to ou=destination,o=sync will be synchronized every second. Then you will scale up the PingDataSync service to enable failover, so that if an active PingDataSync server goes down, a second server will automatically become active and pick up where the first left off.

Note: Configuring failover requires a PingDataSync version of at least 8.2.0.0.

What You'll Do

  • Deploy the PingDirectory and PingDataSync stack.
  • Scale up the PingDataSync service
  • Test the deployment.
  • Bring down or stop the stack.

Prerequisites

  • You've already been through Get Started to set up your DevOps environment and run a test deployment of the products.

Deploy the PingDirectory and PingDataSync Stack

  1. Go to your local devops/pingidentity-devops-getting-started/11-docker-compose/12-sync-failover-pair directory. Enter:

    docker-compose up -d
    
  2. Check that PingDirectory and PingDataSync are healthy and running:

    docker-compose ps
    

    You can also display the startup logs:

    docker-compose logs -f
    

    To see the logs for a particular product container at any point, enter:

    docker-compose logs <product-container-name>
    
  3. Scale PingDataSync instances

    docker-compose up -d --scale pingdatasync=2
    

Test Deployment

The stack will sync entries from ou=source,o=sync to ou=destination,o=sync every second. One of the two sync servers will be considered active, while the other remains on standby.

  1. In one terminal window, tail the logs from the PingDataSync servers:

    docker-compose logs -f pingdatasync
    
  2. In a second window, make a change to the ou=source,o=sync tree:

    docker container exec -it 12-sync-failover-pair_pingdirectory_1 /opt/out/instance/bin/ldapmodify
    dn: uid=user.0,ou=people,ou=source,o=sync
    changetype: modify
    replace: description
    description: Change to source user.0
    
    <Ctrl-D>
    
  3. You'll see messages in the PingDataSync log showing ADD/MODIFY of the user synced to the ou=destination,o=sync tree. To verify this, enter:

    docker container exec -it 12-sync-failover-pair-sync_pingdirectory_1 /opt/out/instance/bin/ldapsearch -b uid=user.0,ou=people,ou=destination,o=sync -s base '(&)' description
    

    Entries similar to this will be returned:

    # dn: uid=user.0,ou=People,ou=destination,o=sync
    # description: Change to source user.0
    
  4. In the log messages displayed in step 3, you'll see that one of the two PingDataSync servers handled the change. You can stop the container that handled the change to see future operations handled by the remaining PingDataSync server:

    docker stop 12-sync-failover-pair_pingdatasync_1
    

    You can now repeat steps 2 and 3 to verify that the remaining PingDataSync server is now active. It may take a moment to become active and handle the change after the first server is stopped.

Clean Up

When you no longer want to run this stack, you can either stop the running stack, or bring the stack down.

To stop the running stack without removing any of the containers or associated Docker networks, enter:

docker-compose stop

To remove all of the containers and associated Docker networks, enter:

docker-compose down

To remove attached Docker Volumes

docker volume prune