How do I move the Log Archive Component (NETIQKB71179)

  • 7771179
  • 31-Jul-2008
  • 11-Aug-2008


Security Manager 6.0

Log Archive

All service packs


The purpose of the article is to provide steps to replace an existing Log Archive Server with a new Log Archive Server.


Steps to install the new LAS server:

  1. Install the Log Archive Component using the SM installation files.
  2. Install the current SM Service Pack your environment is using.
  3. Run the Log Archive Configuration Utility and setup a new Log Archive Partition by clicking the "add" button in the "log archives" section.

To direct the data to the new LAS server:

  1. Open the Monitor Console and run The Configuration Wizard > Log Manager > Configure Log Manager.
  2. For each Central Computer listed, use the Specify button to change each Central Computer to the new Log Archive Server.
  3. Click Finish and close the Configuration Wizard.
  4. Restart the Security Manager Core service.

Note: At this point the new Log Archive server will be accepting archival data for storage.

Steps on the old Log Archive Server:

  1. Open Computer Management.
  2. Expand Services and Application > Message Queuing and click on Private Queues. Verify these queues are empty. It may take 5 minutes for these queues to empty. When they are at zero, proceed to the next step.
  3. Open the Log Archive Configuration Utility and set the active partition to read only.
  4. Apply and close the Log Archive Configuration Utility.
  5. Copy the NetIQSMLogArchive directory (or the directory you?re using for the active partition) to your new server.
  6. The server is now ready to be taken offline.

Steps on the New Log Archive Server:

  1. Run the Log Archive Configuration Utility.
  2. Add the partition from the old Log Archive server.
  3. Make sure the old partition is set to read only.
  4. Apply and then close.

Verifying the new Log Archive Server is collecting data:

  1. On the new Log Archive Server, open Windows Explorer and explore to the directory containing the log archive partition. ( By default its named: NetIQSMLogArchive)
  2. Within the NetIQSMLogArchive directory you should see a folder with the current date. Within this folder, check that NDS files are being created. If you see them, data is being transmitted and stored on in the Log Archive.


Additional Information

Formerly known as NETIQKB71179

If you need further details on the installation process of the Log Archive Component, please refer to the Security Manager Installation Guide.