Patching a vCenter Server HA cluster

30/01/2018 1 Comment Reading Time: 3 minutes

patching-vc-ha-cluster-01

Once the HA cluster has been configured, the procedure for patching a vCenter Server HA cluster must follow specific steps to avoid services disruption.

The patching procedure is composed by three stages:

  • Patching the Witness node
  • Patching the Passive node
  • Patching the Active node

patching-vc-ha-cluster-02

 

Download latest patch

From the VMware website, download the patch to apply.

patching-vc-ha-cluster-03

Upload the downloaded .ISO file to a datastore accessible by the vCenter Server.

patching-vc-ha-cluster-04

Once the file upload has been completed, the patching procedure begins by putting the HA cluster in Maintenance Mode.

patching-vc-ha-cluster-05

 

Put the HA cluster in Maintenance Mode

Open the vSphere Web Client and right click the vCenter Server to patch. Select vCenter HA Settings option to access the settings area of the HA cluster.

patching-vc-ha-cluster-06

The vCenter HA status is now reported as Enabled. Click on Edit button.

patching-vc-ha-cluster-07

Select Maintenance Mode then click OK.

patching-vc-ha-cluster-08

vCenter HA is now in Maintenance Mode, replication still works but automatic failover is disabled. Note which VM currently holds the Active and Passive node role since this information is required later on when the Active node will be processed.

patching-vc-ha-cluster-09

 

Patching the Witness node

To proceed with Witness node patching, we need to mount the .ISO file to the processed node.

Right click the Witness node and select Edit Settings option.

patching-vc-ha-cluster-10

Expand CD/DVD drive 1 item and select Datastore ISO File from the drop-down menu.

patching-vc-ha-cluster-11

Select the patch .ISO file from the correct datastore then click OK.

patching-vc-ha-cluster-12

Click OK to save the configuration of the Witness node.

patching-vc-ha-cluster-13

Now SSH the Active node as root using a tool like PuTTY and launch the Bash shell with the command:

# shell

patching-vc-ha-cluster-14

From the SSH console of the Active node, connect the Witness node via SSH running the command:

# ssh root@ip_address_witness

patching-vc-ha-cluster-15

To install the patch on the Witness node, from the Appliance shell run the command:

# software-packages install --iso --acceptEulas

patching-vc-ha-cluster-16

The update may require several minutes depending on the patch size. When the patch has been installed successfully, disconnect the .ISO from the Witness node.

patching-vc-ha-cluster-17

Reboot the appliance to apply the patch with the command:

# shutdown reboot -r “VCHA Witness patch”

patching-vc-ha-cluster-18

 

Patching the Passive node

To install the patch on the Passive node, repeat same steps performed for the Witness node. Mount the .ISO file to the Passive node.

patching-vc-ha-cluster-19

From the Active node, connect the Passive node via SSH running the command:

# ssh root@ip_address_passive

Install the patch on the Passive node running the command:

# software-packages install --iso --acceptEulas

patching-vc-ha-cluster-20

When the update has been installed, disconnect the .ISO from the Passive node and reboot the Passive node:

# shutdown reboot -r “VCHA Passive patch”

patching-vc-ha-cluster-21

 

Patching the Last node

Since it is no possible to patch the Active node without service disruption, the patch installation procedure for the Active node is pretty the same but it requires an additional step first: performing a failover to switch Active and Passive nodes.

 

Perform failover

From vSphere Web Client, right click the vCenter Server to process and select vCenter HA Settings option. Click on Initiate Failover button. Although vCenter HA is in Maintenance Mode, the manual failover still works.

patching-vc-ha-cluster-22

Click Yes to proceed with failover.

patching-vc-ha-cluster-23

Wait some minutes until the failover process completes and make sure Active and Passive nodes have been switched.

patching-vc-ha-cluster-24

 

Install the patch

After the failover took place, the Active node become the Passive node and vice versa. To install the patch follow same procedure used for both Witness and Passive nodes.

Mount the .ISO file to the Last node.

patching-vc-ha-cluster-25

Connect the Last node via SSH and run the command:

# ssh root@ip_address_passive

patching-vc-ha-cluster-26

Install the patch on the Last node with the command:

# software-packages install --iso --acceptEulas

patching-vc-ha-cluster-27

When the installation has completed, disconnect the .ISO and reboot the Last node with the command:

# shutdown reboot -r “VCHA Active patch”

patching-vc-ha-cluster-28

When the Last node has been rebooted, you can perform the failback to restore Active and Passive nodes. From vCenter HA section, click Initiate Failover.

patching-vc-ha-cluster-29

When failback process has completed, exit the HA cluster from Maintenance Mode to restore the normal functionality. From vCenter HA section, click Edit.

patching-vc-ha-cluster-30

Select Enable vCenter HA option then click OK. Replication between Active and Passive nodes is enabled and automatic failover feature is restored.

patching-vc-ha-cluster-31

The HA cluster is now operating in a normal status.

patching-vc-ha-cluster-32

Keep the vCenter Server always up-to-date for having an healthy, secure and fully working environment.

signature

Related Posts

About The Author

Paolo Valsecchi

System Engineer, VCP-DCV, VCP-DM, vExpert, VMCE, VMCA, Veeam Vanguard. Working experience focused on VMware vSphere, Microsoft Active Directory, and backup/DR solutions.

One Response

  2. Eli 01/07/2019

    Very helpful, thank you! (If anyone is looking for a quick way to get the "Command>" prompt when consoling in, you can type 'appliancesh' at the root@vcenter [ ~ ]# prompt.)