Chapter 2. Disaster scenarios in IdM
Prepare and respond to various disaster scenarios in Identity Management (IdM) systems that affect servers, data, or entire infrastructures.
Disaster type | Example causes | How to prepare | How to respond |
---|---|---|---|
Server loss: The IdM deployment loses one or several servers. |
| ||
Data loss: IdM data is unexpectedly modified on a server, and the change is propagated to other servers. |
| ||
Total infrastructure loss: All IdM servers or Certificate Authority (CA) replicas are lost with no VM snapshots or data backups available. |
| This situation is a total loss. |
A total loss scenario occurs when all Certificate Authority (CA) replicas or all IdM servers are lost, and no virtual machine (VM) snapshots or backups are available for recovery. Without CA replicas, the IdM environment cannot deploy additional replicas or rebuild itself, making recovery impossible. To avoid such scenarios, ensure backups are stored off-site, maintain multiple geographically redundant CA replicas, and connect each replica to at least two others.