You cannot upgrade from Advanced Authentication 5.0 to 6.x. However, you can export the configurations of the database from Advanced Authentication 5.6 to 6.x. After you install Advanced Authentication 6.x, you can import all configuration details from 5.6.
For example, to upgrade from Advanced Authentication 5.5 to 6.x, you must first upgrade from Advanced Authentication 5.5 to 5.6. Then, install Advanced Authentication 6.x and import the configuration details from 5.6.
For information about how to export and import the configurations, see Exporting and Importing the Database in the Advanced Authentication - Tenant Administration guide.
To migrate 5.0 to Advanced Authentication 6.x, perform the following steps:
Deploy the Advanced Authentication Global Master 6.x server. For more information about deploying the Global Master, see Configuring Global Master Server.
Export the database of Advanced Authentication 5.6 and import it to the database of Advanced Authentication 6.x.
For information about how to export and import the configurations, see Exporting and Importing the Database
in the Advanced Authentication - Tenant Administration guide.
NOTE:The first 6.x server where the database is imported becomes the new Global Master server of the cluster by default.
Deploy other Advanced Authentication servers in the cluster.
For more information about clustering, see Configuring a Cluster in the Advanced Authentication - Tenant Administration guide.
Reconfigure the third-party integrations to point them to the new server address.
For example, Advanced Authentication integrates with ADFS through the SAML or OAuth event. After you migrate Advanced Authentication from 5.6 to 6.x, you must redirect all these third-party integrations to the new 6.x server.
Create the _aav6 DNS service location records for the new servers of the 6.x cluster.
For more information about how to set the DNS records in Windows Client, see Setting a DNS for Advanced Authentication Server Discovery
in the Advanced Authentication - Windows Client guide.
Upgrade the client packages on the endpoints.
NOTE:
It is recommended to not migrate all clients together. Instead, first migrate a few clients and complete the testing for these. Then upgrade the other set of clients and perform the testing. After that, complete the migration of the remaining clients.
Do not delete the _aaa service location records from DNS for the servers available in the Advanced Authentication 5.6 cluster until all endpoints are migrated to Advanced Authentication 6.x.