I recently did a license upgrade on an active/standy pair of 5520's (8.04) for a 2 to 50 SSL VPN upgrade. According to Cisco Document #70390 it should have been a no brainer...but it wasn't. According to the doc upgrading the activation key of the primary then doing a wr mem along with a physical shutdown causes the secondary to become active. But in my experience as soon as the new activation key was entered failover broke. This caused the secondary to remain inactive and I had to reboot both to get the network back up (of course only one could be active and so I took the secondary offline so I could upgrade it via serial). So I brought the secondary up (after activation key upgrade) and failover did not kickin. I did a sh failover on both machines and both said failover was off. I would do the failover command on the primary and secondary...nothing. It wasn't until I did a no failover active on the secondary that failover finally started to work properly.
Anyone else have this experience? I have a ticket open with Cisco for the Doc # 70390 for clarification via my experiences. Any input would be appreciated on this. I was working on the assumption that I would have 2 to 3 minute outage as the primary rebooted but turned out to be a longer outage than anticipated and higher ups were pissed...