Skip to main content
SHIFT/CTRL
Back to articles
ARTICLE · ANALYTICAL · UNIFI · MIGRATION

Migrating a multi-site UniFi controller to UniFi OS Server

For years the natural home for an MSP or any multi-site operator running UniFi was a self-hosted UniFi Network application — the classic controller on a Linux VM, a Windows box, or a hosted instance somewhere. Ubiquiti is now steering everyone away from that: its own guidance recommends running UniFi Network on a UniFi OS platform, new platform features land only on UniFi OS, and the self-hosted path forward is a piece of software called UniFi OS Server. The data migration itself is reassuringly boring — back up, restore, re-adopt, mind one changed port. The thing nobody warns you about is what happens to per-site admin control. At fifty sites, assigning an admin to a single site turns into a scrolling guessing game, and Ubiquiti’s real answer is not a better picker but a different access model entirely. This is the migration decision for multi-site operators: what genuinely changes, what you gain, what regresses, and how to move without stranding access to a fleet of client sites.

PublishedJune 21, 2026
Read time~13 minutes
TopicUniFi · Migration · Multi-site & MSP
AudienceMSPs · multi-site IT teams · network engineers
§ 01 · Not a new controller — the old one, in UniFi OS clothing

What UniFi OS Server actually is.

The first source of confusion is the name, so it is worth being precise about what you are migrating to.

UniFi OS Server lets you self-host the UniFi Network application together with key UniFi OS platform features such as Organizations, IdP Integration and Site Magic SD-WAN.¹ It is completely licence-free and available to all UniFi users, and Ubiquiti describes it as functionally the same as its paid Official UniFi Hosting service; the key difference is that UniFi OS Server is fully self-managed — you own installation, maintenance and uptime, where Official UniFi Hosting is run for you in Ubiquiti’s cloud.¹

Two scope points decide whether it fits at all. First, it is Network-only: Ubiquiti is explicit that all other UniFi applications — Protect, Access, Connect, Talk — must be hosted on a compatible UniFi Console, not on UniFi OS Server.¹ If part of your value to a client is camera or door-access management on the same box, UniFi OS Server will not host it. Second, under the hood it is the same Network application you already run, simply delivered through container orchestration rather than as a standalone install — which is why a backup from your old controller restores into it cleanly. As one operator put it, the only thing that catches people off guard is that you reach the Network application on port 11443 (the UniFi OS Server console URL) instead of the old 8443. Ubiquiti ships UniFi OS Server with installers for Windows, macOS and Linux (both x86-64 and arm64), so adopting it does not narrow your choice of host OS versus the standalone application.¹

So UniFi OS Server is best understood not as a new controller but as your existing Network controller, re-housed inside the UniFi OS shell so it can pick up the platform features — and the platform’s management model — that Ubiquiti now develops only there.

§ 02 · Why you’ll move eventually

The standalone application is in maintenance mode.

The case for migrating is less about a single feature than about trajectory. Ubiquiti’s own self-hosting documentation already recommends running UniFi Network on a dedicated console compatible with UniFi OS, citing the compatibility risks of third-party hardware and software.² Beyond that, the practitioners and hosting providers who track Ubiquiti’s release notes describe the standalone Network application as having entered maintenance mode: it continues to receive security patches and bug fixes, but new functionality — Site Magic, Teleport VPN, UniFi Identity, Fabrics — is being built only for UniFi OS, and Ubiquiti now points users toward UniFi OS Server when it publishes new releases.¹⁰¹¹

That makes staying on the standalone application a slowly-depreciating position rather than a stable one. There is no announced end-of-life and no deadline forcing your hand this quarter — but the direction is unambiguous, and the question for a multi-site operator is when and how to move, not whether. The rest of this article assumes you have accepted that and want to do it well.

§ 03 · The migration itself is the easy part

Backup, restore, re-adopt — mind the port.

The data move is genuinely straightforward, and for small estates it is close to trivial. The shape of it:³

  1. Back up properly first. From the existing Network Server, download a server-wide backup (.unf) at Settings → Control Plane → Backups (a settings-only backup is enough; add a short historical backup if you want the data). Snapshot the old VM too, so you can roll back if anything goes sideways.
  2. Stand up UniFi OS Server and restore. Install UniFi OS Server, complete the setup wizard without restoring inside the wizard, launch the Network application, then restore the .unf at Settings → System → Backups. Sites, devices and clients re-appear within a few minutes.
  3. Get the devices to re-adopt. If the new host resolves at the same hostname the devices already inform to, they re-adopt automatically — no per-device set-inform. Otherwise use Override Inform Host on the old controller, a DHCP option-43 entry, or a bulk SSH script to point devices at the new address.³¹⁰ A device that still shows Managed by Another Console after the restore is factory-reset and re-adopted (the fallback the docs give when the restore itself doesn’t reclaim it).³

The traps are operational, not conceptual: close the old Network Server before installing UniFi OS Server; reach the new Network application on 11443, and note captive portals now serve on 8444 (changed from 8843); and do not clone the UniFi OS Server VM except for genuine high-availability, because cloned VMs share the same Site Manager and Fabrics tokens and will behave unpredictably.¹ Sizing is modest — a 4-vCPU, 4–8 GB, 40 GB-plus SSD VM comfortably carries around fifty small-to-mid sites, scaled up with device count.

One honest field note before you assume it is painless at scale: small two-site migrations via backup-and-restore “just work,” and larger multi-site restores generally do too — but this path is not officially blessed for large multi-site deployments, and the reports include real wrinkles, the most important of which is the subject of the next section. Keep the old controller running as a fallback until you have verified every site.

§ 04 · The part nobody warns you about

At fifty sites, per-site admin assignment becomes a guessing game.

Here is the migration’s sharpest edge, and it is the reason some MSPs have paused the move. An operator running roughly fifty sites who migrated from the classic Network controller to UniFi OS reported that the fundamentals of user and site administration feel unfinished — and the specific failure is per-site admin assignment. When you add a user and grant them access to one site, the role picker is a long, scrolling list of roles that are not clearly tied to a site name; “Site Admin” appears multiple times with no visible site context, so you scroll and guess which entry maps to the site you actually want. At fifty sites that is slow and error-prone. And it is not an isolated gripe: in a separate community report, operators who moved their sites onto a self-hosted UniFi OS Server found that admins could initially only be scoped to the Default site — not every migrated site showed up under Admins to assign against.¹⁸

A workaround circulates in the same community discussion, and it is exactly as unintuitive as it sounds: in the scrolling list, the correct site-scoped Site Admin entry is the one sitting directly above the clearly-labelled Hotspot Operator for [site name] entry — the Site Admin line itself just omits the site name. Pick that one and the admin is scoped to that single site. The cleaner route is to add admins from Site Manager at unifi.ui.com — People → New Admin, select one or multiple sites, and assign per-application permissions, with a Site Specific option to differ them per site.

For a single-site shop, none of this matters. For an MSP, per-site admin scoping is the whole game — it is the difference between giving a client (or a regional technician) access to their site and accidentally handing them global access to every client you run. The classic controller did per-site assignment by default; the transition made it clumsy.¹² That is the gap to plan around — and the reason to do the next section before you migrate anything important.

§ 05 · Ubiquiti’s real answer: Fabrics

The fix isn’t a better picker — it’s a different model.

The durable point — the one that survives whatever Ubiquiti does to the per-site list next month — is that Ubiquiti is not trying to perfect per-site hand-assignment. It is moving multi-site access onto a different construct: UniFi Fabrics.

A Fabric lets you define roles once, at the Fabric level, and apply them consistently across all applicable sites, instead of assigning access site by site. Admin permissions within a Fabric range from full administrative access through view-only to granular, application-specific permissions; roles are created once and bound to a chosen set of sites; and people can be added manually or — the part that matters most for an MSP — synchronised from an identity provider over SCIM, with SAML authentication, so onboarding and offboarding a technician becomes a change in your IdP rather than a manual sweep across fifty consoles. Above the Fabric sits the Organization, the higher-level grouping that UniFi OS Server supports.¹ UniFi’s documentation now frames Fabric-level management as the way to scale administrative access without duplicating configuration per site.

The implication for the migration decision is the one most teams miss: moving to UniFi OS Server is not merely “lift and shift the controller.” It is an invitation to re-platform your access model onto Fabrics and, ideally, your identity provider. Done deliberately that is more powerful than the old per-site model — define once, sync from your IdP, offboard cleanly — but it is a genuinely different mental model with real setup, and it will not feel like the per-site admin assignment you are used to. Plan for the Fabric model; do not expect to recreate fifty ad-hoc Site Admins by hand and have it feel the same. And because the raw per-site UI was rough in early 2026 while this model was still landing, treat the current state as something to pilot and verify, not to take on faith — including from this article.

§ 06 · Self-host, cloud-host, or hardware?

“Self-managed” means you own uptime, patching, and a target.

“Migrate to UniFi OS Server” quietly assumes self-hosting is the right destination. For an MSP, it often is not the only sensible one. There are three places the modern UniFi OS experience can live:¹²

  • Self-hosted UniFi OS Server — licence-free, you own the VM and everything on it.
  • Official UniFi Hosting — functionally the same, run in Ubiquiti’s cloud on a subscription, with Ubiquiti owning uptime and OS patching.
  • A hardware console or CloudKey Enterprise — an on-premise appliance, optimised by Ubiquiti to run UniFi Network and (on full consoles) the other applications.

The security reality should weigh heavily here, and it is the same argument we make in our management-plane hardening guide. A self-hosted UniFi OS Server is an internet-facing management plane, and UniFi OS itself was squarely in the 2026 CVE streak — the May and June advisories named UniFi OS Server among the affected products, fixed in specific releases you are responsible for applying.¹⁴¹⁶¹⁷ Self-managed means you patch it the day a CVSS-10 advisory drops, you keep it off the open internet, and you segment, back up and monitor it. Official UniFi Hosting trades a subscription for offloading that operational burden. It is no accident that some managed hosts argue, bluntly, that MSPs should not self-host controllers for client networks at all — that uptime and security are too consequential to do by hand.¹³ That view is self-interested, since those companies sell hosting, but the underlying point about operational ownership is sound.

So the calculus for a multi-site operator is honest and specific: self-host UniFi OS Server if you have the operational maturity to run a hardened, patched, monitored, backed-up management plane and you want zero per-controller cost. Otherwise, Official UniFi Hosting — or a managed host such as HostiFi — buys you someone else owning uptime and OS patching for a predictable fee.¹¹

§ 07 · The migration we’d run for a multi-site operator

Pilot the access model before you move the fleet.

The data restore is the part you have already seen is easy. The discipline is everything around it.

  1. Inventory — including the access map. Record the controller and Network versions, the UI account that holds Owner, SSH credentials, site count and device count — and, crucially, your current admin-to-site map: who has access to which sites today. You cannot rebuild access cleanly if you never wrote down what it was.
  2. Choose the destination first. Self-hosted UniFi OS Server, Official UniFi Hosting, or hardware — decide using §06 before you touch anything, because it changes the rest of the plan.
  3. Pilot on a copy, and test admin scoping. Stand up a non-production UniFi OS Server, restore a backup, and assign an admin to a single client site before you migrate the fleet. This is where the RBAC reality bites; confirm you can scope an admin to one site — via Site Manager → People, or via a Fabric — before it is your clients’ access on the line.
  4. Design the access model up front. If you are adopting Fabrics or an IdP, lay out the roles and (where used) the SCIM/SAML mapping now. Do not plan to recreate fifty Site Admins by hand under time pressure.
  5. Migrate the data. Backup .unf → install UniFi OS Server → restore → re-adopt (same-host or Override Inform Host), reaching the new app on 11443. Keep the old controller as a fallback and verify every site’s devices and admins reappear.
  6. Re-establish access deliberately. Rebuild and verify per-site or Fabric roles; confirm each client and technician sees only their own sites; remove any “just give them global for now” shortcuts before they calcify.
  7. Harden before you expose. MFA on every account, a segmented management VLAN, no WAN port-forward, and patched to current UniFi OS — the full posture from our hardening guide.¹⁴
  8. Decommission the old controller once everything is verified — forget the migrated devices on the old side, or remove it entirely.
§ 08 · Honest caveats

Where this is firmer, and where it’s softer.

  • The per-site admin UI is a moving target. The “messy scrolling list” reports are from early 2026, and Ubiquiti is actively building the Fabric and Organization model around exactly this problem — so the raw experience may be materially better by the time you read this. Pilot and verify against the current build; bet on the model shift, not on the bug.
  • “Maintenance mode” is a characterisation, not an official EOL. Ubiquiti still ships security and bug fixes for the standalone Network application and has announced no end date. The trajectory (new features only on UniFi OS) is clear; there is no deadline forcing the move today.¹⁰¹¹
  • UniFi OS Server is Network-only. If your service depends on Protect cameras or Access door control on the same box, UniFi OS Server will not host them — that requires a hardware console.¹
  • Large multi-site backup-and-restore works but is not officially blessed for scale. Reports are positive for many operators yet include the per-site admin-scoping quirks covered above; treat a big migration as a tested, scheduled maintenance event, not a casual restore.¹⁸
  • Self-hosting is an operational commitment, not a free lunch. You own uptime, OS patching of an actively-targeted management plane, backups and security. If that is not a fit, the subscription options exist for a reason.¹³¹⁴
  • Provider perspectives are self-interested. The hosting companies cited here sell hosting and migration; their facts hold up, but weigh the “don’t self-host” advice against your own operational maturity rather than taking it at face value.¹³
  • Do not strand yourself or your clients. Keep a known-good Owner account and a tested management path throughout. The fastest way to turn a migration into an outage is to lose scoped admin access to fifty client sites at once.

None of this changes the headline. UniFi OS Server is where Ubiquiti is taking self-hosted UniFi, the data migration is a backup-and-restore that mostly takes care of itself, and the real work — the work that decides whether the move is smooth or a fortnight of cleanup — is rebuilding multi-site administration on the new model before you cut over, not after.

References [18]
  1. [1]Ubiquiti Help Center — Self-Hosting UniFi. Primary source for what UniFi OS Server is: a licence-free, self-managed way to self-host the UniFi Network application plus key UniFi OS features such as Organizations, IdP Integration and Site Magic SD-WAN; the statement that all other UniFi applications must run on a compatible console; functional parity with Official UniFi Hosting; the captive-portal port change to 8444; the cross-platform (Windows / macOS / Linux, x86-64 and arm64) installers; and the warning not to clone VMs because of shared Site Manager and Fabrics tokens. help.ui.com — Self-Hosting UniFi
  2. [2]Ubiquiti Help Center — Self-Hosting a UniFi Network Server. Source for Ubiquiti’s recommendation to run UniFi Network on a dedicated UniFi OS console, the standalone application’s Windows/macOS/Linux support and MongoDB requirement, the note that adopted devices keep functioning if the application is stopped, and the existence of CloudKey Enterprise and the Official UniFi Hosting subscription as scalable alternatives. help.ui.com — Self-Hosting a UniFi Network Server
  3. [3]Ubiquiti Help Center — Backups and Migration in UniFi. Source for the server-wide backup-and-restore migration method (the self-hosted Network Server’s .unf backup), the Override Inform Host step for pointing devices at a new console, and the Managed by Another Console / factory-reset-and-re-adopt fallback. (DHCP option-43 and SSH set-inform adoption mechanics are documented in Ubiquiti’s separate device-adoption / Layer-3 adoption articles, which this article links out to.) help.ui.com — Backups and Migration
  4. [4]Ubiquiti Help Center — UniFi Roles Explained: Admins and Users/Members. Source for the role model — Owner, Super Admin (treated as equivalent to Owner for security), Hotspot Operator, Door Attendant, and the Admins-versus-Users distinction — and for its reference to UniFi Fabrics as a centralised, define-once way to manage roles across multiple sites (the Fabric model is documented in full by refs [5] and [6]). help.ui.com — UniFi Roles Explained
  5. [5]Ubiquiti Help Center — Adding Admins in UniFi. Source for the Site Manager admin workflow (People → New Admin, selecting one or multiple sites, per-application permissions, and the Site Specific option), and for the statement that with Fabrics admin access is managed centrally at the Fabric level and can be driven by IdP group membership. help.ui.com — Adding Admins
  6. [6]Ubiquiti Help Center — Managing UniFi Fabric People, Roles, and Permissions. Source for the Fabric RBAC mechanics: defining roles once and binding them to selected sites, the spectrum of admin permissions from full to view-only to application-specific, and identity-provider integration via SCIM synchronisation and SAML authentication for onboarding and offboarding. help.ui.com — Managing UniFi Fabric People, Roles, and Permissions
  7. [7]Ubiquiti Community — UniFi OS MSP user/site management is a step backwards (50-site deployment), January 2026. Primary practitioner source for the core pain point: after migrating ~50 sites, per-site admin assignment presents a long scrolling role list in which “Site Admin” appears repeatedly without clear site context, forcing the operator to scroll and guess which entry maps to which site; and for the unintuitive community workaround that circulates in the same discussion (the site-scoped Site Admin entry sits directly above the labelled Hotspot Operator for [site] entry). A single practitioner’s experience, cited as such, not an Ubiquiti statement. community.ui.com — MSP user/site management thread
  8. [8]Ubiquiti Community — UniFi Network Application to UniFi OS Server migration via network backup file, January 2026. Practitioner source for the report that the same UniFi Network application is restored into UniFi OS Server by the usual backup-and-restore, that the application is reached on port 11443 instead of 8443, and that small migrations succeed while a large multi-site restore via this method is not covered by official documentation. (UniFi OS Server’s containerised, Podman-based packaging is documented in third-party install guides such as Crosstalk Solutions, not in this thread.) community.ui.com — backup-file migration thread
  9. [9]IT Pro Expert — Migrate UniFi Legacy Network Server to UniFi OS Server (Self-Hosted), 2025. Source for the same-host migration walkthrough (back up settings-only, fresh Ubuntu 24.04 install, restore the settings backup, automatic device re-adoption without per-device set-inform) and the author’s practical sizing guidance (≈4 vCPU / 4–8 GB RAM / 40 GB-plus SSD as a recommended spec for roughly fifty small-to-mid sites, above its stated 2-core / 2 GB bare minimum). itproexpert.com — UniFi OS Server migration
  10. [10]SimpliWiFi — UniFi OS Server vs Self-Hosted UniFi Network, March 2026. A commercial UniFi-hosting agency’s blog, cited for its characterisation of the standalone Network application as being in maintenance mode (security and bug fixes only) while new features such as Site Magic, Teleport VPN and UniFi Identity are developed only for UniFi OS, and for the device-inform / DHCP option-43 migration detail. The “maintenance mode” framing is the vendor’s characterisation, not an official Ubiquiti designation. simpliwifi.agency — UniFi OS Server vs self-hosted
  11. [11]HostiFi — UniFi OS Server vs Self-Hosted UniFi Network, March 2026. A managed-hosting vendor’s blog, cited for its statement that Ubiquiti recommends upgrading to UniFi OS Server when it publishes new releases, and for the existence of managed UniFi OS Server hosting (with migration assistance bundled into paid plans) as an alternative to self-hosting. hostifi.com — UniFi OS Server vs self-hosted
  12. [12]HostiFi Help Center — UniFi: Multi-tenancy and how to add new admin users. Source for the classic-controller multi-tenant model — admins added through the controller are per-site by default, a Site Administrator can be limited to specific sites while a Super Admin has unrestricted access, and unifi.ui.com supports bulk-adding admins across sites. support.hostifi.com — UniFi multi-tenancy
  13. [13]UniHosted — How to manage multiple sites in the UniFi Controller. Source for the (vendor-interested) managed-hosting perspective that self-hosting a UniFi controller is fine for home use but not recommended for MSPs and IT-service businesses managing client networks, on uptime and reliability grounds. Cited as a perspective, weighed against its commercial motivation. unihosted.com — managing multiple sites
  14. [14]ShiftCTRL — Hardening the UniFi management plane. Companion article on why a self-hosted, internet-facing UniFi management plane must be patched fast, segmented, and kept off the public internet — and the evidence that UniFi OS was a primary target across the 2026 advisory streak. shiftctrl.net — management-plane hardening
  15. [15]ShiftCTRL — When to update UniFi firmware, and when to wait. Companion article on the patch cadence — and its exception for named, high-severity, network-reachable advisories — that applies directly to a self-managed UniFi OS Server. shiftctrl.net — firmware cadence
  16. [16]Ubiquiti Community — Security Advisory Bulletin 064, May 2026. Source confirming UniFi OS Server itself was among the products affected by the May 2026 UniFi OS vulnerabilities — three of them rated CVSS 10.0 (CVE-2026-34908 / 34909 / 34910, an unauthenticated root-RCE chain) — with UniFi OS Server versions through 5.0.6 affected and fixed in 5.0.8, underscoring that self-hosting places responsibility for patching a targeted management plane on the operator. community.ui.com — Bulletin 064
  17. [17]Ubiquiti Community — Security Advisory Bulletin 065, June 2026. Source confirming a second 2026 advisory naming UniFi OS Server: CVE-2026-47368, an information-disclosure path-traversal flaw in UniFi OS, with UniFi OS Server fixed in 5.1.15 — evidence that the management plane drew repeated advisories across the streak, not a single incident. community.ui.com — Bulletin 065
  18. [18]Ubiquiti Community — Site Manager — Not showing all sites under Admins. Practitioner source for the report that, after moving sites from a self-hosted UniFi Network Server onto a self-hosted UniFi OS Server, admins could initially only be scoped to the Default site, with not all migrated sites appearing under Admins to assign against — a separate corroboration of the per-site admin-scoping friction. community.ui.com — Site Manager not showing all sites under Admins

// RELATED · MORE ON UNIFI AT SCALE

Hardening the UniFi management plane

PUBLISHED · ANALYTICAL · UNIFI · SECURITY

When to update UniFi firmware, and when to wait

PUBLISHED · INSTRUCTIONAL · 11 MIN

Managed network services

PUBLISHED · SERVICE
GET IN TOUCH

Planning a UniFi OS Server migration across client sites?

Send us a note about your current setup — how many sites and devices, where the controller lives today, and how your admin access is structured. We'll come back with a written plan: the right destination (self-hosted, Official UniFi Hosting, or hardware), an access model designed around Fabrics or your identity provider, a tested cutover sequence that won't strand client admin access, and the hardening pass to run before anything faces the internet.

Send us a message