Not only should you not need to account for the primary DC changing but many features of Consul rely on having a stable primary DC. For example, Consul’s ACL system will perform all writes (except for DC local tokens) within the primary DC and then replicate the data out to all the other datacenters. The primary DC is the source of truth for ACL policies, roles etc. If you were to manually change your primary datacenter configuration after setting all of this up, lots of things would stop working. It might in theory be possible to change your primary DC but this would require a lot of coordination and planning and is not something you should ever hope to do.