AnsweredAssumed Answered

X509 AuthScheme with Load Balancer?

Question asked by neam_kai on Jun 28, 2016
Latest reply on Jun 28, 2016 by CBertagnolli

Hi, I'd like to know if someone has exprience setting up the X509 Client Cert authentication scheme in an environment with 2 web servers and a load balancer in front:

WebServer1

WebServer2

LoadBalancer

As per Siteminder documentation they ask to set the web servers name (e.g. WebServer1) as Server Name in the Authentication Scheme configuration. This works but leads to the situation that if WebServer1 is down the users can not log in anymore. Using the LoadBalancer as Server Name results in a Bad Gateway error for the users.

Support refers to CA Services as this seems to be an exotic constellation so no ideas from there.

 

thanks for any input!

rgds

Kai

Outcomes