Figure 1-1
Configuration A
Identity Server 1
Identity Server 2
When you assign multiple Identity Servers to the same configuration, you need to install a load
balancer that supports either Layer 4 or Layer 7. This device is referred to as an L4 switch in this
manual. The L4 switch allows the work load to be balanced among the machines.
Whether you have one machine or multiple machines in a cluster, the Access Manager software
configuration process is the same. This section describes the following cluster management tasks:
Section 1.1.1, "Creating a Cluster Configuration," on page 14
Section 1.1.2, "Assigning an Identity Server to a Cluster Configuration," on page 19
Section 1.1.3, "Configuring Session Failover," on page 19
Section 1.1.4, "Removing a Server from a Cluster Configuration," on page 20
Section 1.1.5, "Managing a Cluster with Multiple Identity Servers," on page 21
Section 1.1.6, "Enabling and Disabling Protocols," on page 24
Section 1.1.7, "Modifying the Base URL," on page 24
1.1.1 Creating a Cluster Configuration
This section discusses the settings available for an Identity Server configuration, such as importing
SSL certificates, enabling introductions, and configuring identity consumer settings. You should be
familiar with
SP1 Setup Guide
An Identity Server always operates as an identity provider and can optionally be configured to run as
an identity consumer (also known as a service provider), using Liberty, SAML 1.1, SAML 2.0,
CardSpace or WS Federation protocols. In an Identity Server cluster, multiple servers use the same
configuration.
In an Identity Server configuration, you specify the following information:
The base URL for the server or clustered server site.
Certificates for the Identity Server, identity provider, and identity consumer.
Authentication settings, such as whether the identity provider requires signed authentications
from service providers.
The service domains used for publishing and discovering authentications.
14
Novell Access Manager 3.1 SP1 Identity Server Guide
Identity Server Configurations
Configuration A
Identity Server 1
"Creating a Basic Identity Server
before proceeding.
Configuration B
Identity Server 2
Configuration" in the
Novell Access Manager 3.1
Need help?
Do you have a question about the ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER and is the answer not in the manual?