Manualshelf

User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE
51525354555657585960
Chapter 1: Overview
1-44
For an example of setting a system configuration in which multiple authentication servers are arranged
to distribute the authentication server load, see “When Setting Up the Authentication Server on Multiple
Machines and the Repository Server on a Machine" of “Basic Configurations of Authentication
Infrastructure” of "Authentication Infrastructure”.
For an example of setting a system configuration in which the repository server (update system) and
repository server (reference system) are arranged to distribute the repository server load, see “When
Setting Up the Authentication Server and the Repository Server on Multiple Machines Individually" of
“Basic Configurations of Authentication Infrastructure” of "Authentication Infrastructure”.
Remark
When repository servers are used separately for update and reference systems, the contents of SSO
repositories (master and slave) must be synchronized with each other to prevent illegal authentication
due to data inconsistency. A synchronizing method is to copy the content of the SSO repository
(master) into the SSO repository (slave) by using the Smart Repository replication function.
Notes
The repository server (update system) and repository server (reference system) both need to be
the same edition/version.
The load balancer, e.g., Interstage Traffic Director, must be set up so that all authentication servers
logically have the same host name.
To perform SSL communication on the authentication servers, the owner name of each certificate
to be used for SSL communication must be the same on every authentication server. In details, the
host name of Interstage Traffic Director must be specified as the owner name of the certificate for
SSL communication when the certificate is obtained and registered. For further information about
the application for the certificate and its registration, refer to "Preparations for SSL Communication".
The load balancer must be set up so that the requests from the same client transfer to the same
authentication servers.
Use the following settings when the load balancer is Interstage Traffic Director:.
Operation Mode : bridge
Measure of load Balancing and uniqueness of connection : Balancing for each node
Increase of System Availability
When multiple repository servers (reference systems) are allocated to the authentication server, the
system configuration can include active and standby repository servers (reference systems). This
system configuration allows the system to continue operation even if a repository server (reference
system) fails or an error is posted from an SSO repository.
For example, if the repository server (reference system) that is requested to perform authentication
processing by the authentication server has failed, a destination of the authentication request is
automatically switched to another repository server (reference system) and the system can respond to
the authentication request from the client.