When deploying 2 or more IDRs in a cluster without a load balancer, can DNS round robin be used to direct users to the SSO agent? Will the keychain be replicated? Also, will this work for SAML SPs to contact an IDR?
I understand that RR can be used by AM to connect to an IDR by using the host file.
I'm just wondering how much redundancy can be obtained without a load balancer.