installed trial, works in one site,
dns and SSL certificate of rsa.company.com purchased from comodo
dns is a single entry on cloudflare and points to 5.5.5.5 (rsa.company.com)
works ok.
we have 2 sites.
we have a load balancer in each site , the F5
planning on installing 3 RSA virtual servers each site, but to keep it simple, we will have 1 on each site.
what SSL certs do i need to purchase for this?
sub domain of say "wip.company.com" and make the F5 authoritive for this yes?
with 2 a records in that of the below for example
idr1.company.com 5.5.5.6
idr2.company.com 5.5.5.7 (these dont need to be external ssl certs?)
then
rsa.company.com IN CNAME rsa.wip.company.com
what entry do i put in the RSA as my identity router hostname and what external SSL cert do i need to purchase?
Hi Andy - I don't know that I can accurately answer all of your questions via this forum.
By the way, if you are still under your trial agreement you should be able to get help from your RSA Sales Engineer. If you have purchased the product and maintenance you can open a support case for further assistance.
I would check out Identity Router DNS Requirements for some good info in this area. As described there, some of the DNS and certificate info depends on whether you are going to support SSO for HFED applications.
Ted