This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
BrandonSteams
Contributor
Contributor
‎2017-02-09 08:45 PM

Is it possible to use a pair of Windows web tier servers to service multiple Authentication Manager deployments?

Jump to solution

If I have three separate deployments of RSA Auth Manager (separate customers), can I use a single pair of web tier servers (2 Load balanced Windows Servers) in our DMZ to service all 3 RSA deployments using different installations of Web Tier on the same two Windows servers?  Maybe under different ports for each instance on the two machines, etc?  If it is possible, do you support this type of configuration?

Labels (1)
0 Likes
Reply
1 Solution

Accepted Solutions
PiersB
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2017-02-13 06:41 PM

Jump to solution

No. A web-tier can only be configured to interact with a single deployment. It will distribute requests between all the primary and replica servers in that deployment (when possible), but user logins to web-tiers are directed at a single deployment. To support multiple AM deployments, the web-tier would have to figure out which login ID should be associated with a particular back-end deployment. It would also be complicated to manage because many times web-tiers are automatically patched by the primary server to which they're connected. If one of your AM deployments was at a different version, this could cause an incompatibility between the web-tier and some of your AM deployment servers.

View solution in original post

Reply
4 Replies
PiersB
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2017-02-13 06:41 PM

Jump to solution

No. A web-tier can only be configured to interact with a single deployment. It will distribute requests between all the primary and replica servers in that deployment (when possible), but user logins to web-tiers are directed at a single deployment. To support multiple AM deployments, the web-tier would have to figure out which login ID should be associated with a particular back-end deployment. It would also be complicated to manage because many times web-tiers are automatically patched by the primary server to which they're connected. If one of your AM deployments was at a different version, this could cause an incompatibility between the web-tier and some of your AM deployment servers.

Reply
bharatsharma
Contributor
Contributor
‎2020-08-21 01:39 AM

Jump to solution

Hey

 

Thanks for your input.

 

Can you please let me know if we are going to deploy the web tire on replica so we need to download the web tire package from replica or primary am ?

0 Likes
Reply
JayGuillette
Apprised Contributor Apprised Contributor
Apprised Contributor
In response to bharatsharma
‎2020-08-21 12:05 PM

Jump to solution

You create/edit web Tiers on the Primary. Including Generating and Downloading the Web Tier Package.

 

OC-Deploy-WebTier_Primary.png

 

You can configure a Web Tier to use a Replica, but you cannot configure that web Tier on a Replica, it will clearly tell you when you try.

 

OC-Deploy-WebTier_Replica_Error.png

0 Likes
Reply
bharatsharma
Contributor
Contributor
In response to JayGuillette
‎2020-08-31 09:58 AM

Jump to solution

thanks jay

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.