Idea ID: 2870958

fail over and load balancing solution integrating AAF with Access Manager IDP

Status : New Idea
2 months ago

For now you can just define ether an IP address or DNS on the iManager => Identity Servers => Shared Settings => Advanced Authentication => Server Domain. This is a single point of failure in case the defined AAF server is down. As far as I understand having a load balancer in front of AAF server will not work due to the OAuth flow between AAF and IDP


Ideas:
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
option to assign one AAF server for each IDP cluster node + 1 failover. The one to one mapping between one IDP and AAF cluster node would allow load balancing based on IDP servers (IDP server behind L4) . With an option to define a failover AAF server if the assigned AAF server is down would create the required fault tolerance
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Labels:

Configuration
Integrations