You are viewing limited content. For full access, please sign in.

Question

Question

Install LFDS and LFDSSTS on separate servers

Web Client Forms Directory Server Version 10
Updated July 31, 2019
asked on September 28, 2016 Show version history

Hello, 

In a Consultation Forum Webinar yesterday, it was recommended that we install LFDS and LFDSSTS on separate machines. We have a large number of users accessing our system externally, so as much as possible, we would like to limit our outside exposure to one machine, which would contain Forms, Web Access, and LFDSSTS, while leaving LFDS on a separate server.

I did make an attempt at configuring this myself, starting with the uninstall of Directory Server on the original machine, then installing it again on both machines, being careful to select the appropriate servers for each. Unfortunately, this on its own was not enough to get it to work, i.e. we are still being redirected to the LFDSSTS on the original machine, not in its new location. By altering configuration files of LFDS, WebSTS, and Forms on both machines to point to the correct locations, I was able to successfully authenticate into Forms via the new LFDSSTS installation, but only in some circumstances.  

So, before I go too much further with this, can anyone describe the configuration for this?

Thank you!

Jesse

 

Directory Server is build 10.0.0.222

Forms is build 10.1.0.619

0 0

Answer

SELECTED ANSWER
replied on September 28, 2016 Show version history

Edit: Installing LFDS and the STS separately is not supported at this time. You could try setting up a reverse proxy in the DMZ to send the traffic to the internal LFDS. This thread might give you some direction.

0 0
replied on July 30, 2019

Hello Miruna,

Is LFDS 10.3.1 version supporting, installing STS separately in DMZ zone?

0 0
replied on July 31, 2019

Yes.

0 0

Replies

replied on September 28, 2016

We were told by Dan Ryan just yesterday that this was indeed possible. Has this been implemented, just not supported? Or was he mistaken?

0 0
replied on September 28, 2016

I apologize for Dan giving you the wrong information. The installation was designed to allow that for the future. Installing LFDS and LFDSSTS on separate machines is not supported and not expected to work in any the currently released versions of LFDS.

0 0
replied on September 28, 2016

We'll look into the reverse proxy scenario. Thanks for the info!

0 0
replied on September 28, 2016

Toward the end of the installation of Directory Server, there is an option to specify the locations of both LFDS and STS, separately. What purpose does this option serve other than to allow for installation on separate machines?

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...