To complete the Layer 7 Gateway installation, restart the service on both Gateways by running the following command:
service ssg start
You have now completed the Layer 7 Gateway installation.
The Layer 7 Gateway is used to enable CloudMinder to act as an OAuth Authorization Server for an OAuth client. For example, if a tenant wants their users to access an OAuth client application through single sign-on, you can configure CloudMinder to validate the request for user authorization. Perform the necessary configuration for each tenant and each OAuth client application by following the steps in SSO with CloudMinder as an OAuth Authorization Server.
Upgrading to CA CloudMinder 1.5 adds two new components to your environment: the Layer 7 Gateway servers and Radius Proxy servers. Update the load balancers in your high-availability environment to open the appropriate ports.
|
Component |
Port In |
Port Out |
Traffic Flow |
Description |
|
Web Tier Load Balancer |
8443 |
8443 |
(ext)->LB1->L7 |
External calls to the Layer 7 Gateway (L7) distributed across all Gateway instances. |
|
Web Tier Load Balancer |
1812 |
1812 |
(ext)->LB1->SPS |
External calls to the Radius Proxy server (Radius) distributed across all SPS instances. |
|
Application Tier Load Balancer |
1812 |
1814 |
SPS->LB2->Auth.Radius |
Radius requests coming from the Radius Proxy running inside SPS. Port 1814 is used to respond back to the Radius Proxy. |
|
Application Tier Load Balancer |
20498 |
20498 |
L7->LB2->DXrouter |
User Directory requests coming from the Layer 7 Gateway distributed across the application tier DXrouter instances. |
SPS = Secure Proxy Server
L7 = Layer 7 Gateway Server
Radius = Radius Proxy Server
For further information about port configuration on the load balancers in your high-availability environment, see the topic entitled Port Communication Tables.
|
Copyright © 2013 CA.
All rights reserved.
|
|