Configure Redirections to an SSL Load Balancer (optional)

Federation Manager Guide › Load Balancing Support for Federation Manager › How to Configure Load Balancing › Configure Redirections to an SSL Load Balancer (optional)

Configure Redirections to an SSL Load Balancer (optional)

If the load balancer uses SSL, we recommend that you configure Federation Manager to redirect traffic over an SSL connection. To redirect traffic, modify the following two files on each Federation Manager system:

LocalConfig.conf
httpd.conf

Note: Modify these files on all Federation Manager systems that are redirecting traffic.

Follow these steps:

Navigate to federation_mgr_home/secure-proxy/proxy-engine/conf/defaultagent.
Open the WebAgent.conf file in an editor. Uncomment the line that begins localconfigfile then save the file.
Open the LocalConfig.conf file in an editor.
Add the following settings to the LocalConfig.conf file then save the file:
```
HttpsPorts="443"
```
Specify the port on which the load balancer is listening.
```
GetPortFromHeaders="YES"
```
Navigate to federation_mgr_home/secure-proxy/httpd/conf.
Open the httpd.conf file in an editor.
Locate the SeverName setting and specify the load balancer hostname:port. Do not enter the Federation Manager server host name. Example:
```
ServerName lb5.ca.com:443
```
After the ServerName setting, add the UseCanonicalName setting and set it to On. Example:
```
UseCanonicalName on
```

Federation Manager now redirects traffic over an SSL connection.