Provisioning provides high availability solutions in the following three tiers:
The clients are the CA IdentityMinder User Console, CA IdentityMinder Management Console and the Provisioning Manager. You can group clients that are together based on their geographic locations, organizational units, business functions, security requirements, provisioning workload, or other administration needs. Generally, we recommend keeping clients close to the endpoints they manage.
Clients use primary and alternate Provisioning Servers, in order of their failover preference. Client requests continue to be submitted to the first server until that server fails. In other words, the connection stays active until the server fails. If a failure occurs, the client reviews the list of configured servers in order of preference to find the next available server.
The Provisioning Server can have multiple connector servers in operation. Each connector server handles operations on a distinct set of endpoints. Therefore, your organization could deploy connector servers on systems that are close in the network to the endpoints. For example, assume that you have many UNIX /etc endpoints. In such case, install one connector server on each server so that each connector server controls only the endpoints on the server where it is installed.
Installing Connector Servers close to the endpoints also reduces delays in managing accounts on endpoints.
Provisioning Servers uses a CA Directory router to send requests to primary and alternate Provisioning Directories in order of preference.
|
Copyright © 2013 CA.
All rights reserved.
|
|