Once established, the connection between an Agent and a Policy Server is maintained for the duration of the session. Therefore, a hardware load balancer only handles the initial connection request. All further traffic on the same connection goes to the same Policy Server until that connection is terminated and new Agent connections established.
By default, the Policy Server connection lifetime is 360 minutes—typically too long to be effective using a hardware load balancer. To help ensure that all Agent connections are renewed frequently for effective load balancing, configure the maximum Agent connection lifetime on the Policy Server.
To configure the maximum connection lifetime for a Policy Server, set the following parameter:
Specifies the maximum Agent connection lifetime in minutes.
Default: 0. Sets no specific value; only the SiteMinder default connection lifetime (360 minutes) limit is enforced.
Limits: 0 - 360
Example: 15
Note: If you do not have write access to the CA SiteMinder® binary files (XPS.dll, libXPS.so, libXPS.sl), an Administrator must grant you permission to use the related XPS command line tools using the Administrative UI or the XPSSecurity tool.
The AgentConnectionMaxLifetime parameter is dynamic; you can change its value without restarting the Policy Server
To configure the maximum Agent connection lifetime for hardware load balancers
xpsconfig
The tool starts and displays the name of the log file for this session, and a menu of choices opens.
sm
A list of options appears.
The AgentConnectionMaxLifetime parameter menu appears.
The tool prompts you whether to apply the change locally or globally.
30
The AgentConnectionMaxLifetime parameter menu reappears, showing the new value. If a local override value is set, both the global and local values are shown.
Your changes are saved and the command prompt appears.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|