Layer7 Identity Management

Expand all | Collapse all

Using SPS as front end to IDM

Jump to Best Answer
  • 1.  Using SPS as front end to IDM

    Posted 02-04-2015 07:24 AM



    Our requirement is to use SPS as a front end proxy for our IDM servers. Since we are using IDM as a clustered environment.

    I would like to know if someone has done this type of setup before.

    It would be nice if someone can share the steps for the same.





  • 2.  Re: Using SPS as front end to IDM

    Posted 02-24-2015 12:33 PM

    Anyone able to help out Satish?


    Thank you

  • 3.  Re: Using SPS as front end to IDM
    Best Answer

    Posted 02-25-2015 12:22 AM

    Hi Chris_Stallone


    We are able to set this up our self.

    We used two SPS servers in front of an IM cluster for authentication.


    A hardware Load balancer is configured in front of both SPS servers SPS1 and SPS2. (Before sending requests to SPS1 and SP2. Load balancer is doing a healthcheck of SPS and IM servers)


    SPS1 is then forwarding requests to IDM1

    SPS2 is forwarding requests to IDM 2.

    Both IDM1 and IDM2 are in cluster.


    Thanks for writing on my post.


    Let me know if anybody has any questions about this configuration.

  • 4.  Re: Using SPS as front end to IDM

    Posted 04-13-2016 07:59 PM

    Hi Satish,

    Sorry to bump an old post. I am wondering if this is really providing true fault tolerance / HA.

    What happens if IDM 2 in cluster goes down and SPS 1 server goes down at the same time.

    In this scenario we have SPS 2 still running and IDM 1 still running but these are not configured to talk to each other and the application will not be accessible.


    Does anyone know the recommended approach when front ending IDM with the CA SPS without using a middle man Apache reverse proxy with the mod_weblogic or mod_websphere or mod_jk or mod_balancer running to load balance the IDM cluster.