Hi Team.
We need to setup SSO with SAML2 in a SDM AA configuration.
I would like to have some advices, how to go into the right direction.
Some background:
F5 load balancer , sticky session configuration .
6 app servers, running director and 3-4 web engines each.
Having Apache as main web server.
webengine url's are configured using LBhost, rather than app server FQDN.
BG and SB are in a separate secured lan network.
As SAML2 is completely handled upfront by shibboleth, I am unsure about configuration
Regarding, entity Id and redirect url.
Do I need to setup 8 separate service providers in the IDP or can I share the same entity ID and let the IDP redirect to the LB?
Any suggestion and expirience is welcome
Thanks in advance
.....Michael
------------------------------
Principal Services Consultant
HCL Enterprise Studio
------------------------------