Symantec Access Management

  • Private Community
 View Only

  • 1.  How to create an SSL Virtualhost in Access Gateway

    Posted Dec 21, 2018 08:09 AM

    Hi,

    I'm new to Access Gateway.

    My Access Gateway is installed on machine SERVER1.domain.

    The federation authentication URL now is https://server1.domain/affwebservices/redirectjsp/redirect.jsp

    From outside world I want to use somethig like https://www.idp.company.com/affwebservices/redirectjsp/redirect.jsp

    So I think I have to create a Virtualhost for www.idp.company.com with a SSL certificate. I've create a IP-address on SERVER1.domain.

     

    Can anybody tell me how to do this.

     

    Thanks a lot

    Edwin Scheffer



  • 2.  Re: How to create an SSL Virtualhost in Access Gateway

    Broadcom Employee
    Posted Jan 21, 2019 05:29 AM

    If you've a front-end load balancer listenening on www.idp.company.com, and it can terminate the SSL session and forward to server1.domain, then you may not need to do anything.

     

    If you need your Access Gateway to also listen on www.idp.company.com, then search the product documentation for "virtual host" for some details on how to set up virtual hosts in the Access Gateway. E.g. here and here. Note that these virtual hosts are in the "back end" of the access gateway. The "front end" is a single Apache instance with an SSL certificate.

    If for some reason you need multiple SSL certificates, then see this thread.

     

    Pearse