@rusty-deaton
active 3 years ago-
rusty.deaton replied to the topic Question RE: Identities across datastores / Policy Information Points in OpenAM in the forum Access Management 6 years ago
Any ideas on this, anyone?
-
rusty.deaton replied to the topic OpenAM, HAProxy and SSL in the forum Access Management 6 years ago
I mean yes, there’s going to be overhead in a bridging configuration, but this again comes down to the risk you’re willing to take on as an organization as well as the SLAs you have in place to meet. Generally a well-configured HAProxy instance with sufficient resources isn’t going to add too much in the way of overall latency to a given…[Read more]
-
rusty.deaton started the topic Question RE: Identities across datastores / Policy Information Points in OpenAM in the forum Access Management 6 years ago
Hey all,
Let’s say I have two datastores, separate in nature. For the purpose of discussion let’s assume they are both LDAPv3 compliant. Let’s assume for the sake of ease that there is a value across the two that is both unique, and can be correlated however the two datastores cannot be combined. I understand there is a use case that could…[Read more]
-
rusty.deaton replied to the topic OpenAM, HAProxy and SSL in the forum Access Management 6 years ago
Like anything, right, it depends. If you are hosting this in a cloud environment, I wouldn’t necessarily recommend termination at the load balancer, and in fact stateless sessions may be a better choice because of this. If you are hosting this in an environment where you can accept the risk of SSL termination at the load balancer, then by all…[Read more]
