locked
2 AAM with One Public IP and 2 DNS Entries RRS feed

  • Question

  • Hi,

    I have the following scenario

    We do have one public IP.

    Default Zone : http://SPC:88 ->Using Windows Authentication

    Internet : http://SPC:89 -> Extended (from Default ) to Form Authentication

     

    I am planning to assign AAM for both as http://spc.com to publish it to the internet

     

    Can I access both application using same (one) public  IP with the same AAM entry, say spc..Com for both?

    Or the DNS entry will take care the redirection to the respective authentication by providing the port number?

    Or the I need to assing the port number agains AAM say, SPC.com:88 for Default and SPC.com:89 for Internet Zone?

     

    Our expectation is to have windows authentication for Employees and Form authentication for Contractors and both should access the portal from outside(internet)

     

    Please advice,

    Sunday, January 9, 2011 9:46 PM

Answers

  • Hi

    Even if both Employees and Contractors are accessing the portal from internet, it's customery to have two different DNS entries pointing to two different IIS websites. Since Default and Internet corresponds to two different IIS websites, if same IP is used, for differentiating them, the DNS entries need to be different. So I would envison in your case having urls as http://spc.com for contractors and https://employees-spc.com for employees which can be an SSL enabled site opened to internet.

    This does not seem likely to me without unique dns entries. Curious if someone else have different opinion.


    Thanks, Soumya
    • Marked as answer by Emir Liu Wednesday, January 12, 2011 3:01 AM
    Sunday, January 9, 2011 10:37 PM

All replies

  • Hi

    Even if both Employees and Contractors are accessing the portal from internet, it's customery to have two different DNS entries pointing to two different IIS websites. Since Default and Internet corresponds to two different IIS websites, if same IP is used, for differentiating them, the DNS entries need to be different. So I would envison in your case having urls as http://spc.com for contractors and https://employees-spc.com for employees which can be an SSL enabled site opened to internet.

    This does not seem likely to me without unique dns entries. Curious if someone else have different opinion.


    Thanks, Soumya
    • Marked as answer by Emir Liu Wednesday, January 12, 2011 3:01 AM
    Sunday, January 9, 2011 10:37 PM
  • Thanks Soumya for your opinion.

    I had tried with two AAM names say http://spc..Com:88 and http://spc.com:89 and same entries created as Host A names in DNS with different PORTs and it works fine

    the clue is different PORT number

     

    thanks,

    Aslam

     

    Tuesday, January 11, 2011 8:01 PM
  • Hey Aslam

     

    Can I access both application using same (one) public  IP with the same AAM entry, say spc..Com for both?

    Or the DNS entry will take care the redirection to the respective authentication by providing the port number?

    Or the I need to assing the port number agains AAM say, SPC.com:88 for Default and SPC.com:89 for Internet Zone?

     

    Our expectation is to have windows authentication for Employees and Form authentication for Contractors and both should access the portal from outside(internet)

     

    Ans 1 ) not possible in with wss 3.0 or moss 2007

    Ans 2) Am affraid its not possible :-(

    Ans 3) Yes , you will have to assign different port numbers for each authentication type selected .

     

    Cheers

     

    VJ

    • Edited by Mike Walsh FIN Wednesday, January 12, 2011 7:42 AM 2010 reference removed Off-topic.
    Wednesday, January 12, 2011 12:57 AM