I am implementing a UAG Array for DirectAccess of company assets, and need to provide portal access for non-company assets.
I have a 2 node Multicast NLB UAG Array, with the standard single internal VIP and two sequential External VIPs for DirectAccess.
We would like to use ADFS for SSO to the portal, but that trunk requires an external IP assignment for that link. What network confuration changes do I need to add ADFS?
Any assistance would be helpful...
- Edited by Joshkea Tuesday, November 12, 2013 10:44 PM
If you already have two IPv4 public addresses used by DirectAccess, you cannot setup a portal trunk on theses adresses. So you need an additionnal Ipv4 public address to introduce a portal trunk linked to it
BenoitS - Simple by Design http://danstoncloud.com/blogs/simplebydesign/default.aspx
- Proposed as answer by BenoitSMVP Tuesday, November 12, 2013 10:45 PM
Right. So I currently have an external ipv4 DIP assigned to each UAG server and a second NIC on each with an assigned internal DIP. Then I have the NLB config with what I stated above. So I need to add 1 additional VIP to the NLB config and that should be it. Or do I need more DIPs? Thanks again