test

Sun OpenSSO Enterprise Policy Agent 3.0 User's Guide for Web Agents

Providing Failover Protection for a Web Agent

When you install a web agent, you can specify a failover or backup deployment container, such as a web server, for running OpenSSO Enterprise. This is essentially a high availability option. It ensures that if the deployment container that runs OpenSSO Enterprise service becomes unavailable, the web agent still processes access requests through a secondary, or failover, deployment container running OpenSSO Enterprise service.

Setting up failover protection for the web agent, requires modifying a web agent property. However, you must first install two different instances of OpenSSO Enterprise on two separate deployment containers.

Then follow the instructions about installing the web agent. The web agent installation program prompts you for the host name and port number of the failover deployment container that you have configured to work with OpenSSO Enterprise. The property labeled OpenSSO Login URL (Tab: OpenSSO Services, Name: com.sun.identity.agents.config.login.url) stores the failover deployment container name. Furthermore, whenever you add a value to the OpenSSO Login URL property, you must configure the property named com.sun.identity.agents.config.naming.url (accessible in the OpenSSOAgentBootstrap.properties file) as illustrated subsequently.

Set this property in order to store failover server information. Given the values in the following list, the property would be set as shown in Example 4–4.

host1

Name of the primary OpenSSO Enterprise host.

host2

Name of the failover OpenSSO Enterprise host.

example

Name of the domain.

58080

Default port number

Example 4–4 Configuration Property Setting for Failover Protection of a Web Agent

Failover protection of a web agent is enabled by assigning values, as shown in the following list, to the OpenSSO Login URL property:

http://host1.example.com:58080/opensso/UI/Login
http://host2.example.com:58080/opensso/UI/Login
Example 4–5 Configuration Property Setting for Naming Service of Web Agent

Adding a value to the OpenSSO Login URL property requires that you configure the following property:com.sun.identity.agents.config.naming.url (accessible in the OpenSSOAgentBootstrap.properties file). For example, if the OpenSSO Login URL property is set as illustrated in Example 4–4, the following property should be set as shown:

com.sun.identity.agents.config.naming.url =
http://host1.example.com:58080/opensso/namingservice
http://host2.example.com:58080/opensso/namingservice