To Configure the Gateway Service on sra1 for Load Balancing
If SSL sessions are terminated at the Gateway service load balancer, the traffic between the load balancer and the Gateway instances are plain HTTP. In that case, it is necessary to configure the Gateway instances to use the load balancer's virtual name (sra.pstest.com) and protocol (HTTPS) in all content that is rewritten.
You do so by configuring the attributes on the platform.conf file that is associated with the profile that the Gateway instance is using.
-
Open the platform.conf file on sra1 in a text editor.
The file is located at:
/etc/opt/SUNWportal/platform.conf.default
-
Modify the following properties as follows:
gateway.enable.customurl=true gateway.enable.accelerator=true gateway.httpurl=https://sra.pstest.com:443 gateway.httpsurl=https://sra.pstest.com:443 gateway.virtualhost=sra.pstest.com 10.0.5.10
-
Restart the Gateway instance on sra1.
-
Stop the Gateway instance on sra1.
# /opt/SUNWportal/bin/psadmin stop-sra-instance -u amadmin -N default -t gateway
When prompted, type the access-manager-admin-password.
-
Start the Gateway instance on sra1.
# /opt/SUNWportal/bin/psadmin start-sra-instance -u amadmin -N default -t gateway --restrictive
When prompted, type the access-manager-admin-password.
-
-
Verify that the Gateway instance is running in non-SSL mode.
# telnet 10.0.4.1 443
GET / HTTP/1.1 <carriage return>
HOST:sra.pstest.com <carriage return>
Connection:Close <carriage return>
<carriage return>
The response should resemble the following:
HTTP/1.0 302 Moved Temporarily Date: Fri. 08 Feb 2008 21:27:00 GMT Server: Redirector Location: https://sra.pstest.com/http://am.pstest.com/amserver/UI/Login?qw=&...
- © 2010, Oracle Corporation and/or its affiliates