Load Balancing Multiple Active Directory Connectors
Load balancers distributes traffic across multiple servers and ADCs. The purpose is to provide a balanced service across its
pool of servers and increasing resiliency.
My1Login ADCs can be installed across
multiple domain controllers in this pool of servers within a load balanced infrastructure. Any incoming traffic for My1Login’s ADCs can be directed to ensure the
network does not become bottlenecked. This provides resiliency to your My1login configuration providing back up for users performing Active
Directory Single Sign On into My1Login.
Example Configuration
The diagram above shows two Domain Controllers each
connected to two separate servers that both have an ADC installed on them. Both behind a load balancer to distribute traffic between them and a
DNS load balancer to distribute traffic flow between the load balancers. Whenever
traffic requests come in, dependant on the algorithm set by the load balancers,
will decide which load balancer and subsequently which ADC to go to.
To reduce
output duplication, we recommend that if you are using the 'Domain Monitoring' feature that you set that to be enabled on only one My1Login ADC.
Setting up My1Login to use Load Balancing
To configure My1Login for load balancing, you need to change the ADC URL option on the admin screen within your My1Login account.
In “Active Directory Connector URL” (in a simple environment this would contain the URL of the location of My1Login’s
ADC) the value should be set as the URL of the Load Balancer instead.
Your My1Login configuration will now use your load balanced environment.
When changing the Active Directory Connector URL, you should maintain the port value to be 47810
Updating My1Login ADC's Certificate
Create a new web server certificate the same way as stated in the SSL Certificates - Windows Certificate Service page, but instead for the common and DNS name, input the same value as has been put into the Active Directory Connector URL.
Related Articles
How the Active Directory Connector (ADC) works
How the Active Directory Connector (ADC) works The My1Login Active Directory Connector (ADC) extends your AD domain into the My1Login cloud Identity registry enabling seamless single sign on to the My1Login system. The ADC supports bi-directional ...
Troubleshooting: The Active Directory Connector (ADC)
If you are experiencing unexpected behaviour with your ADC, here are some quick checks you can perform: Check that the ADC is switched on and running Have you restarted the ADC? Is there an active internet connection on the server that is hosting the ...
Getting Ready to Install the ADC
The ADC reads some of its configuration details from the Active Directory configuration settings on your My1Login web account. This configuration needs to be setup prior to installing the ADC. 1.1 Defining AD Objects to be Synchronised The ADC may be ...
Troubleshooting: A user is unable to login to My1Login
If a user is unable to login to My1Login, below are a simple set of checks to troubleshoot. Valid User: Check the user is registered with an account associated with your company. This could be either an email account or an Active Directory account. ...
ADC Installation Requirements
Download our handy ADC checklist at the bottom of this page! The ADC is installed on a server within your network, it is not necessary, or recommended, for this server to be the domain controller. When supporting seamless SSO the ADC acts as a local, ...