Manage restricted nodes in a cluster

We can restrict nodes that are in the DMZ so that your network is secure. We can specify which nodes are restricted in the local management interface.

The following restrictions apply to restricted nodes:

• Restricted nodes cannot be promoted to any of the master roles.
• Restricted nodes cannot use the Policy Administration tool to modify the security policy.
• Restricted nodes do not contain a replica of the data stored by the embedded user registry.

We can restrict a node when you register a node in a cluster or at any time from the master local management interface. We can also restrict several nodes in a cluster.

Select the steps for the task we want to complete:

• Configure a restricted node during registration

  Configure a restricted node when you register the node using the local management interface.

  1. Register a node to a cluster.

     For information, see Manage cluster configuration.

  2. Check Join as restricted node in the Join Cluster window.

  3. Click Join to add the appliance to a cluster as a restricted node.

• Configure a restricted node in a cluster

  Use the local management interface to specify a restricted node in a cluster.

  1. Log on to the master appliance.

  2. From the top menu of the local management interface, select System > Cluster Configuration.

  3. Select the Overview tab.

  4. Select the node to be set as restricted in the Nodes grid.

  5. Click Restricted Node.

  6. Click Submit.

Parent topic: Cluster support