Configuration for WebSEAL instances that are external to the cluster to use the distributed session cache

We can manually configure a WebSEAL instance on an appliance, which is external to the distributed session cache server cluster, to use the distributed session cache.

Prerequisites

Familiarize yourself with the concepts that relate to the distributed session cache.

See Advanced configuration for the distributed session cache for information about advanced configuration for the environment.

This configuration summary assumes the following requirements for the WebSEAL environment:

• Forms authentication to WebSEAL.

  Forms authentication is not required for the environment with the distributed session cache. However, basic authentication (the default WebSEAL authentication method) is not suitable for use with session displacement.

• Mutual authentication (SSL) between WebSEAL and the distributed session cache.
• The maximum concurrent sessions policy is enforced.

Manual configuration steps

The following manual configuration steps are required for WebSEAL instances that are running on appliances, which are external to the distributed session cache server cluster. These external appliances can be either software-based WebSEAL instances or appliance-based WebSEAL instances that are not in the same cluster as the distributed session cache server.

1. Information gathering.
2. WebSEAL configuration file settings.
3. Restart the WebSEAL server.
4. Create junctions for virtual hosts.
5. Set the maximum concurrent sessions policy.
6. Test the configuration.

Parent topic: Quickstart guide for WebSEAL to use the distributed session cache

Related tasks

• Configure a WebSEAL instance on a cluster member to use the distributed session cache