Hi ,
I need to publish my existing FIM Portal on internet, below is my plan for that:
Current Scenario:
- We have 2 FIM Portal Servers published internally using our internal Hardware load balancer (HLB). We have FIM Sync server and one FIM Portal Admin server.
Proposed plan:
we are going to publish FIM servers using Windows Server 2012 R2's Web Application Proxy (WAP) servers.
We will configure two WAP servers in DMZ network behind our external HLB.
Queries:
1- Does WAP servers are supported in this scenario?
2- Do we require both WAP servers in DMZ to be domain joined?
3- Will this method will work us in publishing Password Register Portal?
http://blogs.msdn.com/b/angeos_blogs/archive/2014/10/01/publishing-forefront-identity-manager-fim-self-service-password-reset-sspr-portals-through-web-application-proxy-wap.aspx
4- Will this method will work for us in publishing password reset portal?
http://blogs.msdn.com/b/angeos_blogs/archive/2014/10/01/publishing-forefront-identity-manager-fim-self-service-password-reset-sspr-portal-through-web-application-proxy-wap.aspx
5- We are going to export and use the same certificate as our current internal servers are using, i think this is fine?