This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
phlrnnr
Advisor
‎2019-09-27 12:57 PM

Identity Collector sending to cluster best practice

I'm working on standing up some new Identity collector servers.  What is the best practice for sending identity info from the IDC to the firewall cluster? 

Options

1. Configure 1 gateway per cluster with the VIP of the cluster.  If this is correct, does the primary member share the identity information with the secondary member?

2. Configure an entry for each member of the cluster. (eg, a 2 member cluster would have 2 gateways configured).  This assumes that the cluster members don't automatically share identity information.

Which option is correct, or is there a different way I should configure this?

Thanks!

0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2019-09-28 03:16 PM

First option seems most reasonable and yes the information is synced.