Network Architecture

The integration methods in the previous chapter largely ignored the physical location of the PortalGuard and target servers.Since PortalGuard relies on the HTTP protocol and RESTful design principles (link), it offers a high degree of flexibility in this area.

When deciding “where” PortalGuard will be installed, it is imperative to first have an understanding of the user access scenarios by answering the following questions:

  1. Who will be accessing PortalGuard?
    1. Company employees?
    2. External customers?
  2. Where will they be located?
    1. On the LAN?
    2. From the internet?
    3. From a mobile device?
  3. What PortalGuard services will they be accessing?
    1. Self-service account management?
    2. Multiple factor authentication?
    3. Password management/synchronization?

Once these questions are answered, it helps dictate how PortalGuard should be deployed. The two sections below briefly lay out general guidelines for this topic.

For a fuller discussion on making PortalGuard available in a load balanced manner, please see Chapter 9 in the PortalGuard Administrator’s Guide (link).