Proofpoint | ObserveIT On-Premises Insider Threat Management
Network Load Balancer Prerequisites
This section describes configuration requirements for the load balancer required if you are using more than one ObserveIT Application Server in your deployment.
-
Enable session persistence and set to 15 minutes.
-
Configure load balancing mechanism for least connections modes.
-
Configure load balancer is to perform health checks following this URL template:
-
https://<# App_Server_FQDN #>/ObserveitApplicationServer/v2/apis/health/_health -
Expect reply code 200.
-
-
Provision TLS certificate for the ObserveIT load balancer FQDN. For certificate requirements see Digital certificates.
Mutual Authentication
If certificate-based mutual authentication is used:
-
Client certificates must contain value itAuth in Subject Alternative Name field.
-
Endpoints must be properly configured to trust the Certificate Authority issuing the client certificates.
-
Load balancer must be properly configured to trust the Certificate Authority issuing client certificates.
-
Load balancer must be properly configured to trust TLS certificates for upstream ObserveIT Application Servers.
Related Topics: