Use the Cluster Configuration management page to administer cluster support for the
appliance.
You can view and update the current cluster session cache configuration:
- Worker threads
- The number of worker threads that handle the server requests. At a
minimum, use a number that is greater than the maximum number of
clients.
- Maximum session lifetime
- The maximum lifetime in seconds for each session. Use a value greater
than the maximum lifetime of all clients. That is, use a value greater
than the maximum [session] timeout value that the
WebSEAL clients use.
For more information about the
[session] timeout configuration entry, see
the reference topics for the Web Reverse Stanza Proxy in the
Knowledge Center.
- Client grace period
- The grace period in seconds that a client has available to restart and
register an interest in the session again before the session is removed
from the session cache. This period gives the client a chance to restart
without losing the session from the server.
Use a similar value to
the idle timeout value for the session on the client. That is, use a
value similar to the [session] inactive-timeout
value that is set in the client Web Reverse Proxy configuration.
For more information about the [session]
inactive-timeout configuration entry, see the
reference topics for the Web Reverse Stanza Proxy in the Knowledge
Center.
- Support internal clients only
- Indicates that only internal clients can use the distributed session
cache.
Notes: - IBM Security Access Manager for Mobile, version 8.0 supports internal clients only.
- If this option is selected, the remaining fields are
disabled.
-
Clients can be turned off. For more information about
failover events, search for the Options for handling
session failover events topic in the Administering
topics in the Knowledge Center. For more information
about configuration properties, see Advanced configuration properties.
- Support internal and external clients
- Indicates that both internal and external clients can use the
distributed session cache.
Note: Support for external clients is not
available in IBM Security Access Manager for Mobile,
version 8.0.
- Port
- The port on which external clients can communicate with the session
cache. This field is mandatory if you enable support for internal and
external clients.
- Enable SSL
- If selected, the distributed session cache uses secure communication
with its clients.
Note: If you enable SSL, you must also configure the
Keyfile.
- Keyfile
- Lists the existing keyfiles on the appliance. These keyfiles are managed
from the SSL certificates page. You can click the SSL
Certificates link on the right to go to that
page.
Note: If you want to share the key files across the cluster,
you must go to the SSL Certificates page and
select the Replicate with Cluster check
box.
- Label
- Lists the certificate labels in the selected keyfile. This field is
disabled if a keyfile is not selected.