?
Solved

Can Windows NLB be Configured on Two Web Application Proxies Without Reconfiguring Existing, Single WAP?

Posted on 2014-07-23
2
Medium Priority
?
113 Views
Last Modified: 2015-03-02
I have a functioning AD FS environment that consists of the following:

2 DCs (2008 R2)
1 AD FS server using WID (2012 R2)
1 AD FS WAP server (2012 R2)

Right now we are using this environment for Dynamics CRM 2013 (IFD) and it's working well. I would like to expand our on-premise infrastructure to make it redundant as we will be looking to utilize SSO and an Exchange hybrid configuration with Office365.

I've already deployed a new AD FS server and joined it to the existing farm. Configuration data has copied over successfully.

I would like to deploy an additional AD FS WAP as well, and this is where I start to hesitate because I don't want to disrupt the current working environment.

Questions:

1. If load balancing isn't as much of a concern as availability is to me, is it necessary to configure a NLB, say Windows NLB, on the two AD FS servers? Is it recommended?

My research shows that in a farm configuration the primary AD FS server can go down and the secondary AD FS server will resume responsibilities; however, the database will be read-only meaning no new configuration changes can be made until either the primary comes back online or the secondary is marked as primary. Correct or no?  

2. Can Windows NLB be configured on the WAPs after the initial WAP configuration is in place and functioning? What steps should be taken to minimize downtime, if any, while setting up NLB?
0
Comment
Question by:Citadelny
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 43

Accepted Solution

by:
Vasil Michev (MVP) earned 2000 total points
ID: 40216063
Your assumptions on AD FS redundancy are correct. NLB is not mandatory, but recommended. AD FS resource usage is not that big, so you can live without NLB, especially for small environments.
0
 

Author Comment

by:Citadelny
ID: 40216588
@Vasil Michev,

Thanks. What bout for the WAPs? Will the second WAP take over if the first one goes down or do I need NLB configured for this to occur?
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The following article is comprised of the pearls we have garnered deploying virtualization solutions since Virtual Server 2005 and subsequent 2008 RTM+ Hyper-V in standalone and clustered environments.
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question