Web Access Management Gateway proof of concept deployment architecture
This proof of concept deployment environment is used to emulate a Web Access Management (WAM) gateway production environment for testing purposes.
In the test environment, PingAccess can be set up with the minimum hardware requirements. This environment example does not provide high availability and is not recommended for a production environment.
The following table describes the three zones within this proposed architecture.
Zone | Description |
---|---|
External Zone |
External network where incoming requests for web applications originate. |
DMZ |
Externally exposing segment where PingAccess is accessible to web browsers. PingAccess is a standalone instance in this environment, serving as both a runtime and an administrative port. |
Protected Zone |
Backend controlled zone in which sites hosting the protected web applications are located. All requests to these web applications must be designed to pass through PingAccess. PingFederate is accessible to web browsers in this zone and is a standalone instance in this environment, serving as both a runtime and an administrative port. PingFederate requires access to identity management infrastructure to authenticate users, depicted by the icon in the diagram. |