Hi ,

I need to publish my existing FIM Portal on internet, below is my plan for that:

Current Scenario:

- We have 2 FIM Portal Servers published internally using our internal Hardware load balancer (HLB). We have FIM Sync server and one FIM Portal Admin server.

Proposed plan:

we are going to publish FIM servers using Windows Server 2012 R2's Web Application Proxy (WAP) servers.

We will configure two WAP servers in DMZ network behind our external HLB.

Queries:

1- Does WAP servers are supported in this scenario?

2- Do we require both WAP servers in DMZ to be domain joined?

3- Will this method will work us in publishing Password Register Portal? 

http://blogs.msdn.com/b/angeos_blogs/archive/2014/10/01/publishing-forefront-identity-manager-fim-self-service-password-reset-sspr-portals-through-web-application-proxy-wap.aspx

4- Will this method will work for us in publishing password reset portal?

http://blogs.msdn.com/b/angeos_blogs/archive/2014/10/01/publishing-forefront-identity-manager-fim-self-service-password-reset-sspr-portal-through-web-application-proxy-wap.aspx

5- We are going to export and use the same certificate as our current internal servers are using, i think this is fine?

• Edited by Farrukh Qazi Wednesday, August 05, 2015 1:06 PM