The Synchronization Agent connects to your Active Directory to synchronize user and group data with TMWS.
The data transmits over the HTTPS protocol on port 443 and this port is usually open on Firewall A by default, as depicted in the graphic above.
For details, see Synchronization Agent Configuration.
For details, see Authentication Agent Configuration.
Putting the Authentication Agent in the DMZ allows user authentication regardless if they are inside the corporate network (User A) or outside of it (User B). If you deploy the Authentication Agent to the Intranet, only User A, who is inside the corporate network, can authenticate and log on to TMWS.
Source |
Destination |
Firewall Settings |
---|---|---|
Intranet |
TMWS services |
Port 443 on Firewall A (normally open) |
Internet |
TMWS Authentication Agent in DMZ |
Port 443 or 80 (for transparent authentication) on Firewall A |
TMWS Authentication Agent in DMZ |
Active Directory Server |
Port 389 on Firewall B |