1 Finding XMS Node Server IDs
To find service IDs of nodes, perform the below steps:
FROM CLI:
1. Login to CLI of XMS for which you want to find the node ID
2. Enter choice as 1 to get into Clustering Menu
3. You can see the node ID, as shown
Note: Repeat same steps to find the Node IDs of all the cluster members in the XMS cluster
FROM GUI:
1. Login to XMS Admin Console
2. In the support page, click on Cluster Information under Advanced
3. You will find the node IDs, as shown below
Once the required nodes are added as members of XMS cluster, you need to load balance them to access these clusters. Since it is a unified XMS server console, you need to configure SSL bridge on MDM component and MAM component. You will also need to configure DNS address record (NetScaler > Traffic Management > DNS Records > Address Records) to point the XMS FQDN to MAM LB VIP. The required details are explained in the this blog.
2 SSL BRIDGE – MDM LB VIP
In this section, we will look at configuring SSL Bridge using the wizard in NetScaler.
1. Login to NetScaler Gateway
2. In the Configuration tab, click on XenMobile
3. Click on Configure (Device Manager Load Balancing)
4. Enter the LB VIP
5. Click on Continue
6. To this VIP, add the XMS nodes
7. Enter the XMS server IP
8. Click Add
9. In the same way, add the second node of XMS
10. Click Continue and then Done.
This will create the MDM LB VIP
2.1 SSL OFFLOAD – MAM LB VIP
You need to configure SSL Offload for MAM component on 8443 port by following the steps below
1. Navigate to Configurations -> Traffic Management ->Load Balancing ->Virtual Servers
2. Click on ‘Add’
3. Enter the MAM LB VIP server info here
4. Protocol should be SSL and Port should be 8443
5. Click Continue
6. After you have created a VIP, you need to add the Persistence value
7. Select Persistence as CustomServerID
8. Enter the below value as expression
HTTP.REQ.COOKIE.VALUE(“ACNODEID”)
9. Click Save and you will see this screen with saved settings
10. Since this is on SSL Certificate, you need to bind the server certificate. From Advanced on the left side, choose certificates
11. Choose the > mark to add certificate (as shown below)
12. It will take you to server cert key page, click Bind
13. Select the SSL certificate and click on Insert
14. Click Continue
15. Click Done
2.2 Create Service Groups
Create Service Groups by following the steps given here:
Service Group for MDM on Port 443
1. Navigate to NetScaler > Traffic Management > Load Balancing > Service Groups
2. Click Add
3. Choose the protocol as SSL_BRIDGE
4. Click Continue
5. Click Done to create service group
6. In the same way, create one more service group for MDM on port 8443
7. Once done with MDM, you need to create a service group for MAM on port 8443
Note: You can follow the same steps as above. Make sure the Protocol is selected as SSL
2.3 Create Members for Service Groups
Create members for Service Groups by following the steps given here
1. Open the LB service groups and click on first (or anyone) to add members
2. Here, I have selected MDM service group on port 443
3. Click + next to Members
4. Click > to add service members
5. Click Add
6. Enter the IP address of the Node
7. Make sure the port number matches.
8. Repeat the same steps for other nodes of in cluster
9. Once done, click Close
10. Click Done
11. Repeat the same steps for MDM service group on port 8443
Note: Since groups and members are mapped, you would see the status UP
12. Now, open the MAM service group
13. Perform the same steps as you have done for MDM, and also you need to add the server IDs as shown here.
14. You should see all the VIPs in Enabled and UP mode
2.4 Binding LB VIPs to Service Groups
You need to bind the service groups with the LB VIPs. You can do that by performing the below steps
1. Open the MDM LB (or anyone that you like)
2. On the right side, click on service groups
3. Click the > mark in the service group
4. Click on Bind
5. Select the same port group to bind
6. Click Save
7. Click Done
8. You will see that LB VIP shows as enabled and up
9. Repeat the steps for other LB VIPs
10. You should see all the LBs in UP and Enabled state
2.5 Point AG VIP to LB VIP
After configuring the LB VIP, you point AG to LB VIP. You can do that by following the below steps:
1. Open the AG VIP configuration page (NS Configuration -> XenMobile)
2. Click Edit
3. Click on Edit beside XenMobile Settings
4. Append the App Controller FQDN (XMS FQDN) with :8443
5. After you append, you would see the port as below
6. Click Done
2.6 Point XMS Host to MAM LB VIP
You need make changes in NS to route all the traffic from AG to MAM LB VIP. To achieve this, we need to add a DNS record in NS, as below
1. Navigate to NetScaler > Traffic Management > DNS > Records > Address Records
2. Click Add
3. Enter the Host Name and AG VIP IP address and click the + sign to add the IP
4. Click Create
5. You will see the DNS entry in the list.
IMPORTANT: The MAM LB VIP FQDN, MDM LB VIP FQDN and the XMS FQDN should be same.