Expand my Community achievements bar.

SOLVED

Connect AEM Author from NLB (Network Load Balancer)

Avatar

Level 5

Hi Team,

 

I had installed the  AEM Linux environment .Able to access aem admin console and pages using http but we need access AEM author instance using NLB (network load balancer ) URL this required AEM author should enable SSL or https . Please let me know process how to enable the SSL or HTTPs to access the AEM Author (either using private ,key store certificate or using /system/console/configMgr or sling map)

 

Regards

Vara

 

 

1 Accepted Solution

Avatar

Correct answer by
Community Advisor

Hello Vara,

 

Is there any specific reason to not to use dispatcher for author? The link that I shared earlier shows how to get the single dispatcher serving content for both author and publish. Moreover, this is the recommended config by Adobe Managed Service (AMS) for AEM 1:1 topology.

 

For local/non-prod setup self-signed cert should be fine. However, in ideal scenario where your load balancer (like ELB) is accessible through internet via DNS, CA approved certificate can(should) be installed.

 

Thanks        

View solution in original post

6 Replies

Avatar

Level 5

Thank you I had refereed same URL its mentioned below

"Typically, your IT department provides the CA-trusted certificate and key, however self-signed certificate can be used for development and testing purposes."

Can I generate self-signed Certificate at AEM author Linux server same can upload AEM  will it work or If need to check with IT Department provide CA-Trusted certificate and Key is both  Certificate are same or different which recommended approach 

Avatar

Community Advisor

Hello Vara,

 

I am not sure if you already have dispatcher in-place or not. If not you can set it up and let it manage the SSL for you. Here is a comprehensive instruction set to set it up locally: https://github.com/adobe/aem-dispatcher-docker

 

The example in the above link shows it with a self sign certificate however, If your load balancer is available on internet you can go for standard certificate authorities (CA) and attach the certificate in the LB.

 

If you can provide more detail about your current setup, will be able to help more.

 

Thanks    

Avatar

Level 5

Dispatcher in-place only for publish server not author .

 

Can I go for self-signed certificate generation at AEM Author server then Same can upload key trust store as mentioned below URL or Do i need to ask IT department provide CA-trusted certificate and key or do we need to do any thing at NLB (Network Load Balancer)

https://experienceleague.adobe.com/docs/experience-manager-learn/foundation/security/use-the-ssl-wiz...

 

Regards

Vara

 

 

 

Avatar

Correct answer by
Community Advisor

Hello Vara,

 

Is there any specific reason to not to use dispatcher for author? The link that I shared earlier shows how to get the single dispatcher serving content for both author and publish. Moreover, this is the recommended config by Adobe Managed Service (AMS) for AEM 1:1 topology.

 

For local/non-prod setup self-signed cert should be fine. However, in ideal scenario where your load balancer (like ELB) is accessible through internet via DNS, CA approved certificate can(should) be installed.

 

Thanks        

Avatar

Administrator

@varaande  Do you find the suggestions from users useful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. 



Kautuk Sahni