We are deploying UserID with username policy enforcement and the concern is agent resilience. We do not want to use the firewall built in agent and the server team does not allow agent installation on a domain controller. The plan is to install the agent on dedicated windows server and to monitor all domain controllers, but t if the server hosting the agent fails, mapping can be lost.
Can we have two or more UserID agents monitoring the same set of domain controllers and added to a single firewall? Would this create duplicate or conflicting user ID mappings?
Solved! Go to Solution.
@BatD , yes, multiple agents to the same firewall works fine.
we have 2 agents monitoring the same DC's (8 in total) and both agents are configured on all of our firewalls.
As @MickBall it works perfectly fine. The only concern would potentially be the impact to the a remote site (if that's part of your design) on circuit BW consumption.
Since UIAs pull all DC logs if the DC is really busy you might end up with ~500-750Kbps of circuit usage with the double hit.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!