Advanced deployment model

The advanced deployment model is an extension of the basic model, with better backup and availability. The primary OneSpan Authentication Server instance may be dedicated exclusively to authentication requests, using none of its work time on administrative tasks. If the primary server fails, the backup server may be substituted with minimal effort, as replication will have kept the data up-to-date.

Advanced deployment model

Figure: Advanced deployment model

OneSpan Authentication Server

This model uses two OneSpan Authentication Server instances:

  • 1 primary instance, dedicated to handling authentication requests.
  • 1 backup instance, used for administration, but available for authentication requests if required, .

Administration

Administration is linked to the backup server.

Replication

Two-way replication is enabled on both OneSpan Authentication Server instances.

Auditing

Auditing to the database on both servers.

Reporting

Reporting should be configured via the reporting scenario options in the Configuration Utility or via the Administration Web Interface. Reports should be run from the auditing databases.

Limitations

If you are running multiple OneSpan Authentication Server instances using ODBC in a high-load scenario, we strongly recommend to disable OneSpan Authentication Server replication and set up replication on the ODBC database server level instead.

Slow responses from the OneSpan Authentication Server instances under load will disrupt the replication process!

Deployment steps

To set up the advanced deployment model

  1. Install OneSpan Authentication Server on the primary server.
  2. Install OneSpan Authentication Server on the backup server.
  3. Install the Administration Web Interface on the backup server.
  4. Configure two-way replication on each OneSpan Authentication Server instance.
  5. (OPTIONAL) Disable the administration scenario on the primary server.
  6. Schedule making data available for reporting.
  7. Make auditing data available for reporting, i.e. schedule to merge the primary server's audit data with the backup server auditing data using the Maintenance Wizard.