unsecure service isolation from secure services via 2 web adaptor's

AllenJones

I need to serve unsecure services inside my fire wall and secure services ONLY outside my firewall from the same ArcGIS server install. I have installed 2 webadaptors, one in a DMZ (outside firewall) and one inside firewall. this works for inside because users can access unsecure services. But on the outside Web Adaptor users have to log in to see secure as expected but the unsecure services are exposed outside as well. This is a problem. We have applications running inside my organization that do not employ security and really dont need to because it's inside my firewall. need to ability to register services with a web adaptor so that only specific web adaptors can access those services. I have sopken to support and they tell me i have to run parallel ArcGIS servers which will require another license.

The bottom line is some things need to be unsecure inside my firewall but cannot be unsecure outside.

TomShindler · ‎09-14-2017

This enhancement request would be rendered irrelevant and impossible when server is federated to a portal, since a federated server can have only one webadaptor. Since Pro will currently only publish via Portal to a federated server, multiple webadaptors are unavailable in that environment anyway. So, in voting FOR this idea, I'm also endorsing the prerequisite concept that a server be allowed to have multiple web adaptors even when federated. Alternatively, if publishing directly from ArcGIS Pro to Server is enabled, then federation would not be necessary, and multiple web adaptors would continue to be possible in the ArcGIS Pro environment, this would then make this enhancement relevant going forward.