Here's the scenario:
- Single machine to host a base ArcGIS Enterprise deployment (ArcGIS Server / Portal / DataStore)
- Portal will only be available internally (intranet)
- ArcGIS to be accessible internally and externally, however only non-secured map services will be available externally.
I'm thinking this could be achieved by placing a reverse proxy in front of ArcGIS Server. Only non-secured services would be available externally, so my assumption is ArcGIS server would never need to delegate authentication to Portal.
Anyone see any problems with this?