Deploying Tenant Broker and Tenants
A typical scenario of deploying the multi-tenant architecture of Parallels RAS consists of the following steps:
- Deploy Tenant Broker.
- Deploy a traditional RAS Farm to operate as a Tenant.
- Configure network between the Tenant Broker and the Tenant to allow the following connections:
- Shared RAS Secure Gateways to Tenant RAS Connection Brokers.
- Shared RAS Secure Gateways to resources hosts.
- Tenant RAS Connection Brokers to Tenant Broker RAS Connection Broker.
For the information about ports numbers, please see Communication ports.
- Create a Tenant object and a corresponding invitations hash in the Tenant Broker console, or create a secret key (more on this later in this chapter).
- Join the Tenant to the Tenant Broker using the invitation hash or the secret key.
- Assign a public domain address to the Tenant. This can be done at this point (after you join a Tenant) or it can be done in advance if you wish. Either way it has to be done or the clients will not be able to connect to the Tenant Farm.
- Set up routing for incoming Tenant traffic from the Internet to shared RAS Secure Gateways and HALB.
- Configure a certificate for the Tenant. By default, a self-signed certificate created during the installation will be used.
- Test the client connectivity.
The subsequent sections describe the steps above in detail.