Secure Mobile Access 12.4 CMS Administration Guide

Setting up a Basic GTO Service

After you set up the Central Management Server (CMS), and at least two SMA appliances, you can set up a basic GTO deployment.

To set up a basic GTO deployment

  1. Navigate to Management Server > Configure.
  2. Click Central Management Settings.

    The CMS Settings page displays.

  3. Under Central User Licensing, check box for Enable managing appliance user licensing with one central license.

    The CMS license will support upto 50 users and 50 email users across all appliances.

  4. Under Global Traffic Optimizer Service, check the box for Users connect to a service from anywhere in the world and are routed to the nearest managed appliance.

    The Global Traffic Optimizer Service check box is grayed out if Central User Licensing is not enabled. You must enable Central User Licensing before you enable the Global Traffic Optimizer Service.

    After you enable the Global Traffic Optimizer Service, the following message is displayed:

    The service name must be delegated in public DNS, see the admin guide for details.

  5. In the Service name field, enter the name of your service. For example, access.example.com.
  6. Under Policy Synchronization, check the box for Enable pushing policy configuration from this server to managed appliances. This feature is recommended so that users will have a consistent experience on all GTO-enabled appliances.

  7. Under Address Pools, select one of the following:

    • All appliance address pool settings configuration is controlled by the central policy on the CMS (recommended)
    • Each appliance has its own address pool configuration (not recommended)
  8. Under Authentication Servers, select one of the following:

    • Appliance share the same authentication servers
    • Each appliance has its own authentication server and OTP settings
  9. Under SSH Service, select one of the following:

    • Appliances share the same configuration
    • Each appliance has its own SSH configuration
  10. Under Advanced, in the Pool IP field, enter the CMS IP address that is reachable by managed appliances.

    This is required only if the CMS internal address is not reachable by managed appliances.

  11. Click Save.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.