NetIQ Access Manager can be configured by using Network Address Translation (NAT), which enables the communication between the Administration Console from local network to other Access Manager devices such as Identity Server and Access Gateway. The devices can be in the external network or in another private network. The NAT address needs be to configured in router.
See your router documentation for more information.
Log in to the Administration Console.
Go to Access Manager > Global Settings, then click New.
Select an IP address from the Administration Console Public IP Address list.
This list contains primary and secondary Administration Console IP addresses.
Enter the respective NAT IP address for primary and secondary Administration Console in Public NAT IP Address.
NOTE:If the NAT IP address is not provided or if a mapping exists for the selected Administration Console IP, a message IP Address is not valid is displayed.
Click OK.
The Administration Console NAT IP is shared to other Access Manager devices.
For more information about configuring NAT, see Global Settings
in the NetIQ Access Manager 4.0 SP1 Administration Console Guide.
During installation, the system prompts the following message to specify the NAT address for the component:
Is local NAT available for the <device name> y/n? [n]:
Enter Y and specify the NAT address. This enables the Administration Console to use this NAT address when communicating to this device.
Alternatively, if the device is already installed, then run the reimport_nidp.sh or reimport_ags.sh script to specify the NAT address.