HOWTO Best Practices

---

---

OS 12

Initial Testing without UMS

• Want to test out OS 12 with App Portal without UMS12?

Security / Password

• Password

  Provides details on the user types and their roles in IGEL OS. You can configure passwords for the user types to protect your endpoint devices against unwanted changes.

• Logon Settings

  Provides options for logon settings are available in IGEL OS.

• Active Directory/Kerberos

  Shows how to configure the options for Active Directory with Kerberos in IGEL OS.

• Single Sign On (SSO)

  IGEL SSO will work with identity provider (IdP) that supports OpenID Connect.

---

UMS

Initial setup for UMS can be done with embedded database with plans to migrate the embedded database to external database once devices reach a certain number.

NOTE: For small installations, a single UMS Server instance (standard UMS) with an embedded database is usually sufficient. If required, a single-instance installation can be easily extended anytime to a Distributed UMS installation by installing additional servers (and in the case of an embedded database, by switching preliminarily to an external data source).

• UMS Sizing Guidelines

---

ICG vs. Reverse Proxy

• IGEL Cloud Gateway vs. Reverse Proxy for the Communication between UMS 12 and IGEL OS Devices

  With the launch of IGEL Universal Management Suite (UMS) 12, the Unified Protocol used for all communication between the UMS and IGEL OS 12 devices was introduced. The Unified Protocol is a secure protocol that uses TCP 8443. However, depending on the structure of your UMS environment, company's security policies, etc., it may be insufficient, and the use of the IGEL Cloud Gateway (ICG) or reverse proxy may be required.