In this IT Pro Challenge, learners will understand WAP and how to use it to allow external access to web services. Learners will install and configure WAP on a router, use the IIS Manager to identify the SSL certificate for HTTP communication with the server, verify the presence of the SSL certificate, configure the WAP service, publish a web application with pass-through authentication, and run the ipconfig / all command to verify their work. By taking this virtual lab, learners will gain the skills necessary for a role as a network or system administrator.
The virtual lab scenario is that you are a network administrator who needs to configure a router to allow access to a web server using Web Application Proxy (WAP). The configuration you’re working with is two subnets connected by a router. To complete your task, you need to install WAP on a router and then configure WAP to allow external access to web services. To finish, as a proof of concept, you will use WAP to verify access to the web server.
WAP is a standard for accessing information over a mobile wireless network. It is supported by all operating systems and most wireless networks.
Configure Web Application Proxy on a router
First, you need to install WAP, which requires Active Directory Federation Services (AD FS) on the network so that an AD FS server will be integrated with WAP. You need to configure the WAP service to use the AD FS server and publish a web application using pass-through authentication and an external URL. You will run the ipconfig / all command to review the IPv4 address and the DNS server in the admin virtual machine. Use a browser to verify that you can reach the application.
Publish a WAP rule for HTTPS traffic
Use Internet Information Services (IIS) Manager to determine the SSL certificate for HTTP communication to the server. You need to verify that the certificate exists, then configure the WAP service by removing the existing WAP HTTP publishing rule, and publish a web application with pass-through authentication and an external URL. You will run the ipconfig / all command to review the IPv4 address and the DNS server in the admin virtual machine. Use a browser to verify that you can reach the application.
Pass through authentication allows users to use the same password to sign in to both on-premise and cloud-based applications.
By completing this hands-on lab, you will learn how to configure WAP to provide external access to web services and use WAP to verify that external access, as well as understanding how to use the IIS Manager to determine the SSL certificate for the server, and using the ipconfig / all command in conjunction with a browser to verify your work.