Before installing ArcGIS Enterprise, identify the URL that will be used to represent your ArcGIS Enterprise organization and enable client access to it. This single URL provides access to multiple resources such as apps, administrative tools, and APIs and defines how responses are formed to client requests.
The ArcGIS Enterprise organization is accessed by a single URL that is composed of a scheme, host, and context, as shown below.
The terms in the example above are defined as follows:
- Scheme—Communicates to the requester or browser to access the organization's URL over HTTPS
- Host—Describes the fully qualified domain name (FQDN) or Domain Name System (DNS) alias for the organization
- Context—Refers to the name an administrator provides when installing the ArcGIS Web Adaptor component
Caution:
The configuration described in this topic must be performed before federating any ArcGIS Server site with your portal. To add a DNS alias or reverse proxy after a server site has been federated, see Update the organization URL.
Configuration scenarios
Depending on how the organization has been configured, the organization URL will use one of the following.
Note:
When generating a Portal for ArcGIS license file, you will be prompted to provide your ArcGIS Enterprise organization URL. Review the configuration scenarios below and determine which organization URL scheme should be used for this value.
Note:
When your organization URL represents a production environment or is available outside of the local network, it is recommended to use a DNS alias to allow for greater flexibility in future upgrade and migration scenarios.
FQDN of the machine hosting the Web Adaptor
For this architecture, the registration of the Web Adaptor using the configuration wizard accessed with the FQDN is adequate to define the organization URL properly. This pattern is typical of deployments that are not intended to be internet-facing or are for nonproduction use.
In this example, both the portal and Web Adaptor machines are on an internal domain, behind the organization's firewall. The Web Adaptor name is enterprise.
- Organization URL: https://organization.internal.com/enterprise
DNS alias assigned to the machine hosting the Web Adaptor
For this architecture, it is recommended that the administrator set the WebContextURL prior to registration of the Web Adaptor. While the organization URL can be defined properly by accessing the configuration wizard page over the DNS alias during registration, setting the WebContextURL removes any ambiguity during future upgrades or web-tier architecture changes.
In this example, both the portal and Web Adaptor machines are on an internal domain, behind the organization's firewall.
- Organization URL: https://organization.internaldomain.com/enterprise
- DNS Record: organization.internaldomain.com to webadaptor.internaldomain.com
In the next scenario, both the portal machine and Web Adaptor machines are also on an internal domain, behind the organization's firewall.
- Organization URL: https://organization.domain.com/enterprise
- DNS Record: organization.domain.com to webadaptor.domain.com or public IP WebAdaptor
DNS alias assigned to a reverse proxy or load balancer (with or without Web Adaptor in the network path)
For this architecture, you must follow the guidance for integrating your portal with a reverse proxy or load balancer including setting the WebContextURL prior to creating content or federating an ArcGIS Server site with the organization.
In this first scenario, both the portal and Web Adaptor machines are on an internal domain, behind the organization's firewall. The load balancer is accessed through the FQDN that resides outside the organization's firewall. The web adaptor name is enterprise.
- Organization URL: https://organization.external.com/enterprise
- DNS Record: organization.domain.com to loadbalancer.domain.com or public IP LoadBalancer
In the next scenario, the portal machine is on an internal domain behind the organization's firewall. The Web Adaptor is not used. The load balancer is accessed through a FQDN that resides outside the organization's URL.
- Organization URL: https://organization.external.com/enterprise
- DNS Record: organization.domain.com to loadbalancer.domain.com or public IP LoadBalancer