There is no logic in an endpoint to indicate it is initially connecting to a Director and not a Front End Server. This means that the same DNS records, authentication methods, and signaling are used from the endpoint’s perspective. The Director first authenticates the user and then provides the name of the pool that the endpoint should register to instead of which point the client will attempt another sign-in to the pool the Director provided. The sign-in process looks like the following:
1. The endpoint resolves DNS SRV records for automatic configuration and attempts to connect to the Director.
2. The Director verifies the user’s credentials.
If the credentials are not valid, the endpoint does not authenticate ...