Chat now with support
Chat mit Support

Identity Manager 9.2 - Installation Guide

About this guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing additional modules for a existing One Identity Manager installation Installing and updating an application server Installing the API Server Installing, configuring, and maintaining the Web Designer Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Troubleshooting Advanced configuration of the Manager web application Machine roles and installation packages Configuration parameters for the email notification system How to configure the One Identity Manager database using SQL Server AlwaysOn availability groups

Plug-ins for the Manager web application

Plug-ins extend the functionality of the Manager web application. You can enable a plug-in by setting the option in front of the plug-in name. You may find plug-in specific settings under a plug-in. You can edit the settings in the Plugins pane of the Manager Web Configuration Editor.

Plugin automatic update

This plug-in runs automatic update.

Table 51: Meaning of configuration settings
Setting Meaning

Auto update

Automatic update is enabled.

Severity code

Severity of a change in order to start automatic update.

Related topics

Load balancing of the Manager web application

The Manager web application provides simple load balancing in order to distribute user sessions and the resulting load across multiple processes or even servers. To do this, the application is installed multiple times on the same or on other servers.

All collaborating applications that can be logged into, are declared in the applications' Application pool. The selection algorithm for load distribution distributes user logins across the defined applications.

NOTE: Even if only one application is installed, it must be defined in your application pool, otherwise you cannot log in.

Table 52: Supported algorithms for load balancing
Algorithm Description

DistributeEqually

This algorithm distributes user logins such that each application in one language has the same number of active users, if possible. This algorithm is the default and is required in 99% of cases.

DistributeSuccessively

This algorithm distributes user logins by order of application definition in the application pool. First of all, all user logins are forwarded to the first application in the desired language. When this has reached it maximum load, logins are forwarded to the next application.

Load balancing solves the following problems:

  • Multilingual

    Language is fixed for per application so that an application can only provide user sessions in one language. If users can log in with multiple languages, at least one application must be installed for each language.

  • Bypassing resource limitations

    If multiple web applications are installed and these are assigned to different Internet Information Services application pools, these are started in separate processes.

  • Increasing performance

    Performance can be noticeably improved by installing on several servers.

  • Redundancy

    Multiple installation does not necessary complete outage if just one of the installed application fails.

Related topics

Manager web application single sign-on

The Manager web application supports a single sign-on mechanism that enables authentication of a user without the user having to repeatedly enter their user name and password.

Prerequisites required:

  • Anonymous access disabled.

  • Configuration of an authentication module capable of single sign-on.

    For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

  • Permissions in the application’s own application pool

You can disable anonymous access on the web server. This means the user's browser must provide the data required for authentication.

To disable the anonymous access

  1. open the configuration of the Manager web application in the Internet Information Services and activate the configuration for Authentication.

  2. Change the value of the status to disabled in Anonymous Authentication.

Related topics

Machine roles and installation packages

Table 53: Machine role and installation package options
Machine role Description of the installation package

Database Agent

Contains the DatabaseAgentServiceCmd.exe program for running the Database Agent Service from the command line.

Documentation

Contains One Identity Manager documentation in different languages.

SCIM Provider

Contains the SCIM Plugin for the API Server

Server

Contains all the basic components for setting up a server.

Server | Job Server

Contains the One Identity Manager Service and basic processing components. Additional machine roles contain connectors for synchronizing individual target systems.

Server | Job Server | Configuration tool

Contain configuration tool for the One Identity Manager Service.

Server | Web

Contains all the basic components for setting up a web server.

Server | Web | Application Server

Contains the components for setting up an application server. The machine roles Search Service and Search Indexing Service are required for indexing the full text search. These machine roles are always used together.

Server | Web | Business API Server

Contains the components for setting up an API Server.

Server | Web | Manager Web Application

Contains the tools for installing and configuring the Manager on a web server.

Server | Web| End User Web Application

Contains the tools for installing and configuring the Web Portal on a web server.

Workstation

Contains all basic components for installing tools on an administrative workstation.

Workstation | Administration

Contains administration tools required by default users for fulfilling their tasks with One Identity Manager. In addition to the tools that ensure basic functionality for working with One Identity Manager, the administration machine role includes the Manager as a main administration tool.

Workstation | Command line administration tools

Contains various command line programs.

Workstation | Configuration

Contains all tools for the default user and additional programs required to configure the system. For example, these include the Configuration Wizard, Database Compiler, Database Transporter, Crypto Configuration, Designer, Web Designer, and configuration tools for the One Identity Manager Service.

Workstation | Development and Testing

Contains the tools to develop and test custom scripts, such as the System Debugger.

Workstation | Monitoring

Contains programs for monitoring the system status, for example the Job Queue Info program.

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen