Chat now with support
Chat with Support

Identity Manager 9.2 - Installation Guide

About this guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing additional modules for a existing One Identity Manager installation Installing and updating an application server Installing the API Server Installing, configuring, and maintaining the Web Designer Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Troubleshooting Advanced configuration of the Manager web application Machine roles and installation packages Configuration parameters for the email notification system How to configure the One Identity Manager database using SQL Server AlwaysOn availability groups

Tips for working with an encrypted One Identity Manager database

If you encrypt a One Identity Manager database, you must declare the database key to the One Identity Manager Service.

 CAUTION: If the One Identity Manager Service finds a private key in the installation directory on startup, it places the key in the Windows internal key container of its service account and deletes the file from the hard drive. So save the private key at another location in addition to the service install directory.

IMPORTANT:

  • The file with the private key must exist in the server's installation directory on all servers with an active One Identity Manager Service.

  • If you change the One Identity Manager Service user account, you must save the key file in the service’s install directory again.

To declare the database key

  1. Declare the following information in the One Identity Manager Service configuration file. Use the Job Server Editor in the Designer or the Job Service Configuration program to edit the configuration file. For more information, see the One Identity Manager Configuration Guide.

    Table 19: Configuring the One Identity Manager Service for encryption
    Configuration module Parameters Meaning

    JobServiceDestination

    Encryption method (EncryptionScheme)

    Encryption method used

    JobServiceDestination

    File with private key (PrivateKey)

    Enter the file with the encryption information. The default file is private.key.

    JobServiceDestination

    Private key identifier (PrivateKeyId)

    Identifier of the private key.

    Use this parameter if you work with several private keys, for example, if One Identity Manager Service data must be exchanged between two encrypted One Identity Manager databases.

    If no ID is specified, a search is performed for the private.key file.

    File with the private key.

     

    Private key identifier and path to private key file.

    The ID is expected in the JobServiceDestination in the Private key identifier parameter (PrivateKeyId) The default key has the ID Default.

  2. Save the key file created in the service’s install directory.

  3. Open the service management and restart the One Identity Manager Service.

Detailed information about this topic

One Identity Manager vendor notification

Give us the opportunity to keep you up-to-date. The interfaces to other systems are being developed continually. Enable vendor notifications to receive news about important program updates for your system.

If vendor notification is enabled, One Identity Manager generates a list of system settings once a month and sends it to One Identity. This list does not contain any personal data. The list will be reviewed by our customer support team, who will look for material changes in a proactive effort to identify potential issues before they materialize on your system. The lists may be used by our R&D staff for analysis, diagnosis, and replication for testing purposes. We will keep and refer to this information for as long as your company remains on support for this product.

NOTE: You can check the latest system information at any time in the Help > Info menu.

Detailed information about this topic

Enabling vendor notification

NOTE: You can only configure vendor notification in Launchpad on a One Identity Manager database with the Live environment staging level.

Prerequisite for vendor notification

  • A Job server is configured as SMTP host for sending mail in One Identity Manager.

  • The configuration parameters for email notification are configured.

To enable a vendor notification

  1. Start the Launchpad and log in to the One Identity Manager database.

  2. In the Installation overview pane, select the Configure vendor notification entry and click Run.

    This starts the Designer and opens the Configuration Parameter Editor.

  3. Enable the Common | MailNotification | VendorNotification configuration parameter and enter the email address of your business contact.

    The email address is used as the return address for notifying vendors.

  4. Select the Database > Commit to database and click Save.

Detailed information about this topic

Checking vendor notification

NOTE: You can configure vendor notification in the Launchpad only for a One Identity Manager database with the Live environment staging level.

To check whether vendor notification is enabled

  • Start the Launchpad and log in to the One Identity Manager database.

    In the Installation view, you can see whether the function is enabled in the Configure vendor notification entry.

Detailed information about this topic
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating