Chat now with support
Chat mit Support

Identity Manager Data Governance Edition 9.2.1 - Deployment Guide

One Identity Manager Data Governance Edition Deployment Guide Data Governance Edition system requirements Install One Identity Manager Data Governance Edition Deploy Data Governance Edition components Post installation configuration Authentication using service accounts and managed domains Working with managed hosts and agents Upgrade Data Governance Edition Remove Data Governance Edition Troubleshooting NetApp managed host deployment EMC managed host deployment SharePoint Farm managed host deployment

Available documentation

Data Governance Edition documentation includes the following manuals:

  • One Identity Manager Data Governance Edition User Guide

    This guide includes Data Governance Edition administration information.

  • One Identity Manager Data Governance Edition Deployment Guide

    This guide includes Data Governance Edition installation, configuration, and deployment information.

  • One Identity Manager Data Governance Edition IT Shop Resource Access Requests User Guide

    This guide includes details about the self-service resource requests related to resources that are governed, including the file system share creation request in the IT Shop.

  • One Identity Manager Data Governance Edition Technical Insight Guide

    This guide is intended for advanced audiences who want a deeper understanding of the Data Governance Edition components and how they communicate with each other. It also provides a description of the configuration file settings, registry key settings and PowerShell commands.

Data Governance Edition system requirements

Ensure that your system meets the following minimum hardware and system requirements before installing One Identity Manager. For more detailed information about system prerequisites, see the One Identity Manager Installation Guide.

NOTE: When setting up a virtual environment, carefully consider the configuration aspects such as CPU, memory availability, I/O subsystem, and network infrastructure to ensure the virtual layer has the necessary resources available. Please consult One Identity's Product Support Policies for more information on environment virtualization.

Every One Identity Manager installation can be virtualized. Ensure that performance and resources are available to the respective One Identity Manager component according to system requirements. Ideally, resource assignments for the database server are fixed.

Virtualization of a One Identity Manager installation should only be attempted by experts with strong knowledge of virtualization techniques.

NOTE: Some of the system requirements for One Identity Manager have changed in version 8.1. Prior to upgrading Data Governance Edition, ensure that the minimum requirements for all of the One Identity Manager components are meet. See the One Identity Manager Installation Guide for full details on One Identity Manager's system requirements.

Before installing Data Governance Edition, ensure that your system meets the following minimum hardware and software requirements.

In addition, ensure that the minimum permissions and communication port requirements are met to ensure proper authentication and communication with Data Governance Edition components.

Data Governance server

The Data Governance server refers to the server where the Data Governance service is installed. This server must meet the following minimum system requirements.

Table 4: Minimum system requirements: Data Governance server
Processor quad core CPU
Memory 16GB RAM
Free drive space 100GB
Operating system

64-bit Windows operating systems:

  • Windows Server 2012
  • Windows Server 2012 R2
  • Windows Server 2016
  • Windows Server 2019
  • Windows Server 2022
NOTE: Only a 64-bit server for Data Governance Edition is supported. Ensure that the server installed on a given computer uses the correct architecture to match the installed operating system.
Software

.NET Framework 4.8

Database server

The Database server refers to the server hosting the One Identity Manager database. One Identity Manager supports SQL Server database systems.

The following system requirements must be met in order to install the database on a server for use with Data Governance Edition. Depending on the number of One Identity Manager modules and the accounts managed in One Identity Manager, the requirements for working memory, hard disk space, and processors may be significantly greater than the minimum requirements. For more details on the system requirements for One Identity Manager, see the One Identity Manager Installation Guide or One Identity Manager Release Notes.

Table 5: Minimum system requirements: Database server
Processor

8 physical cores with 2.5 GHz+ frequency (non-production)

16 physical cores with 2.5 GHz+ frequency (production)

NOTE: 16 physical cores are recommended on performance grounds.

Memory

16 GB+ RAM (non-production)

64 GB+ RAM (production)

Free disk space

100 GB

Operating system

Windows operating systems:

  • Note the requirements given by Microsoft for the SQL Server version you are using.
NOTE: The 64-bit requirement for Windows Servers is specific to Data Governance Edition.

UNIX and Linux operating systems:

  • Note the requirements given by the operating system manufacturer for SQL Server databases.
Software

SQL Server

  • SQL Server 2022 Standard Edition (64-bit) with the latest cumulative update

  • SQL Server 2019 Standard Edition (64-bit) with the latest cumulative update

    NOTE: For performance reasons, the use of SQL Server Enterprise Edition is recommended for live systems.

    • Compatibility level for databases: SQL Server 2019 (150)

    • Default sort schema: case-insensitive, SQL_Latin1_General_CP1_CI_AS (Recommended)

    • SQL Server Management Studio (recommended)

NOTE: The minimum requirements listed above are considered to be for general use. With each custom One Identity Manager deployment these values may need to be increased to provide ideal performance. To determine production hardware require-ments, it is strongly recommended to consult a qualified One Identity Partner or the One Identity Professional Services team. Failure to do so may result in poor database performance.

For additional hardware recommendations, read the KB article https://support.oneidentity.com/identity-manager/kb/290330/how-to-configure-settings-as-per-the-system-information-overview, which outlines the System Information Overview available within One Identity Manager.

NOTE: In virtual environments, you must ensure that the VM host provides performance and resources to the database server according to system requirements. Ideally, resource assignments for the database server are fixed. Furthermore, optimal I/O performance must be provided, in particular for the database server. For more information about virtual environments, see Product Support Policies.

For installation and operation of a One Identity Manager database, the following database server and database settings are required.

Table 6: Database server settings
Property Value Comment

Language

English

 

Server Collation

Case insensitive

SQL_Latin1_General_CP1_CI_AS (recommended)

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Extreme transaction processing supported (is XTP supported)

True

One Identity Manager uses In-Memory-OLTP (Online Transactional Processing) for memory-optimized data accesses. The database server must support extreme transaction processing (XTP). This function is activated by default in a standard installation.

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If XTP is not activated, the installation or update is not started.

SQL Server Agent

Started

Start the SQL Server Agent in the SQL Server Service Management Portal. You can log in to a SQL Server Agent as a domain user with Windows authentication or with a local system account.

The settings is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If the SQL Server Agent is not started, the installation or update is not started.

Collation

SQL_Latin1_General_CP1_CI_AS

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Recovery model

Simple

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If the recovery model is not set to the value Simple, a warning is issued before installing or updating starts. You can ignore this warning.

For performance reasons, however, it is recommended you set the database to the Simple recovery model for the duration of the schema installation or update.

Compatibility level

SQL Server 2019 (150)

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Auto Create Statistics

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Auto Update Statistics

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Auto Update Statistics Asynchronously

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Arithmetic Abort enabled

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Quoted Identifiers Enabled

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Broker Enabled

True

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Is Read Committed Snapshot On

True

The default setting fro transactions is AutoCommit. If transactions are required, they are opened explicitly.

These settings have proven to provide the best balance between data security and performance for One Identity Manager's massive parallel processing. Other translation modes are not supported by One Identity Manager.

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Parameterization

Forced

The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary.

Database file and data file group for memory-optimized tables

Required

One Identity Manager uses In-Memory-OLTP (Online Transactional Processing) for memory-optimized data accesses.

For the creation of memory-optimized tables, the following prerequisites must be met:

  • A database file with the Filestream data file type must exist.
  • A memory-optimized data file group must exist.

Before installation or update of the One Identity Manager database, the Configuration Wizard checks whether these requirements are fulfilled.

In the Configuration Wizard, repair methods are available to create the database file and the data file group. The database file is created by the repair method in the directory of the data file (*.mdf).

For details about installation and operation of One Identity Manager database using Azure SQL Managed Instance, please refer to One Identity Manager Installation Guide: Identity Manager - Installation Guide (oneidentity.com).

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen