The gateway server performs the function of the synchronization server. All One Identity Manager Service actions are run against the target system environment on the synchronization server. Data entries required for synchronization and administration with the One Identity Manager database are processed by the synchronization server. The synchronization server must be declared as a Job server in One Identity Manager.
To set up a gateway server
-
Configure the Notes client.
-
Install the One Identity Manager Service with Domino connector and declare the gateway server as Job server in the One Identity Manager database.
-
(Optional) You can add an archive database for backing up ID files in order to restore user ID files using the ID restore method.
Detailed information about this topic
To set up a gateway server, a server has to be available with the following software installed:
-
Windows operating system
The following versions are supported:
-
Windows Server 2022
-
Windows Server 2019
-
Windows Server 2016
-
Windows Server 2012 R2
-
Windows Server 2012
-
Microsoft .NET Framework version 4.8 or later
NOTE: Take the target system manufacturer's recommendations into account.
-
Windows Installer
-
HCL Notes Client versions 12.0.1 (only 64 bit) and 14.0
-
Write access to the Notes client install directory and the One Identity Manager install directory.
-
One Identity Manager Service, Domino connector
To configure the Notes client
-
Extend the PATH variable to include the default search path (installation directory) and the data directory (<Installation directory>\data).
-
Enter the Notes installation path in the operating systems default search path (PATH variable). This is the path to find the Notes.exe.
-
Also add the path selected for the Notes data directory during the Notes client's installation to the PATH variables.
-
Specify the directory for the ID files repository (<Installation directory>\data\IDS\<Name of the domain>).
-
Ensure the synchronization user's user ID file is available.
A separate ID file must be provided for this user. The path to this ID file is entered later into the custom INI file. User ID files with multiple passwords are not supported.
NOTE: The administrator ID file that is created when the Notes server is installed may not be used because it is used for other administrative tasks.
-
Keep the certifier ID file available for certificate administration.
Set up all certifier ID files for registering users on the gateway server. Certifier ID files with multiple passwords are not supported.
-
Start the Notes client with the synchronization user's ID file and log in.
This causes the configuration entries to be made on the computer. The access permissions can be checked by calculating a new user with the ID file as a test.
-
Copy the Domino Directory certificate documents into the user account's personal address book for synchronization.
-
Check whether the certification log certlog.nsf exists.
-
Create a custom INI file.
The path of the synchronization user's ID file must be entered in this INI file.
Detailed information about this topic
When you are configuring the gateway server ensure that the certification documents are copied from the Domino Directory into the synchronization user's personal address book. This is necessary to enable the Domino connector to add, rename, or move user accounts in the target system.
TIP: Copy new certificates regularly from the Domino Directory into the synchronization user's personal address book. For more information about copying certificate documents, see your Domino documentation.