Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Identity Manager 9.2.1 - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics
Overview of the One Identity Manager schema Table types and default columns in the One Identity Manager data model Notes on editing table definitions and column definitions Table definitions Column definitions Table relations Dynamic foreign key Supporting file groups
Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

Process collection module

In this module you define the Job providers. The Job provider supplies a Job destination process step and evaluates the result. The following module types may be selected:

You can configure any number of Job providers in one configuration file. The associated configuration sections are determined by name. Therefore, you should rename Job providers that are added.

MSSQLJobProvider

The MSSQLJobProvider handles One Identity Manager database process requests on an SQL Server.

Table 102: MSSQLJobProvider parameters

Parameters

Description

Connection parameter (ConnectString)

Access data for the database server and the database to be used At least one user with the configuration user access level is required for process collection. Some functions may require an administrative user.

  • Server: Database server.

  • (Optional) Windows Authentication: Specifies whether the integrated Windows authentication is used. This type of authentication is not recommended. If you decide to use it anyway, ensure that your environment supports Windows authentication.

  • User: The user's SQL Server login name.

  • Password: Password for the user's SQL Server login.

  • Database: Select the database.

Max. number of pending requests (RequestQueueLimit)

The process requests are internally cached. This parameter defines the maximum number of cache entries. The default value is 1000.

Max. number of pending requests (RequestQueueLimit)

The process results are internally cached. This parameter defines the maximum number of cache entries. The default value is 10000.

Results flush timeout on shutdown in seconds (FlushTimeoutSeconds)

The service can continue to write results to the database until this timeout is reached. Input in seconds. The default value is 10 seconds.

FileJobProvider

Data transfer takes place in the FileJobProvider by means of files. Process requests and results are written to file or read from file. These files can be processed by the FileJobDestination.

Table 103: FileJobProvider parameters

Parameters

Description

Backup of transferred files (BackupFiles)

If this option is enabled, all files (with or without errors) are moved to a Backup subdirectory. In the default case (not set) only files with errors are saved.

Check file index (CheckInputIndex)

If this option is set, the file name index is checked to see if has increased in size. Files with the same or a lower index are not processed. This option is not set by default.

Max. number of process trees in a transfer file (MaxListCount)

Maximum number of process steps that can be grouped together as a file. This allows limiting of the file size.

Use encryption (UseEncryption)

Specifies whether the data is to be written to the files in encrypted form.

NOTE: The setting for encryption must be identically configured in the Job provider and the related Job destination.

Notification methods (EventTypes)

The Job provider supports three different methods for providing notification about new data.

  • Timer: Newly stored data is queried at defined intervals.

  • HTTP: The provider queries the parent Job server through HTTP and processes the stored data once the server replies.

  • FSEvent: Newly stored data is queried after a file system event.

The notification methods can be combined when separated by commas.

Example:

TIMER,FSEVENT

Remote host for HTTP notification (HostName)

If using the HTTP notification method, enter the name of the remote host here to which the queries are transferred.

HTTP notification port (Port)

If using the HTTP notification method, enter the port for transfer here.

File lookup timer interval (ms) (TimerInterval)

If using the TIMER notification method, enter the interval in milliseconds here.

Input directory (InputDirectory)

The module reads and processes the process files (*.fjg) in this directory.

NOTE: Ensure that the Job provider and related Job destination use the same directory. Input directory and output directory are then reversed accordingly.

Output directory (OutputDirectory)

Directory to which the processed files are written.

Subdirectories (SubDirectories)

You can enter a list of directory names separated by a pipe character (|) here. All the directories are then monitored and processed correspondingly. The following directory structure is expected:

SubDirectories = "ServerA|ServerB"

...

Request

ServerA

ServerB

Response

ServerA

ServerB

where Request and Response are the directories specified in the Input directory (InputDirectory) and Output directory (OutputDirectory) parameters.

NOTE: You can only use the Timer notification method. The HTTP and FSEvent notification methods are not available.

Automatic identification of subdirectories (AutoSubDirectories)

If this option is enabled, the module automatically processes all the files in the subdirectories. Processing is not recursive.

Related topics

FTPJobProvider

After the files have been created in the local directory, the FTPJobProvider connects to the FTP server and transfers the files to the server. After a signal, a connection is set up to the FTP Server and the data is transferred. The directories Request and Response are expected to be found on the FTP Server. The names of these directories are fixed and cannot be changed. The software components (Job provider/Job destination) deposit or collect the files from here. The FTP user requires the necessary permissions to create, rename, and delete files.

Table 104: FTPJobProvider parameters

Parameters

Description

Backup of transferred files (BackupFiles)

If this option is enabled, all files (with or without errors) are moved to a Backup subdirectory. In the default case (not set) only files with errors are saved.

Check file index (CheckInputIndex)

If this option is set, the file name index is checked to see if has increased in size. Files with the same or a lower index are not processed. This option is not set by default.

Max. number of process trees in a transfer file (MaxListCount)

Maximum number of process steps that can be grouped together as a file. This allows limiting of the file size.

Use encryption (UseEncryption)

Specifies whether the data is to be written to the files in encrypted form.

NOTE: The setting for encryption must be identically configured in the Job provider and the related Job destination.

Notification methods (EventTypes)

The Job provider supports three different methods for providing notification about new data.

  • Timer: Newly stored data is queried at defined intervals.

  • HTTP: The provider queries the parent Job server through HTTP and processes the stored data once the server replies.

  • FSEvent: Newly stored data is queried after a file system event.

The notification methods can be combined when separated by commas.

Example:

TIMER,FSEVENT

Remote host for HTTP notification (HostName)

If using the HTTP notification method, enter the name of the remote host here to which the queries are transferred.

HTTP notification port (Port)

If using the HTTP notification method, enter the port for transfer here.

File lookup timer interval (ms) (TimerInterval)

If using the TIMER notification method, enter the interval in milliseconds here.

Input directory (InputDirectory)

The module reads and processes the process files (*.fjg) in this directory.

NOTE: Ensure that the Job provider and related Job destination use the same directory. Input directory and output directory are then reversed accordingly.

Output directory (OutputDirectory)

Directory to which the processed files are written.

Subdirectories (SubDirectories)

You can enter a list of directory names separated by a pipe character (|) here. All the directories are then monitored and processed correspondingly. The following directory structure is expected:

SubDirectories = "ServerA|ServerB"

...

Request

ServerA

ServerB

Response

ServerA

ServerB

where Request and Response are the directories specified in the Input directory (InputDirectory) and Output directory (OutputDirectory) parameters.

NOTE: You can only use the Timer notification method. The HTTP and FSEvent notification methods are not available.

Automatic identification of subdirectories (AutoSubDirectories)

If this option is enabled, the module automatically processes all the files in the subdirectories. Processing is not recursive.

FTP Server (FTPServer)

Name or IP address of the FTP server.

FTP port (FTPPort)

Port for FTP transfer The default port is port 21.

FTP user account (FTPUser)

User account for FTP login.

FTP password (FTPPassword)

Password for the user account for FTP login.

Related topics
Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation