Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Starling CertAccess Hosted - Administration Guide for One Identity Active Roles Integration

About this guide Starling CertAccess basics The Starling CertAccess Agent architecture Setting up initial synchronization Starling CertAccess Agent system requirements Installing, updating, and uninstalling Starling CertAccess Agent components Working with the Starling CertAccess Agent

Setting up initial synchronization

Once you have prepared Starling CertAccess for your organization, you can set up initial synchronization with your One Identity Active Roles. For this, you install the Starling CertAccess Agent on an administrative workstation. Use the Starling CertAccess Launchpad to install the Starling CertAccess Service on a Job server.

Ensure that all the system requirements on the workstation and the Job server are fulfilled. For more information, see Starling CertAccess Agent system requirements.

To set up synchronization with Active Roles

  1. In the Subscription is ready email, click the Get Started button.

    This opens the Starling CertAccess website.

  2. Download the Starling CertAccess Agent installation package onto a workstation.

    1. Under Step 1, click Download Agent.

    2. Copy the Starling CertAccess Agent key into the clipboard. Under Step 2, click Copy.

      IMPORTANT: Save your Starling CertAccess Agent key in a safe place because you will need it later.

  3. Install the Starling CertAccess Agent on the workstation.

  4. The first time you start the Launchpad, the Starling CertAccess Agent is updated automatically. This loads the newest version of the Starling CertAccess Agent and installs it.

    • Click Yes.

  5. Sign in with your Starling credentials.

    • Click Next.

      This starts the Launchpad.

  6. Install the Starling CertAccess Service.

    The Starling CertAccess Service is installed remotely on a Job server.

    Prerequisites:

  7. Install the Active Roles ADSI provider.

  8. Set up synchronization with Active Roles.

  9. Start the synchronization.

    TIP: You can display the Starling CertAccess Service log in a browser. The log file shows you the synchronization's progress. Here you can check that the Starling CertAccess Service is working correctly.

    For more information, see Displaying the Starling CertAccess Service log file.

    If synchronization is complete, you will see the synchronized data in the Starling CertAccess Web Portal.

  10. Check that the data has been synchronized correctly.

    1. Switch to the Starling CertAccess website and click Go.

      This opens the Starling CertAccess Web Portal.

    2. Select the Data > Data Explorer menu.

    3. In the Data Explorer's navigation, click Identities, User accounts, and System entitlements one after another to check the integrity of the data.

    For more information about the Starling CertAccess Web Portal, see One Identity Starling CertAccess Web Portal User Guide.

Detailed information about this topic

Starling CertAccess Agent system requirements

Starling CertAccess Agent supports synchronization with Active Roles in versions 6.9, 7.0, 7.2, 7.3.1, 7.3.3, 7.4.1, 7.4.3, and 7.4.4. The system requirements described here represent the minimum requirements for unlimited operation and usage of the Starling CertAccess Agent.

Every Starling CertAccess Agent installation can be virtualized. Ensure that performance and resources are available to the respective Starling CertAccess Agent component according to system requirements. Virtualization of a Starling CertAccess Agent installation should only be attempted by experts with strong knowledge of virtualization techniques. For more information about virtual environments, see Product Support Policies.

Detailed information about this topic

Minimum system requirements for administrative workstations

The Starling CertAccess Agent is installed on an administrative workstation to edit and display data. To do this, the following system prerequisites must be guaranteed:

Table 1: Minimum system requirements - administrative workstations

Processor

4 physical cores 2 GHz+

Memory

4 GB+ RAM

Hard drive storage

1 GB

Operating system

Windows operating systems

Following versions are supported:

  • Windows 10 (32-bit or 64-bit) minimum version 1511

  • Windows 8.1 (32-bit or 64-bit) with the current Service Pack

Additional software

  • Microsoft .NET Framework Version 4.7.2 or later

  • Active Roles ADSI Provider of the Active Roles version to be connected

To set up synchronization with a Active Directory domain, it must be possible to establish a connection to the Active Roles server using the port 15172 (TCP). If necessary, a firewall rule must be set up on the Active Roles server.

Supported browsers

  • Internet Explorer 11 or later

  • Firefox (Release Channel)

  • Chrome (Release Channel)

  • Microsoft Edge (release channel)

Minimum system requirements for the Job server

The following system prerequisites must be fulfilled to install the Starling CertAccess Service on a server.

Table 2: Minimum system requirements - Job server

Processor

8 physical cores 2.5 GHz+

Memory

16 GB RAM

Hard drive storage

40 GB

Operating system

Windows operating systems

The following versions are supported:

  • Windows Server 2019

  • Windows Server 2016

  • Windows Server 2012 R2

  • Windows Server 2012

Additional software

  • Microsoft .NET Framework Version 4.7.2 or later

    NOTE: When connecting the target system, refer to the target system manufacturer's recommendations.

  • One Identity Active Roles Management Shell for Active Directory (x64)

    On 32-bit operating systems, use the Active Roles Management Shell for Active Directory (x86) package.

    For installation instructions, refer to your One Identity Active Roles documentation.

  • The following packages must be subsequently installed from the Active Roles installation medium:

    On 32-bit systems:

    • <source>\Redistributables\vc_redist.x86.exe

    • <source>\Components\ActiveRoles ADSI Provider\ADSI_x86.msi

    On 64-bit systems:

    • <source>\Redistributables\vc_redist.x64.exe

    • <source>\Components\ActiveRoles ADSI Provider\ADSI_x64.msi

Furthermore, it is necessary that connections can be established from the Job server to the Active Roles server over the 15172 port. If necessary, a firewall rule must be set up on the Active Roles server.

To remotely install the Starling CertAccess Service, you must have an administrative workstation on which the Starling CertAccess Agent components are installed.

Related topics
Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation