サポートと今すぐチャット
サポートとのチャット

Identity Manager 9.3 - Installation Guide

About this guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing additional modules for a existing One Identity Manager installation Installing and updating an application server Installing and updating an API Server Installing and updating the Manager web application Logging in to One Identity Manager tools Troubleshooting Advanced configuration of the Manager web application Machine roles and installation packages Configuration parameters for the email notification system How to configure the One Identity Manager database using SQL Server AlwaysOn availability groups

Minimum system requirements for API Servers

The API Server deploys the Web Portal, the Password Reset Portal, the Administration Portal as well as the Operations Support Web Portal and your HTML5 web applications. It also provides an API.

A minimum of the following system prerequisites must be fulfilled to install an API Server server.

Table 12: Minimum system requirements for API Servers

Requirement

Detail

Processor

4 physical cores 1.65 GHz+

Memory

4 GB RAM

Hard drive storage

40 GB

Operating system

Windows operating systems

The following versions are supported:

  • Windows Server 2025

  • Windows Server 2022

  • Windows Server 2019

  • Windows Server 2016

  • Windows Server 2012 R2

  • Windows Server 2012

Linux operating systems

  • Docker images for Linux distributions supported by the .NET project

Additional software

Windows operating systems

  • ASP.NET Core Windows Hosting Bundle

  • Microsoft Internet Information Services 10 or 8.5, or 8 with the role services:

    • Web Server > Common HTTP Features > Static Content

    • Web Server > Common HTTP Features > Default Document

    • Web Server > Application Development > ISAPI Extensions

    • Web Server > Application Development > ISAPI Filters

    • Web Server > Security > Basic Authentication

    • Web Server > Security > Windows Authentication

    • Web Server > Performance > Static Content Compression

    • Web Server > Performance > Dynamic Content Compression

Linux operating systems

  • ASP.NET Core Runtime

    NOTE: It is recommended to use .Net container images.

  • ASP.NET Core Hosting process manager, deployed via Docker container

Minimum system requirements for application servers

The application server provides a connection pool for accessing the database and stores business logic. A minimum of the following system prerequisites must be fulfilled for installation of the application server.

Table 13: Minimum system requirements for application servers

Requirement

Detail

Processor

8 physical cores 2.5 GHz+

Memory

8 GB RAM

Hard drive storage

40 GB

Operating system

Windows operating systems

The following versions are supported:

  • Windows Server 2025

  • Windows Server 2022

  • Windows Server 2019

  • Windows Server 2016

  • Windows Server 2012 R2

  • Windows Server 2012

Linux operating systems

  • Docker images for Linux distributions supported by the .NET project

Additional software

Windows operating systems

  • ASP.NET Core Windows Hosting Bundle

  • Microsoft Internet Information Services 10 or 8.5, or 8 with the role services:

    • Web Server > Common HTTP Features > Static Content

    • Web Server > Common HTTP Features > Default Document

    • Web Server > Application Development > ISAPI Extensions

    • Web Server > Application Development > ISAPI Filters

    • Web Server > Security > Basic Authentication

    • Web Server > Security > Windows Authentication

    • Web Server > Performance > Static Content Compression

    • Web Server > Performance > Dynamic Content Compression

Linux operating systems

  • ASP.NET Core Runtime

    NOTE: It is recommended to use .Net container images.

  • ASP.NET Core Hosting process manager, deployed via Docker container

NOTE: In order to use the application server's REST API, the HTTP request methods POST, GET, PUT, and DELETE must be permitted by the web server.

Minimum system requirements for web servers

Manager functionality can be provided by web applications. A minimum of the following system prerequisites must be fulfilled to install a web server.

Table 14: Minimum system requirements for web servers

Requirement

Detail

Processor

4 physical cores 1.65 GHz+

Memory

4 GB RAM

Hard drive storage

40 GB

Operating system

Windows operating systems

The following versions are supported:

  • Windows Server 2025

  • Windows Server 2022

  • Windows Server 2019

  • Windows Server 2016

  • Windows Server 2012 R2

  • Windows Server 2012

Linux operating systems

  • Docker images for Linux distributions supported by the .NET project

Additional software

Windows operating systems

  • ASP.NET Core Windows Hosting Bundle

  • Microsoft Internet Information Services 10 or 8.5, or 8 with the role services:

    • Web Server > Common HTTP Features > Static Content

    • Web Server > Common HTTP Features > Default Document

    • Web Server > Application Development > ISAPI Extensions

    • Web Server > Application Development > ISAPI Filters

    • Web Server > Security > Basic Authentication

    • Web Server > Security > Windows Authentication

    • Web Server > Performance > Static Content Compression

    • Web Server > Performance > Dynamic Content Compression

Linux operating systems

  • ASP.NET Core Runtime

    NOTE: It is recommended to use .Net container images.

  • ASP.NET Core Hosting process manager, deployed via Docker container

Users for One Identity Manager

The following users are required for start-up and normal operations of One Identity Manager. You can provide additional users whose permissions are tailored to their tasks and functions.

Table 15: Users for One Identity Manager
User Permissions

User for installing One Identity Manager

The installation user is needed for the initial installation of a One Identity Manager database using the Configuration Wizard. For more information, see Users and permissions for the One Identity Manager database on an SQL Server, Users and permissions for the One Identity Manager database in a manage instance in Azure SQL Database, and Users and permissions for the One Identity Manager database in Azure SQL Database.

User for administrative tasks in One Identity Manager

The administrative user is used by components of One Identity Manager that require authorizations at server level and database level, for example, the Configuration Wizard, the DBQueue Processor, or the One Identity Manager Service. For more information, see Users and permissions for the One Identity Manager database on an SQL Server, Users and permissions for the One Identity Manager database in a manage instance in Azure SQL Database, and Users and permissions for the One Identity Manager database in Azure SQL Database.

User for configuration tasks in One Identity Manager

The configuration user can run configuration tasks within the One Identity Manager, for example, creating customer-specific schema extensions or working with the Designer. Configuration users need permissions at the server and database levels. For more information, see Users and permissions for the One Identity Manager database on an SQL Server, Users and permissions for the One Identity Manager database in a manage instance in Azure SQL Database, and Users and permissions for the One Identity Manager database in Azure SQL Database.

End user for One Identity Manager

End users are only assigned permissions at database level in order, for example, to complete tasks with the Manager or the Web Portal. For more information, see Users and permissions for the One Identity Manager database on an SQL Server, Users and permissions for the One Identity Manager database in a manage instance in Azure SQL Database, and Users and permissions for the One Identity Manager database in Azure SQL Database.

User for Logging into One Identity Manager

One Identity Manager uses different authentication modules for logging in to administration tools. Authentication modules identify the system users to be used and load the user interface and database resource editing permissions depending on their permissions groups.

For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

User account for the One Identity Manager Service

The user account for the One Identity Manager Service requires user permissions to carry out operations at file level (adding and editing directories and files).

The user account must belong to the Domain users group.

The user account must have the Login as a service extended user permissions.

The user account requires permissions for the internal web service.

NOTE: If the One Identity Manager Service runs under the network service (NT Authority\NetworkService), you can grant permissions for the internal web service with the following command line call:

netsh http add urlacl url=http://<IP address>:<port number>/ user="NT AUTHORITY\NETWORKSERVICE"

The user account needs full access to the One Identity Manager Service installation directory in order to automatically update One Identity Manager.

In the default installation, One Identity Manager is installed under:

  • %ProgramFiles(x86)%\One Identity (on 32-bit operating systems)

  • %ProgramFiles%\One Identity (on 64-bit operating systems)

NOTE: Other target system specific permissions may be required for synchronizing One Identity Manager with each target system. These permissions are explained in the corresponding guide.

For more information, see Setting up permissions for creating an HTTP server.

関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択