The Data Governance server refers to the server where the Data Governance service is installed. This server must meet the following minimum system requirements.
Table 21: Minimum system requirements: Data Governance server
Processor |
quad core CPU |
Memory |
16GB RAM |
Free drive space |
100GB |
Operating system |
64-bit Windows operating systems:
- Windows Server 2012
- Windows Server 2012 R2
- Windows Server 2016
- Windows Server 2019
- Windows Server 2022
NOTE: Only a 64-bit server for Data Governance Edition is supported. Ensure that the server installed on a given computer uses the correct architecture to match the installed operating system. |
Software |
.NET Framework 4.8 |
The Database server refers to the server hosting the One Identity Manager database. One Identity Manager supports SQL Server database systems.
The following system requirements must be met in order to install the database on a server for use with Data Governance Edition. Depending on the number of One Identity Manager modules and the accounts managed in One Identity Manager, the requirements for working memory, hard disk space, and processors may be significantly greater than the minimum requirements. For more details on the system requirements for One Identity Manager, see the One Identity Manager Installation Guide or One Identity Manager Release Notes.
Table 22: Minimum system requirements: Database server
Processor |
8 physical cores with 2.5 GHz+ frequency (non-production)
16 physical cores with 2.5 GHz+ frequency (production)
NOTE: 16 physical cores are recommended on performance grounds. |
Memory |
16 GB+ RAM (non-production)
64 GB+ RAM (production) |
Free disk space |
100 GB |
Operating system |
Windows operating systems:
- Note the requirements given by Microsoft for the SQL Server version you are using.
NOTE: The 64-bit requirement for Windows Servers is specific to Data Governance Edition.
UNIX and Linux operating systems:
- Note the requirements given by the operating system manufacturer for SQL Server databases.
|
Software |
SQL Server
|
NOTE: The minimum requirements listed above are considered to be for general use. With each custom One Identity Manager deployment these values may need to be increased to provide ideal performance. To determine production hardware require-ments, it is strongly recommended to consult a qualified One Identity Partner or the One Identity Professional Services team. Failure to do so may result in poor database performance.
For additional hardware recommendations, read the KB article https://support.oneidentity.com/identity-manager/kb/290330/how-to-configure-settings-as-per-the-system-information-overview, which outlines the System Information Overview available within One Identity Manager.
NOTE: In virtual environments, you must ensure that the VM host provides performance and resources to the database server according to system requirements. Ideally, resource assignments for the database server are fixed. Furthermore, optimal I/O performance must be provided, in particular for the database server. For more information about virtual environments, see Product Support Policies.
For installation and operation of a One Identity Manager database, the following database server and database settings are required.
Table 23: Database server settings
Language |
English |
|
Server Collation |
Case insensitive
SQL_Latin1_General_CP1_CI_AS (recommended) |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Extreme transaction processing supported (is XTP supported) |
True |
One Identity Manager uses In-Memory-OLTP (Online Transactional Processing) for memory-optimized data accesses. The database server must support extreme transaction processing (XTP). This function is activated by default in a standard installation.
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If XTP is not activated, the installation or update is not started. |
SQL Server Agent |
Started |
Start the SQL Server Agent in the SQL Server Service Management Portal. You can log in to a SQL Server Agent as a domain user with Windows authentication or with a local system account.
The settings is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If the SQL Server Agent is not started, the installation or update is not started. |
Collation |
SQL_Latin1_General_CP1_CI_AS |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Recovery model |
Simple |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database. If the recovery model is not set to the value Simple, a warning is issued before installing or updating starts. You can ignore this warning.
For performance reasons, however, it is recommended you set the database to the Simple recovery model for the duration of the schema installation or update. |
Compatibility level |
SQL Server 2019 (150) |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Auto Create Statistics |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Auto Update Statistics |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Auto Update Statistics Asynchronously |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Arithmetic Abort enabled |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Quoted Identifiers Enabled |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Broker Enabled |
True |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Is Read Committed Snapshot On |
True |
The default setting fro transactions is AutoCommit. If transactions are required, they are opened explicitly.
These settings have proven to provide the best balance between data security and performance for One Identity Manager's massive parallel processing. Other translation modes are not supported by One Identity Manager.
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Parameterization |
Forced |
The setting is checked by the Configuration Wizard before installing or updating the One Identity Manager database and adjusted for the database if necessary. |
Database file and data file group for memory-optimized tables |
Required |
One Identity Manager uses In-Memory-OLTP (Online Transactional Processing) for memory-optimized data accesses.
For the creation of memory-optimized tables, the following prerequisites must be met:
- A database file with the Filestream data file type must exist.
- A memory-optimized data file group must exist.
Before installation or update of the One Identity Manager database, the Configuration Wizard checks whether these requirements are fulfilled.
In the Configuration Wizard, repair methods are available to create the database file and the data file group. The database file is created by the repair method in the directory of the data file (*.mdf). |
For details about installation and operation of One Identity Manager database using Azure SQL Managed Instance, please refer to One Identity Manager Installation Guide: Identity Manager - Installation Guide (oneidentity.com).
The Data Governance agent refers to the server hosting a local or remote Data Governance Edition agent.
This server must meet the following minimum system requirements.
Table 24: Minimum system requirements: Data Governance agent
Processor |
500MHz+ |
Memory |
1024MB RAM |
Free disk space |
20 GB
NOTE: The agent will use the required CPU, memory and disk space to perform scans, data synchronizations, queries and activity reporting. Unexpected behavior will occur if any of these resources are depleted. |
Operating system |
Windows operating systems:
- Windows Server 2012
- Windows Server 2012 R2
- Windows Server 2016
- Windows Server 2019
- Windows Server 2022
New Dynamic Access Control (DAC) features are not supported.
NOTE: When an agent is installed on Windows Server 2012/2012 R2, disable the following local policy: "User Account Control: run all Administrators in Admin Approval Mode".
NOTE: The following certificate must be installed as a Trusted Root Certification Authority on the target agent host computer: VeriSign Class 3 Public Primary Certification Authority — G5.cer. |
Software |
.NET Framework 4.8 or later
.NET Framework 3.5.1 (SharePoint 2010 agents)
NOTE: SharePoint 2010 agents require .NET Framework 3.5.1; all other Windows Servers and SharePoint farms hosting an agent require .NET Framework 4.5 or later.
Windows Servers hosting an agent for devices having SharePoint Online, EMC Isilon NFS, or NetApp ONTAP 9.8 and above, require TLS 1.2. |
The Resource Activity Database server refers to the server hosting the Data Governance Edition Resource Activity database.
Note: You can use your pre-existing One Identity Manager database server to host the resource activity database.
This server must meet the following system requirements.
Table 25: Minimum system requirements: Resource Activity Database server
Processor |
quad core CPU |
Memory |
16GB RAM |
Free disk space |
100GB |