Chat now with support
Chat with Support

Active Roles 7.5 - Release Notes

Synchronization Service

This section lists the system requirements of the Active Roles Synchronization Service.

Table 14: Synchronization Service requirements

Requirement

Details

Platform

Any of the following:

  • Intel 64 (EM64T)
  • AMD64
  • Processor speed: 2.0 GHz or faster

One Identity recommends using a multi-core processor for the best performance.

Memory

At least 2 GB of RAM. The amount of memory required depends on the number of objects to synchronize.

Hard disk space

250 MB or more of free disk space. If SQL Server and Synchronization Service are installed on the same computer, the amount required depends on the size of the Synchronization Service database.

Operating system

You can install the Synchronization Service on a computer running:

  • Microsoft Windows Server 2019, Standard or Datacenter edition.
  • Microsoft Windows Server 2016, Standard or Datacenter edition.
  • Microsoft Windows Server 2012 R2, Standard or Datacenter edition.
  • Microsoft Windows Server 2012, Standard or Datacenter edition.

NOTE: Active Roles is not supported on Windows Server Core mode setup.

Microsoft .NET Framework

Active Roles Synchronization Service requires Microsoft .NET Framework 4.7.2. For more information, see Installing .NET Framework for developers in the Microsoft .NET documentation.

Visual C++ Redistributable

Visual C++ 2017 Redistributable

SQL Server

You can host the Synchronization Service database on:

  • Microsoft SQL Server 2019, any edition.
  • Microsoft SQL Server 2017, any edition.
  • Microsoft SQL Server 2016, any edition.
  • Microsoft SQL Server 2014, any edition, 32-bit (x86) or 64-bit (x64), with or without any Service Pack.
  • Microsoft SQL Server 2012, any edition, 32-bit (x86) or 64-bit (x64), with or without any Service Pack.

Windows Management Framework

On all supported operating systems, Active Roles Synchronization Service requires Windows Management Framework 5.1 (available for download here).

Supported connections

The Synchronization Service can connect to:

  • Microsoft Active Directory Domain Services with the domain or forest functional level of Windows Server 2012 or higher.
  • Microsoft Active Directory Lightweight Directory Services running on any Windows Server operating system supported by Microsoft.
  • Microsoft Exchange Server version 2019, 2016, or 2013.

NOTE: Microsoft Exchange 2013 CU11 is no longer supported. For more information, see Knowledge Base Article 202695.

  • Microsoft Lync Server version 2013 with limited support.
  • Microsoft Skype for Business 2019, 2016 or 2015.
  • Microsoft Windows Azure Active Directory using the Azure AD Graph API version 1.6.
  • Microsoft Office 365 directory.
  • Microsoft Exchange Online service.
  • Microsoft Skype for Business Online service.
  • Microsoft SharePoint Online service.
  • Microsoft SQL Server, any version supported by Microsoft.
  • Microsoft SharePoint 2019, 2016, or 2013.
  • Active Roles version 7.4.3, 7.4.1, 7.3, 7.2, 7.1, 7.0, and 6.9
  • One Identity Manager version 7.0 (D1IM 7.0)
  • One Identity Manager version 8.0
  • Support for Generic LDAP Connector, MySQL Connector, Open LDAP Connector, IBM Db2 Connector, Salesforce Connector, Service now Connector, and IBM RACF Connector.
  • Support for Oracle Database, Oracle Database User Accounts, Oracle Unified Directory, Micro Focus NetIQ Directory, and IBM AS/400 connectors.
  • Data sources accessible through an OLE DB provider
  • Delimited text files

Legacy Active Roles ADSI Provider

To connect to Active Roles version 6.9, the Active Roles ADSI Provider of the respective version must be installed on the computer running the Synchronization Service. For installation instructions, see the Active Roles Quick Start Guide for the appropriate Active Roles version.

Azure AD Module for Windows PowerShell Version 2

To connect to the Office 365 directory, the Azure Active Directory PowerShell module must be installed on the computer running the Synchronization Service.

Azure Az PowerShell module

To use Modern Authentication, the Azure Az PowerShell module must be installed on the computer(s) running the Administration Service and the Synchronization Service. For installation instructions, see Install the Azure Az PowerShell module in the Microsoft Azure PowerShell documentation.

Windows PowerShell Module for Skype for Business Online

To connect to the Skype for Business Online service, Windows PowerShell Module for Skype for Business Online, now included in Microsoft Teams PowerShell, must be installed on the computer running the Synchronization Service. For installation instructions, see Install Microsoft Teams PowerShell in the Microsoft Teams documentation.

SharePoint Online Management Shell

To connect to the SharePoint Online service, SharePoint Online Management Shell must be installed on the computer running the Synchronization Service. Download the application here.

One Identity Manager API

To connect to One Identity Manager 7.0, One Identity Manager Connector must be installed on the computer running the Synchronization Service. This connector works with RESTful web service and SDK installation is not required.

Internet Connection

To connect to cloud directories or online services, the computer running the Synchronization Service must have a reliable connection to the Internet.

Synchronization Service Capture Agent

This section lists the system requirements of the Active Roles Synchronization Service Capture Agent.

Table 15: Synchronization Service Capture Agent

Requirement

Details

Microsoft .NET Framework

Active Roles Synchronization Service Capture Agent requires Microsoft .NET Framework 4.7.2. For more information, see Installing .NET Framework for developers in the Microsoft .NET documentation.

Additional Requirements

To synchronize passwords from an Active Directory domain to some other connected data system, you must install the Sync Service Capture Agent on all domain controllers in the source Active Directory domain.

The domain controllers on which you install Sync Service Capture Agent must run one of the following operating systems with or without any Service Pack (both x86 and x64 platforms are supported):

  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2016
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012

For more information, see the Active Roles Synchronization Service Administration Guide.

Product licensing

Use of this software is governed by the Software Transaction Agreement found at www.oneidentity.com/legal/sta.aspx. This software does not require an activation or license key to operate.

The product usage statistics can be used as a guide to show the scope and number of managed objects in Active Roles.

Upgrade and installation instructions

Starting from Active Roles 7.4, enhancements have been made for the in-place upgrade process.

  • For general instructions on how to upgrade from an earlier version of Active Roles or how to install and initially configure Active Roles, see the Active Roles Quick Start Guide.

  • For special considerations regarding the installation of Active Roles 7.5, see the following information.

IMPORTANT: Before installing Active Roles 7.5, make sure to perform a database backup.

Changes related to Azure tenants

NOTE: If your organization has any Azure tenants that are managed with Active Roles, you must reauthenticate and reconsent them after installing Active Roles7.5. Otherwise, Active Roles will not receive the required permissions for managing existing Azure tenants, and tenant administration in Active Roles7.5 will not work correctly. For more information, see Reconfiguring Azure tenants during upgrade configuration in the Active Roles 7.5 Quick Start Guide.

Changes related to Active Roles Synchronization Service

NOTE: Active Roles 7.4.5 introduced support for Modern Authentication in Azure BackSync workflows of the Active Roles Synchronization Service. After upgrading to Active Roles 7.5, if you previously had an Azure BackSync workflow configured, you will be prompted to reconfigure it in the Active Roles Synchronization Service Console.

CAUTION: If you previously had an Azure BackSync workflow configured in Active Roles Synchronization Service, and you use more than one Azure Active Directory (Azure AD) service in your deployment, you must specify the Azure AD for which you want to configure Azure BackSync. Failure to do so may either result in directory objects not synchronized at all, or synchronized to unintended locations.

For more information on how to specify the Azure AD used for back-synchronization, see Configuring automatic Azure BackSync in the Active Roles Synchronization Service Administration Guide.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating