Chat now with support
Chat with Support

Identity Manager 9.0 LTS - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using Windows PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD-notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

Connection data for process generation

To generate processes for the Job server, you need the provider, connection parameters and the authentication data. In the default case, this information is determined from the database connection data.

If a Job server has no direct connection to the database, but works with an application server:

  • Enter the connection data for the application server.

  • Label the Job server with the No direct database connection option and assign the connection data to the application server.

TIP: Label one set of connection data for the application server as a Fallback connection. This connection data is used if you do not enter any reference to concrete connection data on the Job server.

Determining the connection data during process generation

  • The connection data from the database information is used for all Job servers with a direct data connection.

  • Connection data for Job servers without a direct database connection is determined as follows:

    1. Connection data that is entered on the Job server.

    2. Connection data that is labeled as a fallback connection.

    3. Connection data that is entered in the database information.

Detailed information about this topic

Entering connection data for the application server

Enter the connection data for the application server.

To enter connection data for the application server

  1. In the Designer, select the Base data > Security settings > Connection data category.

  2. Using the Object > New menu item, enter new connection data.

  3. Enter the following information.

    Table 95: Properties of connection data

    Property

    Description

    Display name

    Display name of the connection data. Using this display name, you can select the connection data at the Job server entry.

    Fallback connection

    Label one of the sets of connection data for the application server as a Fallback connection. This connection data is used if you do not enter any reference to concrete connection data on the Job server.

    Provider

    For connection data for the application server, select Application Server.

    Connection parameter

    Web address (URL) for the application server.

    Use the ... button to open the default connection dialog box, from which you can specify other options and test the connection.

    Authentication data

    Enter the authentication data

    Syntax:

    Module=<Name>;<Property1>=<Value1>;<Property2>=<Value2>

    Example:

    Module=DialogUserAccountBased

    Use the ... button to open a dialog box from which you can select the authentication module directly. The authentication data is transferred when the dialog is closed.

    For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

Related topics

Entering Job server connection data

Label the Job server with the No direct database connection option and assign the connection data to the application server.

To declare the connection data on the Job server

  1. In the Designer, select the Base Data > Installation > Job server category.

  2. Select the Job server to be edited in the Job server overview.

  3. Edit the following data on the Properties tab.

    • Enable the No direct database connection option for the Job server.

    • Under Connection data, select the connection data for the application server.

Related topics

Installing the One Identity Manager Service on a Job server remotely

You have the option to install certain Job servers remotely in the Job Server Editor. The remote installation wizard runs the following steps:

  • Installs One Identity Manager Service components.
  • Configures the One Identity Manager Service.
  • Starts the One Identity Manager Service.

NOTE: To generate processes for the Job server, you need the provider, connection parameters and the authentication data. In the default case, this information is determined from the database connection data. If the Job server runs through an application server, you must configure extra connection data in the Designer. For more information, see Configuring the Job server for connecting to the application server.

Prerequisites for remote installation

  • The Job server is entered in the database

  • There is a user account with sufficient permissions for installing the One Identity Manager Service.

  • Remote installation is only supported within a domain or a trusted domain.

NOTE: If you are working with an encrypted One Identity Manager database, see the notes on working with an encrypted database in the One Identity Manager Installation Guide.

To install the One Identity Manager Service remotely

  1. In the Designer, select the Base Data > Installation > Job server category.

  2. Start the Job Server Editor using the Edit Job server task.

  3. Select the Job server to be edited in the Job server overview.

  4. Select the Job server > Install service menu item.

    This starts the One Identity Manager Service remote installation wizard.

  5. On the start page of the wizard, click Next.

  6. On the Configure service page, enter the One Identity Manager Service configuration settings.

    Initial configuration of the service is already predefined for the database connection. To use this template, enter the connection data for process collection. In order to extend the configuration, each configuration section of the One Identity Manager Service is listed in the module list.

    • For a direct connection to the database:

      1. Select Process collection > sqlprovider.

      2. Click the Connection parameter entry, then click the Edit button.

      3. Enter the connection data for the One Identity Manager database.

    • For a connection to the application server:

      1. Select Process collection, click the Insert button and select AppServerJobProvider.

      2. Click the Connection parameter entry and click the Edit button.

      3. Enter the connection data for the application server.

      4. Click the Authentication data entry and click the Edit button.

      5. Select the authentication module. Depending on the authentication module, other data may be required, for example, user, and password. For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

  7. On the Installation source and destination page, enter the following information.

    1. General information:

      • Installation directory: Select the directory containing the installation files.

      • Private key: If the database is encrypted, select the file with the private key.

    2. Click Next.

    3. Enter the service's installation data.

      • Computer: Enter the name or IP address of the server that the service is installed and started on.

      • Service account: Enter the details of the user account that the One Identity Manager Service is running under. Enter the user account, the user account's password and password confirmation.

      The service is installed using the user account with which you are logged in to the administrative workstation. If you want to use another user account for installing the service, you can enter it in the advanced options. You can also change the One Identity Manager Service details, such as the installation directory, name, display name, and the One Identity Manager Service description, using the advanced options.

  8. Click Next to start installing the service.

    Installation of the service occurs automatically and may take some time.

  9. Click Close to end the workflow wizard.

NOTE: In a default installation, the service is entered in the server’s service management with the name One Identity Manager Service.

TIP: Use the Job server > Start HTTP request menu item to address the HTTP server of the One Identity Manager Service for a Job server and display the different services of the One Identity Manager Service.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating