Chat now with support
Chat with Support

Identity Manager 9.2.1 - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics
Overview of the One Identity Manager schema Table types and default columns in the One Identity Manager data model Notes on editing table definitions and column definitions Table definitions Column definitions Table relations Dynamic foreign key Supporting file groups
Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

HTTPJobProvider

The HTTPJobProvider receives process steps from a parent Job server. The data transfer is via HTTP or HTTPS.

Table 105: HTTPJobProvider parameters

Parameters

Description

Receiver port (ParentPort)

HTTP port of the parent Job server.

Receiver server (ParentServer)

DNS name or IP address of the parent Job server.

Use HTTPS (UseSSL)

Enable this option if the HTTPS server side is used.

Retries

Number of retries performed by the module if the data transfer fails.

RetryDelay

This defines how long the module will wait after a failed process step transfer before retrying.

Timeout format:

day.hour:minutes:seconds

Remote domain (RemoteDomain)

User account domain on the remote HTTP server.

Remote user account (RemoteUser)

User account for logging onto the HTTP server.

RemotePassword

Password for the user account for logging onto the HTTP server.

Related topics

AppServerJobProvider

The AppServerJobProvider retrieves the process steps from the application server and sends them to a job destination.

Table 106: AppServerJobProvider parameters

Parameters

Description

Authentication data (AuthenticationString)

Select the authentication module. Depending on the authentication module, other data may be required, for example, user, and password. For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

Max. number of pending requests (RequestQueueLimit)

The process requests are internally cached. This parameter defines the maximum number of cache entries. The default value is 1000.

Max. number of pending results (ResultQueueLimit)

The process results are internally cached. This parameter defines the maximum number of cache entries. The default value is 10000.

Connection parameter (ConnectString)

Web address (URL) of the application server.

Job destination module

In this module, you specify the job destination. This handles the process steps and returns an result to the Job provider. The following module types may be selected:

NOTE: You can configure any number of job destinations in one configuration file. The associated configuration sections are determined by name. Therefore the Job destinations that are added can be renamed.

JobServiceDestination

The JobServiceDestination module of the One Identity Manager Service performs the actual handling of process steps. A JobServiceDestination requests the process steps from the job provider, processes them using process components and returns the result.

Table 107: JobServiceDestination parameters

Parameters

Description

Number of external slots (ExternalSlots)

Maximum number of external processes (StdioProcessor.exe) opened by the One Identity Manager Service for handling process components.

Environment variables for external slots (ExternalSlotEnvironment)

List of environment variables to set for external slot processes. Enter the variables in a pipe (|) delimited list.

Syntax:

Variable1=value1|Variable2=value2...

Number of external 32-bit slots (ExternalSlots32)

Maximum number of external processes in the 32-bit memory (StdioProcessor32.exe) opened by the One Identity Manager Service for handling process components.

Environment variables for external 32-bit slots (ExternalSlotEnvironment32)

List of environment variables to set for external 32-bit slot processes. Enter the variables in a pipe (|) delimited list.

Syntax:

Variable1=value1|Variable2=value2...

Number of internal slots (InternalSlots)

Number of internal process provided by the One Identity Manager Service for the internal handling of process components.

File with private key (PrivateKey)

File with encryption information. The default file is private.key.

The encryption file has to be in the installation directory of all servers with One Identity Manager Service. If the One Identity Manager Service finds a private key on start up, it places it in the user-specific key container and deletes the file from the hard drive.

To create a key file and encrypt database information, use the Crypto Configuration program.

NOTE: If you are working with an encrypted One Identity Manager database, see the notes on working with an encrypted database in the One Identity Manager Installation Guide.

Encryption method (EncryptionScheme)

Encryption method used

Permitted values are:

  • RSA: RSA encryption with AES for large data (default).

  • FIPSCompliantRSA: FIPS certified RSA with AES for large data. This method is used if encryption must match the FIPS 104-2 standard. The local security policy Use FIPS compliant algorithms for encryption, hashing, and signing must be enabled.

ProviderID

if more than one Job provider is being processed by the One Identity Manager Service, enter the name of the Job provider to be used. If this is empty the first Job provider is used.

Private key identifier (PrivateKeyId)

Identifier of the private key. If no ID is specified, a search is performed for the private.key file.

Use this parameter if you work with several private keys, for example, if One Identity Manager Service data must be exchanged between two encrypted One Identity Manager databases. Enter the private keys in the File with private key module. If One Identity Manager only uses an encrypted database, you can alternatively enter the key file in the File with private key parameter (PrivateKey).

Queue

Queue identifier The process steps are requested by the Job queue using this queue identifier. A Job server must be known in the One Identity Manager database for each queue.

RequestTimeout

Specifies when a process request has failed and is resent.

Timeout format:

day.hour:minutes:seconds

Process request interval (StartInterval)

Interval in seconds after which the One Identity Manager Service requests new process steps The default value is 90 seconds. Suggestions for configuring the time interval are calculated from Job server statistical data.

Interval for calculating statistics (StatisticInterval)

Interval in seconds in which the One Identity Manager Service delivers statistic information on processing speed to the database. The default value is set to 4 times the process request interval. Suggestions for configuring the time interval are calculated from Job server statistical data.

Max. external processor reusage count (MaxExternalSlotReuse)

Specifies how often an external processor can be reused before the process is unloaded and restarted. The value 0 indicates that the process is only unloaded when no longer in use. The default value is 100.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating