The Resource Activity Database server refers to the server hosting the Data Governance Edition Resource Activity database.
|
Note: You can use your pre-existing One Identity Manager database server to host the resource activity database. |
This server must meet the following system requirements.
Processor | quad core CPU |
Memory | 16GB RAM |
Free disk space | 100GB |
The following systems are supported to be scanned.
Target | Version | Additional notes | ||||
---|---|---|---|---|---|---|
The following Windows Server versions are supported for scanning (local or remote managed hosts):
|
Resource activity collection is not supported for remotely managed Windows Server hosts. | |||||
The following failover clusters are supported for scanning (remote managed host):
|
Resource activity collection is not supported for Windows clusters. | |||||
The following NetApp filer versions (with CIFS file system protocol enabled) are supported for scanning (remote managed host):
|
Real-time security updates and resource activity collection are not supported on versions of NetApp ONTAP filers earlier than 7.3. NetApp storage devices require additional configuration. | |||||
The following NetApp filer versions (with NFS file system protocol enabled) are supported for scanning (remote managed host):
|
NFS managed hosts require the UNIX module to be installed during the One Identity Manager installation and configuration process. For NetApp 7-Mode managed hosts, real-time security updates and resource activity collection require FPolicy; and in order to use FPolicy, CIFS must be installed and running. NetApp storage devices require additional configuration. | |||||
The following EMC devices are supported for scanning (remote managed host):
The following EMC Framework versions (with CIFS file system protocol enabled) are supported:
|
VNXe is not supported. VNXe does not support CEPA currently and therefore Data Governance Edition will not run successfully in VNXe environments. EMC storage devices require additional configuration. | |||||
The following EMC Isilon devices (with NFS file system protocol enabled) are supported for scanning (remote managed host):
|
NFS managed hosts require the UNIX module to be installed during the One Identity Manager installation and configuration process. Resource activity collection is not supported for EMC Isilon NFS managed hosts. EMC storage devices require additional configuration. | |||||
The following SharePoint versions are supported for scanning (local managed host):
100GB disk space on the SharePoint agent computer for data storage and scan post-processing activities.
8GB RAM for the SharePoint agent computer. |
Agent is installed where the One Identity Manager service (job server) is running for the SharePoint farm. We recommend installing the One Identity Manager service on a dedicated SharePoint 2010/2013 Application Server in the farm and not on a Web Front server which prevents extra load processing on that server. Standalone farms are not supported. Farms configured with only Local Users and Groups are not supported. | |||||
The following cloud providers running on Office 365 are supported for scanning (remote managed host):
|
Resource activity collection is not supported for Cloud managed hosts. OneDrive for Business support is limited to the Documents folder for the Administrator account. Therefore, all managed paths are selected within the scope of the Administrator's Documents folder. | |||||
Windows 2008 Active Directory DFS and higher |
The following table contains the permissions required to properly deploy Data Governance Edition.
|
Note: For agent deployments, open the following file and printer sharing ports:
|
Port | Direction | Description | ||||
---|---|---|---|---|---|---|
8721 |
Incoming |
TCP (HTTP) port opened on the Data Governance server computer. This is the base port for the Data Governance REST API, used for communication with Data Governance server REST services, including the One Identity Manager clients and Windows PowerShell. | ||||
8722 |
Incoming |
TCP (net.tcp) port opened on the Data Governance server computer. Used for communication with Data Governance agents, One Identity Manager clients, One Identity Manager web server, and PowerShell.
| ||||
8723 |
Incoming |
HTTP port used for communication with the One Identity Manager web server (/landing and /home pages). | ||||
18530 - 18630 |
Incoming |
TCP port range opened on all agent computers. Used for communication with the Data Governance server. (The first agent on an agent host will use port 18530, and each subsequent agent on the same host will take the next available port, i.e., 18531, 18532, and so on.). In addition, this range is used to open a TCP listener for NetApp Cluster Mode hosts if resource activity collection is enabled. |
© 2022 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy