In this module you can define Job destinations. This handles the process steps and returns an result to the Job provider. The following module types may be selected:
Within a configuration file you can configure as many Job destinations as you wish. The associated configuration sections are determined by name. Therefore the Job destinations that are added can be renamed.
The JobServiceDestination is the One Identity Manager Service module that deals with the handling process steps. A JobServiceDestination requests the process steps from the Job provider, processes them using process components and returns the result.
Following parameters are available:
This parameter specifies how many external processes (StudioProcessor.exe) the One Identity Manager Service opens to handle process components.
This parameter contains a list of environment variables that you should set for external slot processes. Enter the variables in a pipe (‘|’) delimited list.
Variable1=value1|Variable2=value2...
This parameter specifies how many external processes in 32-bit memory (StudioProcessor.exe) the One Identity Manager Service opens to handle process components.
This parameter contains a list of environment variables that you should set for external 32-bit slot processes. Enter the variables in a pipe (‘|’) delimited list.
Variable1=value1|Variable2=value2...
This parameter specifies how many internal slots One Identity Manager Service makes available for internal process components processing.
Enter the file with the encryption data. The default file is private.key. The encryption file has to be in the installation directory of all servers with One Identity Manager Service. If the One Identity Manager Service finds a private key on start up, it places it in the per-user key container and deletes the file from the hard drive.
Use the program "Crypto Configuration" in order to create an encryption file and to encrypt the database information.
|
NOTE: If you are working with an encrypted One Identity Manager database, see the advice for working with an encrypted database in the One Identity Manager Installation Guide. |
Specify the encryption scheme you want to use.
Method | Description |
---|---|
RSA | RSA encryption with AES for large data (default). |
FIPSCompliantRSA | FIPS certified RSA with TripleAES for large data. This method is used if encryption must match the FIPS 1040-2 standard. The local security policy "Use FIPS compliant algorithms for encryption, hashing, and signing" must be enabled. |
Enter the name of the Job provider that will be used if more than one Job provider is being processed by the One Identity Manager Service. If this is empty the first Job provider is used.
Identifier of the private key. If no ID is given, the file "private.key" is searched for. Use this parameter if you work with several private keys, for example, if One Identity Manager Service data must be exchanged between two encrypted One Identity Manager databases. Enter the private key in the module, "File with private key". If One Identity Manager only uses one encrypted database, you can enter the key file in the parameter "File with private key (PrivateKey)" as an alternative.
Each One Identity Manager Service within the network must have a unique queue identifier. The process steps are requested by the Job queue using exactly this queue name. Enter this queue name in the One Identity Manager Service configuration file. Create a corresponding Job server entry for every queue.
This input specifies a time after which a process request can be said to have failed and is sent again.
Timeout format:
day.hour:minutes:seconds
This property defines a time interval in which One Identity Manager Service can request new process steps. Click on this icon to discard the change. The default value is 90 seconds. Suggestions for configuring the time interval are calculated from Job server statistical data.
This property defines the time interval (in seconds) in which One Identity Manager Service’s processing speed statistics are supplied to the database. Click on this icon to discard the change. The default value is set to 4 times the process request interval. Suggestions for configuring the time interval are calculated from Job server statistical data.
This value specifies how many times an external processor can be reused before the process is unloaded and restarted. The default value "0" means that the process is not unloaded until it is no longer in use. The default value is 1000.
The FileJobDestination processes the process steps that are queued by the FileJobGate (FileJobProvider or FTPJobProvider) and returns the results to the Job provider.
Following parameters are available:
If this option is set, all the file are moved to a directory "Backup" irrespective of errors. In the default case (not set) only files with errors are saved.
If this option is set, the file name index is checked to see if has increased in size. Files with the same or a lower index are not processed. This option is not set by default.
This setting specifies the maximum number of process steps that can be grouped together in one file. This allows limiting of the file size.
The data is encoded when written to file.
|
NOTE: The encryption setting must be configured the same in the Job provider and associated Job destination. |
The FileJobProvider supports three different methods of acquiring information about new data. The notification methods can be combined when separated by commas.
Method | Description |
---|---|
Timer | Querying newly added data is done in a specified time interval. |
HTTP | The provider queries the parent Jon server over HTTP and processes the added data after it has answered. |
FSEvent | Queries newly added data after a file system event. |
Example:
TIMER,FSEVENT
Enter the name of the target computer here that will receive the queries if the "HTTP" notification methods are used.
Enter the transfer port here if the "HTTP" notification method are used.
Enter the time interval in milliseconds if the "timer" notification method is used.
The module reads and processes the process files (*.fjg) in this directory.
|
NOTE: It is necessary to ensure that the Job provider and associated Job destination use the same directory. The input and output directories are correspondingly reversed. |
The processed files are written to this directory.
A list of directory names separated by a pipe character "|" can be entered here. All the directories are then monitored and processed correspondingly. The following directory structure is expected:
SubDirectories = "ServerA|ServerB"
...
Request
ServerA
ServerB
Response
ServerA
ServerB
where Request and Response are directories enter in the parameters "InputDirectory" and "OutputDirectory".
|
NOTE: Only the "Timer" notification method can be used. The notification methods "HTTP" and "FSEvent" are not available! |
If this option is enabled, the module automatically processes all the files in the subdirectories. Processing is not recursive.
If several Job providers are processed by the One Identity Manager Service, enter the name of the Job provider to use. If this is empty the first Job provider is used.
FTPJobDestination handles the process steps that are queued in the FileJobGate (FileJobProvider or FTPJobProvider) and returns the results to the Job provider.
Following parameters are available:
If this option is set, all the file are moved to a directory "Backup" irrespective of errors. In the default case (not set) only files with errors are saved.
If this option is set, the file name index is checked to see if has increased in size. Files with the same or a lower index are not processed. This option is not set by default.
This setting specifies the maximum number of process steps that can be grouped together in one file. This allows limiting of the file size.
The data is encoded when written to file.
|
NOTE: The encryption setting must be configured the same in the Job provider and associated Job destination. |
The FileJobProvider supports three different methods of acquiring information about new data. The notification methods can be combined when separated by commas.
Method | Description |
---|---|
Timer | Querying newly added data is done in a specified time interval. |
HTTP | The provider queries the parent Jon server over HTTP and processes the added data after it has answered. |
FSEvent | Queries newly added data after a file system event. |
Example:
TIMER,FSEVENT
Enter the name of the target computer here that will receive the queries if the "HTTP" notification methods are used.
Enter the transfer port here if the "HTTP" notification method are used.
Enter the time interval in milliseconds if the "timer" notification method is used.
The module reads and processes the process files (*.fjg) in this directory.
|
NOTE: It is necessary to ensure that the Job provider and associated Job destination use the same directory. The input and output directories are correspondingly reversed. |
The processed files are written to this directory.
A list of directory names separated by a pipe character "|" can be entered here. All the directories are then monitored and processed correspondingly. The following directory structure is expected:
SubDirectories = "ServerA|ServerB"
...
Request
ServerA
ServerB
Response
ServerA
ServerB
where Request and Response are directories enter in the parameters "InputDirectory" and "OutputDirectory".
|
NOTE: Only the "Timer" notification method can be used. The notification methods "HTTP" and "FSEvent" are not available! |
If this option is enabled, the module automatically processes all the files in the subdirectories. Processing is not recursive.
If several Job providers are processed by the One Identity Manager Service, enter the name of the Job provider to use. If this is empty the first Job provider is used.
Enter the name or the IP address of the FTP Server.
If the FTP server does not use the default port 21 for FTP transfer, you can enter the appropriate port.
Enter the user account with which the FTPJobProvider logs on onto the FTP Server.
Enter the user account password for the FTP login.
© 2023 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy