Identity Manager 8.0 - Installation Guide

About this Guide One Identity Manager Overview Installation Prerequisites Installing the One Identity Manager Installing and Configuring the One Identity Manager Service Updating the One Identity Manager Installing and Updating a One Identity Manager Application Server Installing, Configuring and Maintaining the Web Portal Installing the Operations Support Web Portal Installing and Updating the Manager Web Application Logging into One Identity Manager Tools Troubleshooting Appendix: One Identity Manager Authentication Modules Appendix: Creating a One Identity Manager Database for a Test or Development Environment from a Database Backup Appendix: Manager Web Application Extended Configuration Appendix: Machine Roles and Installation Packages Appendix: Settings for a New SQL Server Database

Security

These settings allow you to specify some important settings affecting application security.

Table 65: Meaning of Configuration Settings for Security
Setting Description

Staging

Default configuration of the staging environment. This setting also affects other configuration groups.

Table 66: Permitted Values
Value Description
Production Recommended setting for all productive installation.
Test Setting if the application was installed for test purposes.
Development Setting if the application was installed in a development environment.
Custom

Setting if all settings are made manually.

Invalid session response delay

Time in seconds that a client sided request with false session data is blocked. This setting prevents possible "Brute force" access attempts.

Permit login without cookies

The application uses session cookies to secure client-server communication. Set this setting to allow user login without cookies. This would be the case, for example, if cookies were forbidden in a company network.

NOTE: It is not recommended to enable this setting.

Close browser window after logout

Specifies whether the browser window is closed after logging out. If this setting is enabled, the application tries to close the user's browser window after logging out. This function is not supported by every browser or only when the browser prompts.

Debugging

Here you will find useful settings for debugging. Normally, you cannot configure anything here.

Table 67: Meaning of Configuration Settings for Debugging
Setting Description

Log mode

The amount of data to be logged.

NOTE: Set this to "Normal" in a live environment.

Enable documentation mode

Specifies whether additional data is displayed in the application interface, for example, the name of the active form. The effect depends on the visualization selected.

NOTE: This setting should not be enabled in a live environment.

Enable SQL log

Specifies whether the all database instructions are logged. The log is written in the SQL log directory.

NOTE: This setting should not be enabled in a live environment.

Show ASP.Net error messages

Specifies whether ASP.Net's own error messages are shown.

NOTE: This setting should not be enabled in a live environment.

Enable test mode

Specifies whether automatic tests are supported.

NOTE: This setting should not be enabled in a live environment.

Related Topics

Performance

The settings that influence an application's performance are specified here.

Table 68: Meaning of Configuration Settings for Performance
Setting Description

Load balancing

Mode for the integrated load balancing. In most cases, "DistributeEqually" is chosen.

Maximum workload

Maximum number of user sessions an application accepts. The application can be installed multiple times if a large number of sessions is required because system resources for each application process are limited.

Force maximum workload

The value in Maximum workload is overridden is this setting is not set. But it is used as a threshold for the load balancing mode "DistributeSuccessively".

Compress HTTP transfer

Specifies whether usage of compression for HTTP communication is set.

NOTE: Compression of HTTP communication must also be configured for Internet Information Services. For more information see the Web server documentation.

Host segmentation

Specifies host segmentation. This setting allows distribution of client sided requests to several server addresses representing aliases for the web front-end. This bypasses some of the browser limitation and can therefore shorten loading time if the network connection is bad.

Related Topics

File Download

In order to download large files, the application requires a directory from where the download is available to the user. This effects reports, for example, which are generated by the application and saved as PDF by the user.

Table 69: Meaning of the Configuration Settings for the File Download
Setting Description

Enable file download

Specifies whether file download is enabled. Enable this setting to allow larger files, such as reports, to be downloaded. If file download is not set, certain functions are not available.

Download directory

Directory for the application to use to make download available. The application requires full access rights to this directory.

Cleanup interval

Time in minutes search for and remove redundant files.

Supply time

Time in minutes before download is available to the user. Once a download has been initiated, the application cannot verify when and if the download was executed by the user so that the download must be aborted after a set time interval.

Related Documents