Chat now with support
Chat with Support

Identity Manager 8.1.2 - Installation Guide

About this guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing and updating an application server Installing the API Server Installing, configuring, and maintaining the Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Troubleshooting Creating a One Identity Manager database for a test or development environment from a database backup Advanced configuration of the Manager web application Machine roles and installation packages

Plug-ins

Plug-ins extend the functionality of the Manager web application. You can enable a plug-in by setting the option in front of the plug-in name. You may find plug-in specific settings under a plug-in.

Plug-in automatic update

This plug-in runs automatic update.

Table 58: Meaning of configuration settings
Setting Meaning

Auto update

Automatic update is enabled.

Severity code

Severity of a change in order to start automatic update.

Related topics

Load balancing

The Manager web application provides simple load balancing in order to distribute user sessions and the resulting load across multiple processes or even servers. To do this, the application is installed multiple times on the same or on other servers.

All collaborating applications that can be logged into, are declared in the applications' Application pool. The selection algorithm for load distribution distributes user logins across the defined applications.

NOTE: Even if only one application is installed, it must be defined in your application pool, otherwise you cannot log in.

Table 59: Supported algorithms for load balancing
Algorithm Description

DistributeEqually

This algorithm distributes user logins such that each application in one language has the same number of active users, if possible. This algorithm is the default and is required in 99% of cases.

DistributeSuccessively

This algorithm distributes user logins by order of application definition in the application pool. First of all, all user logins are forwarded to the first application in the desired language. When this has reached it maximum load, logins are forwarded to the next application.

Load balancing solves the following problems:

  • Multi-language

    Language is fixed for per application so that an application can only provide user sessions in one language. If users can log in with multiple languages, at least one application must be installed for each language.

  • Bypassing resource limitations

    If multiple web applications are installed and these are assigned to different Internet Information Services application pools, these are started in separate processes.

  • Increasing performance

    Performance can be noticeably improved by installing on several servers.

  • Redundancy

    Multiple installation does not necessary complete outage if just one of the installed application fails.

Related topics

Single sign-on

The Manager web application supports a single sign-on mechanism that enables authentication of a user without the user having to repeatedly enter their user name and password.

Prerequisites required:

  • Anonymous access disabled.

  • Configuration of an authentication module capable of single sign-on.

    For detailed information about the One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

  • Permissions in the application’s own application pool

You can disable anonymous access on the web server. This means the user's browser must provide the data required for authentication.

To disable the anonymous access

  1. open the configuration of the Manager web application in the Internet Information Services and activate the configuration for Authentication.
  2. Change the value of the status to disabled in Anonymous Authentication.
Related topics

Machine roles and installation packages

Table 60: Machine role and installation package options
Machine role Description of the installation package
Workstation  

Contains all basic components for installing tools on an administrative workstation.

Administration

Contains One Identity Manager administration tools required by default users to fulfill their tasks with One Identity Manager. In addition to the tools that ensure basic functionality for working with One Identity Manager, the administration machine role includes the Manager as a main administration tool.

Configuration

Contains all One Identity Manager tools for the default user and additional programs for configuring the system. These include, for example, the Configuration Wizard, Database Compiler, Database Transporter, Crypto Configuration, Designer, Web Designer, and configuration tools for the One Identity Manager Service.

Development & Testing

Contains the One Identity Manager tools for developing and testing custom scripts and forms, for example, the System Debugger.

Monitoring

Contains One Identity Manager programs for monitoring the system status, for example, the Job Queue Info program.

Documentation

 

Contains One Identity Manager documentation in different languages.
Server  

Contains all the basic components for setting up a server.

Job server

Contains the One Identity Manager Service and basic processing components. Additional machine roles contain connectors for synchronizing individual target systems.

Related Documents