Identity Manager 8.1 - Installation Guide

About this Guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing and updating an application server Installing the API Server Installing, configuring and maintaining the Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Error handling Appendix: Creating a One Identity Manager database for a test or development environment from a database backup Appendix: Extended configuration of the Manager web application Appendix: Machine roles and installation packages Appendix: Settings for a new SQL Server database

Logging in to One Identity Manager tools

When you start one of the One Identity Manager tools, a default connection dialog opens.

Figure 5: Default connection dialog

When you log in, you need to be aware of the difference between a database user and a user of individual One Identity Manager tools (system user). More than one system user may work with the same database account.

Login takes place in two steps:

  • Selecting the database connection to log in to the database
  • Selecting the authentication method and finding the system user for logging in

    Permitted system user IDs are determined by the authentication module you select. One Identity Manager provides various authentication modules for this purpose.

The One Identity Manager tools can only be started if the user has the relevant program function permissions.

For detailed information about the One Identity Manager authentication modules and program functions, see the One Identity Manager Authorization and Authentication Guide.

NOTE: When you start the program, it tries to restore the last used connection. This might lead to a delay resulting in an error if you frequently swap between connections to other database servers.

To prevent the previous connection restoring, create the following registry key:

HKEY_CURRENT_USER\Software\One Identity\One Identity Manager\Global\Settings\[RestoreLastConnection]="false"

Detailed information about this topic

Logging in to the One Identity Manager database

To select an existing connection

  • Select the connection under Select a database connection in the connection dialog.

NOTE: Newly created connections are only shown in the list after the program has been restarted.

To create a new connection to the One Identity Manager database

  1. Under Select a database connection, click Add new connection and select the SQL Server system type.
  2. Click Next.
  3. Enter the connection data for the database server.
    Table 50: SQL Server Database Connection Data
    Data Description

    Server

    Database server.

    Windows authentication

    Specifies whether integrated Windows authentication is used. This type of authentication is not recommended. If you decide to use it anyway, ensure that your environment supports Windows authentication.

    User

    SQL Server Login name.

    Password

    SQL Server login password.

    Database

    Database.

  4. Select Test connection in the Options menu.

    This attempts to connect the database with the given connection data. You are prompted to confirm a message about the test.

    NOTE: Use Options | Advanced options to make further changes to the database connection configuration settings.

  5. Click Finished.

To set up a new connection to the application server

  1. Under Select a database connection, click Add new connection and select Application server.
  2. Click Next.
  3. Enter the address (URL) for the application server.
  4. If you access an application server secured through SSL/TLS, configure additional settings for the certificate:
    • If the certificate's server name matches the application server's URL and, if the server certificate can be successfully validated, the server name displayed in green next the URL. By clicking on the server name next to the URL, you can get information about the certificate. You can select a certificate required for logging in, under Pin server certificate.
    • If the certificate's server name does not match the application server's URL or, if the server certificate cannot be successfully verified, the server name displayed in red next the URL. You decide whether to trust the certificate.
    • If a client certificate is expected according to the SSL settings, select the certificate under Select client certificate and specify how the certificate is to be verified. You have the following options: Find by subject name, Find by issuer name and Find by thumbprint.
    • If you want to use a self-signed certificate, enable Accept self-signed certificate.
  5. Select Test connection in the Options menu.

    This attempts to connect the database with the given connection data. You are prompted to confirm a message about the test.

    NOTE: Use Options | Advanced options to make further changes to the database connection configuration settings.

  6. Click Finished.

To delete a connection

  1. Select the connection under Select a database connection.
  2. Press DEL.
  3. Confirm the security prompt with Yes.

    The database connection is no longer displayed in the connection dialog.

Related Topics

Logging in to the One Identity Manager tools using a system ID

Following the database login, the user must log in as a system user to the started program. Permitted system user IDs are determined by the authentication module you select.

NOTE:

  • After the initial schema installation, only the System user and ComponentAuthenticator authentication modules and the role-based authentication modules are enabled in One Identity Manager.

  • The One Identity Manager tools can only be started if the user has the relevant program function permissions.

To log in to One Identity Manager tools with a system user identifier

  1. Select the authentication module under Authentication method in the connection dialog.

    This displays a list of all available authentication modules.

  2. Enter the login data for the system user ID.

    Which login data you require depends on the authentication module selected.

  3. Click Log in.

    The connection data is saved and made available for the next login.

    Figure 6: Login window

For detailed information about the One Identity Manager authentication modules and program functions, see the One Identity Manager Authorization and Authentication Guide.

Related Topics

Enabling other authentication modules

For detailed information about the One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

To enable an authentication module

  1. In Designer, select Base data | Security settings | Authentication modules.

  2. In List Editor, select the authentication module.

  3. In the Properties view, set the Activated property to True.

  4. Save the changes.

Related Documents