Only the settings for working with One Identity Manager are described below. For more information about SQL Server AlwaysOn availability groups, see Always On availability groups: a high-availability and disaster-recovery solution.

NOTE: If you want to include a One Identity Manager database in a SQL Server AlwaysOn availability group, note that one availability group is required per availability database.

Example:

You want two databases (for example, UAC and QA) to be part of an SQL Server AlwaysOn availability group as availability databases. Each database requires its own availability group (for example, AGUAC and AGQA).

NOTE: Custom SQL logins for the One Identity Manager database must be available on all nodes.

If you are working with granular permissions, you must also provide SQL logins on all nodes. Ensure that an SQL login with the connected server roles is created on all nodes with the same security ID (SID), otherwise failover problems may occur.

Prerequisite

A failover cluster manager has been configured. Therefore, run the Server Manager on the database server and install the Failover Clustering feature.

Installing One Identity Manager
  1. Run the program Configuration Wizard against a cluster node and follow the installation instructions.

  2. Install and launch the One Identity Manager Service. After all processes in the Job queue have been processed, stop the One Identity Manager Service.

  3. Run the Designer and set up the staging layer for the database.

  4. In SQL Server Management Studio, change the recovery model for the One Identity Manager database from Simple to Full.

  5. Create a full backup of the database.

  6. Make sure that the firewall is configured to support cluster communication.

  7. Run the SQL Server Configuration Manager and locate the SQL Server service. Open the properties and enable Always-On Availability Groups. Restart the SQL Server service on all nodes.

    For more information, see Enable or Disable Always On availability group feature.

Configuring the SQL Server AlwaysOn availability groups
  1. In SQL Server Management Studio, connect the server instance that hosts the primary node. To configure the availability groups, navigate to AlwaysOn High Availability, right-click and select New Availability Group Wizard.

    For more information about the New Availability Group Wizard, see Use the Availability Group Wizard (SQL Server Management Studio).

  2. In the New Availability Group Wizard, enter the name of the new availability group and select the One Identity Manager database to be included in the new availability group.

  3. In the New Availability Group Wizard, you create and configure a replica for the new availability group.

    1. Add the secondary SQL Server cluster node.

    2. Enable automatic failover and synchronous handover for both nodes.

    3. Make all nodes a readable secondary node; select the Yes value.

    4. Specify an availability group listener.

      For example, for the DNS name, use the same name as the availability group but with the suffix "L", and use port 1433. Assign an IP address on the same subnet as the SQL Server.

      For more information, see Specify Replicas Page (New Availability Group Wizard: Add Replica Wizard).

  4. In the New Availability Group Wizard, you define the settings for data synchronization. The settings for data synchronization depend on your infrastructure.

    If you are using a network share to synchronize data between replicas, select the Full option and specify the network location. Server instances hosting a replica require read and write access to the share.

One Identity Manager configuration
  1. Run the program Database Compiler. Connect to the primary node and compile the database. Do not change the database connection data at this time.

    For more information, see the One Identity Manager Operational Guide.

  2. Then update the database connection data in Designer.

    1. Start the Designer and connect to the primary node.

    2. In the Designer, select the Base Data > General > Databases category.

    3. Select the database in the List Editor.

    4. Select the Define connection string for database task.

    5. Enter the connection data for the database. Use the DNS name of the listener instead of the server name.

    For more information, see the One Identity Manager Configuration Guide.

  3. Run the program Database Compiler and compile the database. Use the listener.

  4. Run the Job Service Configuration and change the connection details for the One Identity Manager Service. Use the listener.

    It is recommended to change the queue name to better reflect the cluster. Note that you also update the queue name in Designer.

    For more information, see the One Identity Manager Configuration Guide.

  5. Ensure that Job servers, application servers, front-ends, web applications, and synchronization projects use the listener to log in to the database.

Related topics