Marketplace images
Active Roles supports AWS and Azure cloud platforms. You can utilize Active Roles Marketplace images available on Azure or AWS Marketplace using the available organization subscription. The below images contain Active Roles 8.0 LTS preinstalled but not configured with different Active Roles components:
-
Active Roles Service on Windows Server 2016
-
Active Roles Web on Windows Server 2016
-
Active Roles Service and Web on Windows Server 2016
-
Active Roles Service on Windows Server 2019
-
Active Roles Web on Windows Server 2019
-
Active Roles Service and Web on Windows Server 2019
|
CAUTION: Currently, AWS EC2 instances that are preinstalled with Active Roles are not available on AWS Marketplace. However, with the AWS subscription you can create virtual machines or EC2 instances, install Active Roles, and configure them using the prerequisites and the procedure provided in the document. |
Hardware requirements
This section briefs about the minimum hardware requirements to ensure optimal performance.
-
A server with Microsoft Windows Server 2016, 4 Core vCPUs , and 8GB RAM- Used as a Domain Controller with ADFS services that connects to Azure hosted AD.
-
A server with Microsoft Windows Server 2016, 4 Core vCPUs, and 8GB RAM- Used as an Exchange Server
-
A server with Microsoft Windows Server 2016, 1 Core vCPUs, and 2GB RAM- Used for Administration activity
-
A server with Microsoft Windows Server 2016, 1 Core vCPUs, 2GB RAM- Used for ARS Administrator portal, Self-Service portal, and Help desk portal.
-
A server with Microsoft Windows Server 2016 R2, SQL Server 2012 SP4, 1 Core vCPUs, and 2GB RAM- Used as a Database Server.
-
A server with Microsoft Windows Server 2016, 8 Core vCPUs, and 16GB RAM- Used for Synchronization services.
NOTE: The minimum hardware requirement specified here is applicable for small environments. For a more detailed information about the recommended configuration on small and medium environment, see Supported configurations.
Supported configurations
This topic briefs about the supported configurations in Azure and AWS Marketplace images.
Before choosing a type of Azure VM or AWS EC2 instance, see the links available here, that help in selecting the suitable configuration based on the requirement.
The following examples briefly outline the types of environments supported by Active Roles on Azure and AWS Virtual machine configurations:
- Small
-
Active Directory environment with 15000 AD accounts.
-
Dynamic Groups with 3000 Users.
-
Group Families on Department/location attributes.
-
10 Virtual Attributes on the User Objects.
-
Managed Units with 10 Virtual Attributes.
-
Enable Mailbox provisioning on Exchange server.
-
Script Policies for Provisioning Home Folders, set attributes such Description, Manager, property generation policy, de-provisioning policy.
-
Quest Authentication Services Add-ON.
- Medium
-
Active Directory environment with 50000 AD accounts.
-
Dynamic Groups with 10000 Users.
-
Group Families on Department/location attributes.
-
10 Virtual Attributes on the User Objects.
-
Managed Units with 10 Virtual Attributes.
-
Enable Mailbox provisioning on Exchange server.
-
Script Policies for Provisioning Home Folders, set attributes such Description, Manager, property generation policy, de-provisioning policy.
-
Workflows to modify the user objects.
-
Quest Authentication Services Add-ON.
IMPORTANT: One Identity recommends to use the Azure-F4s series for environment with 30 to 50 concurrent users for optimal performance. For more information on the supported configurations, see the table below.
|
CAUTION:
- Currently, AWS EC2 instances that are preinstalled with Active Roles are not available on AWS Marketplace. However, with the AWS subscription you can create virtual machines or EC2 instances, install Active Roles, and configure them using the prerequisites and the procedure provided in the Active Roles on Azure and AWS Marketplace User Guide.
-
The configurations mentioned here have limited support depending on the quantity of Dynamic Groups (DG), Managed Units (MU), policies, scripts, workflows, and other infrastructural considerations. One Identity reserves the right to withhold support until the customer moves the configuration inline with the Supported configurations. |
Legend:
- W- Web service
- S- Active Roles service
- WS- Web service and Active Roles service
Table 1: Fully Supported Platforms for Active Roles Deployments
Environment |
VM Configuration |
Concurrent Users |
Active Roles Components |
Windows 2016 |
Windows 2019 |
W |
S |
WS |
W |
S |
WS |
Small
|
Azure- B4ms (4 vCPU 16GB) |
50 |
No |
No |
No |
No |
No |
Yes |
Azure-B2ms (2vCPU 8GB) |
50 |
Yes |
Yes |
Yes |
Yes |
Yes |
No |
Azure-B2s(2vCPU 4GB) |
30
|
Yes |
Yes |
Yes |
Yes |
Yes |
No
|
Azure-B2s(2vCPU 4GB) |
10
|
No |
No |
No |
No |
No |
|
AWS-t2.large (2vCPU 8GB) |
50 |
No |
Yes |
Yes |
Yes |
Yes |
No |
AWS-t2.xlarge (4vCPU 16GB) |
50 |
Yes |
No |
No |
No |
No |
Yes |
AWS-t2.medium (2vCPU 4GB) |
50 |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Medium
|
Azure-B2s (2vCPU 4GB) |
10
|
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Azure-B2 series |
30
|
Yes |
Yes |
Yes |
Yes |
Yes |
No |
Azure-F4s series |
30 |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Azure-F4s series |
50 |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
AWS- t2.xlarge (4vCPU 16GB) |
50
|
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
AWS-t3a.medium (2vCPU 4GB) |
10 |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
Creating virtual machines on the cloud
This topic briefs about creating virtual machines on the cloud. Before creating virtual machines on the cloud, ensure that the prerequisites are met.