立即与支持人员聊天
与支持团队交流

Identity Manager 9.2.1 - Configuration Guide

About this guide One Identity Manager software architecture Customizing the One Identity Manager default configuration Customizing the One Identity Manager base configuration One Identity Manager schema basics
Overview of the One Identity Manager schema Table types and default columns in the One Identity Manager data model Notes on editing table definitions and column definitions Table definitions Column definitions Table relations Dynamic foreign key Supporting file groups
Editing the user interface
Object definitions for the user interface User interface navigation Forms for the user interface Statistics in One Identity Manager Extending the Launchpad Task definitions for the user interface Applications for configuring the user interface Icons and images for configuring the user interface Using predefined database queries
Localization in One Identity Manager Process orchestration in One Identity Manager
Mapping processes in One Identity Manager Setting up Job servers
The One Identity Manager Service functionality Tracking changes with process monitoring Conditional compilation using preprocessor conditions Scripts in One Identity Manager
Visual Basic .NET scripts usage Notes on message output Notes on using date values Tips for using PowerShell scripts Using dollar ($) notation Using base objects Calling functions Pre-scripts for use in processes and process steps Using session services Using #LD notation Script library Support for processing scripts in the Script Editor Creating and editing scripts in the Script Editor Copying scripts in the Script Editor Testing scripts in the Script Editor Testing script compilation in the Script Editor Overriding scripts Permissions for running scripts Editing and testing script code with the System Debugger Extended debugging in the Object Browser
One Identity Manager query language Reports in One Identity Manager Adding custom tables or columns to the One Identity Manager schema Web service integration One Identity Manager as SCIM 2.0 service provider Processing DBQueue tasks One Identity Manager Service configuration files

Installing the One Identity Manager Service with the Job Server Editor

You have the option to install certain Job servers remotely in the Job Server Editor. The remote installation wizard runs the following steps:

  • Installs One Identity Manager Service components.
  • Configures the One Identity Manager Service.
  • Starts the One Identity Manager Service.

NOTE: To generate processes for the Job server, you need the provider, connection parameters and the authentication data. In the default case, this information is determined from the database connection data. If the Job server runs through an application server, you must configure extra connection data in the Designer. For more information, see Configuring the Job server for connecting to the application server.

Prerequisites for installation
  • The Job server is entered in the database

  • There is a user account with sufficient permissions for installing the One Identity Manager Service.

NOTE: If you are working with an encrypted One Identity Manager database, see the notes on working with an encrypted database in the One Identity Manager Installation Guide.

To install the One Identity Manager Service remotely

  1. In the Designer, select the Base Data > Installation > Job server category.

  2. Start the Job Server Editor using the Edit Job server task.

  3. Select the Job server to be edited in the Job server overview.

  4. Select the Job server > Install service menu item.

    This starts the One Identity Manager Service remote installation wizard.

  5. On the start page of the wizard, click Next.

  6. On the Configure service page, enter the One Identity Manager Service configuration settings.

    Initial configuration of the service is already predefined for the database connection. To use this template, enter the connection data for process collection. In order to extend the configuration, each configuration section of the One Identity Manager Service is listed in the module list.

    For a direct connection to the database:

    1. In the module list, select Process collection > sqlprovider.

    2. Click the Connection parameter entry, then click the Edit button.

    3. Enter the connection data for the One Identity Manager database.

    4. Click OK.

    For a connection to the application server:

    1. In the module list, select the Process collection entry and click the Insert button.

    2. Select AppServerJobProvider and click OK.

    3. In the module list, select Process collection > AppServerJobProvider.

    4. Click the Connection parameter entry and click the Edit button.

    5. Enter the address (URL) for the application server and click OK.

    6. Click the Authentication data entry and click the Edit button.

    7. In the Authentication method dialog, select the authentication module for logging in. Depending on the authentication module, other data may be required, for example, user, and password. For more information about One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

    8. Click OK.

  7. On the Installation source and destination page, enter the following information.

    1. General information:

      • Installation directory: Select the directory containing the installation files.

      • Private key: If the database is encrypted, select the file with the private key.

    2. Click Next.

    3. Enter the service's installation data.

      • Computer: Select the server, on which you want to install and start the service, from the menu or enter the server's name or IP address.

      • Service account: Enter the details of the user account that the One Identity Manager Service is running under. Enter the user account, the user account's password and password confirmation.

      The service is installed using the user account with which you are logged in to the administrative workstation. If you want to use another user account for installing the service, you can enter it in the advanced options.

      You can also change the One Identity Manager Service details, such as the installation directory, name, display name, and the One Identity Manager Service description, using the advanced options.

  8. Click Next to start installing the service.

    Installation of the service occurs automatically and may take some time.

  9. Click Close to end the workflow wizard.

NOTE: In a default installation, the service is entered in the server’s service management with the name One Identity Manager Service.

TIP: Use the Job server > Start HTTP request menu item to address the HTTP server of the One Identity Manager Service for a Job server and display the different services of the One Identity Manager Service.

Related topics

Configuring the Job server for connecting to the application server

Perform the following steps to configure the Job server for connecting to the application server.

To configure the Job server for connecting to the application server

  • Declare the Job server in the One Identity Manager database.

  • Install the One Identity Manager Service and configure the AppServerJobProvider for process collection.

  • To generate processes through an application server, in the Designer, enter the connection data in the Job server.

    • Enter the connection data for the application server.

    • Label the Job server with the No direct database connection option and assign the connection data to the application server.

Related topics

The One Identity Manager Service functionality

The One Identity Manager Service enables the distribution throughout the network of information that is administrated in the One Identity Manager database. The One Identity Manager Service performs data synchronization between the database and any connected target systems and runs actions at the database and file level.

Process steps are run by process components. The One Identity Manager Service also creates an instance of the required process component and transfers the process step parameters. Decision logic monitors the performance of the process steps and determines how processing should continue depending on the results of the run process components.

For more information about installing and updating the One Identity Manager Service, see the One Identity Manager Installation Guide.

For more information about logging and monitoring process handling and support for troubleshooting, see the One Identity Manager Process Monitoring and Troubleshooting Guide.

Related topics

Handling processes with the One Identity Manager Service

The processing tasks for the One Identity Manager Service are saved in the Job queue (JobQueue table) for a defined queue. A One Identity Manager Service can process several queues. The queues that a One Identity Manager Service can process are declared in the One Identity Manager Service's configuration. A Job server must be known in the One Identity Manager database for each queue. The One Identity Manager Service queries the Job queue to see which processes are waiting for its own queue. A queue is initialized when the One Identity Manager Service starts.

The process requests and processing results are cached internally in a request queue (RequestQueue) and a result queue (ResultQueue). The request queue is processed in parallel to the result queue. The following requests use the two internal queues:

  • Request queue

    • Request for pending process steps

    • Request for statistics data

  • Results queue

    • Process results request

    • Processing status request

    • Request for events

    • Initial request of the pending process step when the One Identity Manager Service starts up. This ensures that any missing processing results in the database have arrived before enabling process steps that still have Loaded status.

When the One Identity Manager Service is downloaded, any requests that may still be in the results queue are serialized in a file that is processed the next time the One Identity Manager Service starts. This should ensure that no processing results go missing. The backup files are kept in the local program data directory (%APPDATA%\One Identity\One Identity Manager\JobService).

Related topics
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级