Identity Manager 8.1 - Installation Guide

About this Guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing and updating an application server Installing the API Server Installing, configuring and maintaining the Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Error handling Appendix: Creating a One Identity Manager database for a test or development environment from a database backup Appendix: Extended configuration of the Manager web application Appendix: Machine roles and installation packages Appendix: Settings for a new SQL Server database

Application pool

In the Application pool view, you define all applications that work together to make the application available to the user in multiple languages.

  • Click Add application to define another application.
  • Click Remove application to select an application to remove.
  • You can change the order by using the arrows on the right side.

NOTE: You must at least define the currently configured application. The order has immediately effect on login performance because the status of configured applications is queried in the defined order.

Table 61: Meaning of the Configuration Settings for the Application Pool
Setting Description

Redirect URL

Full address of the application. It must also be possible to resolve this address on the client side through the user's browser.

NOTE: Ensure correct case.

Authentication

The applications communicate with each other over the defined URL. Permissions are required to do this if anonymous access is not permitted. The application required the same access rights as required when the URL is called by browser on the server.

Related Topics

Plug-ins

Plug-ins extend the functionality of the Manager web application. You can enable a plug-in by setting the option in front of the plug-in name. You may find plug-in specific settings under a plug-in.

Plug-in automatic update

This plug-in runs automatic update.

Table 62: Meaning of Configuration Settings
Setting Meaning

Automatic update

Automatic update is enabled.

Severity

Severity of a change in order to start automatic update.

Related Topics

Load balancing

The Manager web application provides simple load balancing in order to distribute user sessions and the resulting load across multiple processes or even servers. To do this, the application is installed multiple times on the same or on other servers.

All collaborating applications that can be logged into, are declared in the applications' Application pool. The selection algorithm for load distribution distributes user logins across the defined applications.

NOTE: Even if only one application is installed, it must be defined in your application pool, otherwise you cannot log in.

Table 63: Supported algorithms for load balancing
Algorithm Description

DistributeEqually

This algorithm distributes user logins such that each application in one language has the same number of active users, if possible. This algorithm is the default and is required in 99% of cases.

DistributeSuccessively

This algorithm distributes user logins by order of application definition in the application pool. First of all, all user logins are forwarded to the first application in the desired language. When this has reached it maximum load, logins are forwarded to the next application.

Load balancing solves the following problems:

  • Multi-language

    Language is fixed for per application so that an application can only provide user sessions in one language. If users can log in with multiple languages, at least one application must be installed for each language.

  • Bypassing resource limitations

    If multiple web applications are installed and these are assigned to different Internet Information Services application pools, these are started in separate processes.

  • Increasing performance

    Performance can be noticeably improved by installing on several servers.

  • Redundancy

    Multiple installation does not necessary complete outage if just one of the installed application fails.

Related Topics

Single Sign-On

The Manager web application supports a single sign-on mechanism that enables authentication of a user without the user having to repeatedly enter their user name and password.

Prerequisites required:

  • Disabling anonymous access

  • Configuration of an authentication module capable of single sign-on

    For detailed information about the One Identity Manager authentication modules, see the One Identity Manager Authorization and Authentication Guide.

  • Permissions in the application owns application pool

You can disable anonymous access on the web server. This means the user's browser must provide the data required for authentication.

To disable the anonymous access

  1. open the configuration of the Manager web application in the Internet Information Services and activate the configuration for Authentication.
  2. Change the value of the status to disabled in Anonymous Authentication.
Related Topics
相关文档