Identity Manager 8.1 - Installation Guide

About this Guide One Identity Manager overview Installation prerequisites Installing One Identity Manager Installing and configuring the One Identity Manager Service Automatic updating of One Identity Manager Updating One Identity Manager Installing and updating an application server Installing the API Server Installing, configuring and maintaining the Web Portal Installing and updating the Manager web application Logging in to One Identity Manager tools Error handling Appendix: Creating a One Identity Manager database for a test or development environment from a database backup Appendix: Extended configuration of the Manager web application Appendix: Machine roles and installation packages Appendix: Settings for a new SQL Server database

Notes on working with an encrypted One Identity Manager database

If you encrypt a One Identity Manager database, you must declare the database key to the One Identity Manager Service.

CAUTION: If the One Identity Manager Service finds a private key in the installation directory on startup, it places the key in the Windows internal key container of its service account and deletes the file from the hard drive. So save the private key at another location in addition to the service install directory!

To declare the database key

  • Declare the following information in the One Identity Manager Service configuration file. Use the Job Server Editor in Designer or the Job Service Configuration program to edit the configuration file. For more detailed information, see the One Identity Manager Configuration Guide.

    Table 21: Configuring the One Identity Manager Service for encryption
    Configuration module Parameter Meaning

    JobServiceDestination

    Encryption method (EncryptionScheme)

    Encryption method used

    JobServiceDestination

    File with private key (PrivateKey)

    Enter the file with the encryption information. The default file is private.key.

    JobServiceDestination

    Private key identifier (PrivateKeyId)

    Identifier of the private key.

    Use this parameter if you work with several private keys, for example, if One Identity Manager Service data must be exchanged between two encrypted One Identity Manager databases.

    If no ID is specified, a search is performed for the private.key file.

    File with the private key.

     

    Private key identifier and path to private key file.

    The ID is expected in the JobServiceDestination in the parameter Private key identifier (PrivateKeyId) The default key has the ID Default.

  • Save the key file created in the service’s install directory.

  • Open the service management and restart the One Identity Manager Service.

NOTE: The file with the private key must exist in the server's installation directory on all servers with an active One Identity Manager Service.

NOTE: If you change the One Identity Manager Service user account, you must save the key file in the service’s install directory again.

Detailed information about this topic

Vendor notification in One Identity Manager

Give us the opportunity to keep you up-to-date. The interfaces to other systems are being developed continually. Enable vendor notifications to receive news about important program updates for your system.

If vendor notification is enabled, One Identity Manager generates a list of system settings once a month and sends it to One Identity. This list does not contain any personal data. The list will be reviewed by our customer support team who will look for material changes in a proactive effort to identify potential issues before they materialize on your system. The lists may be used by our R&D staff for analysis, diagnosis, and replication for testing purposes. We will keep and refer to this information for as long as your company remains on support for this product.

NOTE: You can check the latest system information at any time in the Help | Info menu.
Detailed information about this topic

Enabling vendor notification

Prerequisite for Vendor Notification
  • A Job server is configured as SMTP host for sending mail in One Identity Manager.

  • The configuration parameters for email notification are configured.

To enable a vendor notification

  1. Start the Launchpad and log in on the One Identity Manager database.

    NOTE: You can only configure vendor notification in Launchpad on a One Identity Manager database with the Live environment staging level.

  2. Select Configure vendor notification and click Start.

    This starts the Designer and opens the Configuration Parameter Editor.

  3. Enable the configuration parameter Common | MailNotification | VendorNotification and enter the email address of your business contact.

    The email address is used as the return address for notifying vendors.

  4. Select Database | Save to database and click Save.
Detailed information about this topic

Checking the vendor notification

NOTE: You can only configure vendor notification in Launchpad on a One Identity Manager database with the Live environment staging level.

To check whether vendor notification is enabled

  • Start the Launchpad and log in on the One Identity Manager database.

    Look at the Configure vendor notification In the installation view to see is the functionality is enabled.

Detailed information about this topic
相关文档