Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

The Identity Manager brokers all authentication requests from Clients to GlobalSearch.  This includes the both the desktop and browser clients, in additional to standalone applications like GlobalSearch Extensions, File XChange, and Image XChange.  Clients using Identity Manager leverage an API Key for application to application communication, which will be generated automatically at the time of installation or upgrade.  Calling applications use a saved version of the API Key, normally found in the application's Config file.  There may be times where additional keys are required, or existing keys should change.  An interface is provided to manage these changes.

Identity Manager is specific to the task of Authentication.  Authentication confirms the user is who they say they are.  This is different than Authorization, which is the ability to secure a specific resource.  Identity Manager assumes the role of authentication in the product.  GlobalSearch directly keeps track of what a user is secured to.

Database

The Identity Manager uses its own SQL Server database named Square9.IdentityManager.  The database is used to keep track of user and group accounts that are created through the GlobalSearch User Manager, or provisioned through 3rd party identity services like Okta or Azure AD.

BACKUP YOUR DATABASES

The Identity Manager's database should be part of a normal SQL backup process.  Please ensure all SQL databases are properly backed up, and ensure those back ups are tested.



  • Like all GlobalSearch support applications, the Identity Manager application and supporting files can be found in C:\Program Files\Square 9 Softworks if the default installation path was chosen.
  • When upgrading from previous versions, the Identity Manager will automatically migrate existing Square 9 users.  what if this doesn't happen?  Migrations table in SSMaster will detail user accounts that were migrated in the process.  Look specifically for a row with a Name value of RolesToS9IM.
  • How can someone log in if the database doesn't exist?
  • IM needs to be manually uninstalled if you are trying to uninstall all Square 9 applications from an environment.
  • Server's configured for RDS need to be put into install mode, or the IM installation will hang.  Refer to the documentation on common installation issues here.  This behavior is a problem with Windows Installer chaining, and can also be bypassed by telling the installer to skip the chained installation.  Run the GlobalSearch installer with a 'no chaining' option, setup.exe /v"DO_NOT_CHAIN=TRUE", and manually trigger the Identity manager install.  Identity Manager is a required service for proper GlobalSearch operations.  If the identity manager install is skipped or bypassed, it will need to be installed separately.  https://bugzilla.square-9.com/show_bug.cgi?id=11545
  • Database context is admin auth.
  • S9API is what runs any user migration, delete roles to S9IM and it will kick it.
  • No labels