Identity Panel prerequisites fall in the following categories:
- Hardware performance
- Software prerequisites
- Environment and accounts
Before deploying Identity Panel ensure you have servers available meeting hardware and OS requirements. Obtain required accounts, groups, DNS entries etc. Other software prerequisites may be installed in advance or obtained via the Panel Setup utility included with the Identity Panel installer download.
When using Azure Marketplace and SaaS versions of Identity Panel, web application requirements are not relevant.
Number of Identities refers to the number of distinct person identities in an environment with an average of 10 silos or less per user (e.g., 5 MIM MAs, Azure AD connect, and Office 365), and a similar number or fewer of groups. In environments with significantly more silos revise the estimate for number of identities accordingly.
Disk space refers to free space on the drive intended to host the Identity Panel database.
Hardware
Single-Server Standalone
The following table of system requirements applies to the Identity Panel web application role. It assumes a single server will be used to host the web application and database, and that no other roles (e.g., SQL, MIM) will be hosted on the same server. Requirements are minimums.
Number of Identities | RAM | Processor Cores | Disk Space |
<10,000 | 8 GB | 2 | 50 GB |
<50,000 | 16 GB | 4 | 100 GB |
<100,000 | 32 GB | 4 | *200 GB |
<200,000 | 64 GB | 6 | *320 GB |
>200,000 | 64 GB | 8 | ** 1 TB |
* Solid state drives required (minimum 2000 IOPS and 150MBs throughput for virtualized environments)
** SSD (minimum 5000 IOPS and 250MBs throughput)
Web Application Only
The following table assumes that the web application will be hosted on a separate server or Azure App Service with the database and search services hosted separately.
Number of Identities | RAM | Processor Cores | Disk Space |
<10,000 | 8 GB | 2 | 10 GB |
<50,000 | 8 GB | 2 | 10 GB |
<100,000 | 12 GB | 4 | 10 GB |
<200,000 | 16 GB | 4 | 10 GB |
>200,000 | 16 GB | 6 | 20 GB |
Web Application and Search Service
The following table assumes that the web application will be hosted on a separate server or Azure App Service with the database and search services hosted separately.
Number of Identities | RAM | Processor Cores | Disk Space |
<10,000 | 8 GB | 2 | 20 GB |
<50,000 | 12 GB | 2 | 30 GB |
<100,000 | 16 GB | 4 | 50 GB |
<200,000 | 24 GB | 4 | 50 GB |
>200,000 | 24 GB | 6 | 100 GB |
Database Service
The following table gives performance requirements for just the database server as a standalone option
Number of Identities | RAM | Processor Cores | Disk Space |
<10,000 | 8 GB | 2 | 50 GB |
<50,000 | 16 GB | 2 | 100 GB |
<100,000 | 24 GB | 4 | *200 GB |
<200,000 | 48 GB | 4 | *320 GB |
>200,000 | 48 GB | 6 | ** 1 TB |
* Solid state drives required (minimum 2000 IOPS and 150MBs throughput for virtualized environments)
** SSD (minimum 5000 IOPS and 250MBs throughput)
Panel Service
The following table refers to the amount of RAM overhead expected to be used by Panel Service while performing data collection. This is NOT total server RAM, but rather RAM in addition to what's required for other server roles.
Number of Identities | RAM |
< 10,000 | 500 MB |
< 50,000 | 3 GB |
< 100,000 | 6 GB |
< 200,000 | 12 GB |
> 200,000 | 24 GB |
Software
Web Application
- Windows Server 2016 or later
- .NET 4.8 or later
- IIS Application server role and features
- .NET Core Runtime
- Elasticsearch 7.16 or later (requires Java runtime)
- MongoDB 4.0 or later
Panel Service
- Windows Server 2016 or later
- .NET 4.8 or later
- PowerShell 4.0 or later
Supported End User Browsers
- Edge
- Firefox
- Chrome
- Safari
- iOS or Android mobile browsers
Environment
- Un-proxied network access via HTTPS (port 443) to web application from all panel service instances and end-user web browsers.
- DNS entry for user-friendly host name.
- HTTPS certificate trusted by Panel Service servers and by end-user browsers for the intended URL.
- Groups for Identity Panel Admin, Writer, and User roles.
- (High Availability only - see Install Identity Panel) a domain account to use as application pool account.
Comments
0 comments
Please sign in to leave a comment.