Identity Panel prerequisites fall in the following categories:
- Hardware performance
- Software prerequisites
- Environment and accounts
Before deploying Identity Panel ensure you have servers available meeting hardware and OS requirements. Obtain required accounts, groups, DNS entries etc. Other software prerequisites may be installed in advance or obtained via the OneDesignConfig script (Previously Panel Helper).
See also OneDesignConfig overview for details on performing an automated installation of Identity Panel.
When using Azure Marketplace and OneDesign SaaS versions of Identity Panel, web application requirements are not relevant.
The following table of requirements applies to the Identity Panel web application role. It assumes a single server will be used to host the web application and database, and that no other roles (e.g. SQL, MIM) will be hosted on the sam server. Requirements are minimums.
Number of Identities refers to the number of distinct person identities in an environment with an average of 10 silos or less per user (e.g. 5 MIM MAs, Azure AD connect, and Office 365), and a similar number or fewer of groups. In environments with significantly more silos revise the estimate for number of identities accordingly.
Disk space refers to free space on the drive intended to host the Identity Panel database.
|Number of Identities||RAM||Processor Cores||Disk Space|
|<10,000||8 GB||2||20 GB|
|<50,000||16 GB||2||40 GB|
|<100,000||20 GB||4||80 GB|
|<200,000||32 GB||6||160 GB|
|>200,000||64 GB||8||320 GB|
The following table refers to the amount of RAM overhead expected to be used by Panel Service while performing data collection. This is NOT total server RAM, but rather RAM in addition to what's required for other server roles.
|Number of Identities||RAM|
|< 10,000||500 MB|
|< 50,000||3 GB|
|< 100,000||6 GB|
|> 100,000||12 GB|
- Windows Server 2012 R2 or later
- .NET 4.6.1
- IIS Application server role and features
- .NET Core 1.1 runtime
- Java runtime 8
- Windows Server 2008 R2 or later (Windows Server 2012 R2 recommended)
- .NET 4.6.1 or later
- PowerShell 4.0 or later
Supported End User Browsers
- Internet Explorer 11 or later, with compatibility mode disabled
- iOS or Android mobile browsers
Some environment settings may be omitted in test environments, but this is strongly discouraged.
- Un-proxied network access via HTTPS (port 443) to web application from all panel service instances and end-user web browsers.
- DNS entry for user-friendly host name
- HTTPS certificate trusted by Panel Service servers and by end-user browsers for the intended URL (RSA2048 or better recommended)
- Groups for Identity Panel Admin, Writer, and User roles
- High Availability only: account to use as application pool account