Install VMware Identity ManagerRun the VMware Identity Manager installer on a Windows server that meets all the system configuration requirements listed. Using Setup Wizard to Complete the InstallationAfter the VMware Identity Manager is deployed, you use the Setup wizard to set the machine admin password for VMware Identity Manager, accept the self-signed certificate, and verify the database JDBC URL. Deploying the VMware Identity Manager Machine Behind a Load Balancer In an enterprise environment, the recommended VMware identity Manager machine configuration is to deploy a three-node cluster of the VMware Identity Manager service for high availability. After the first IDM node is installed, configured, and tested behind the load balancer, a script is run on the first node to create a copy of the first instance. This copied file is used to create the other nodes in the cluster. Using a Load Balancer or Reverse Proxy to Enable External Access to VMware Identity ManagerDuring deployment, the VMware Identity Manager machine is set up inside the internal network. If you want to provide access to the service for users connecting from outside networks, you must install a load balancer or a reverse proxy, such as Apache, Nginx, or F5, in the DMZ. Apply VMware Identity Manager Root Certificate to the Load BalancerWhen the VMware Identity Manager virtual appliance is configured behind a load balancer, you must establish SSL trust between the load balancer and VMware Identity Manager. The VMware Identity Manager root certificate must be copied to the load balancer. Apply Load Balancer Root Certificate to VMware Identity ManagerWhen the VMware Identity Manager virtual appliance is configured behind a load balancer, you must establish trust between the load balancer and VMware Identity Manager. In addition to copying the VMware Identity Manager root certificate to the load balancer, you must copy the load balancer root certificate to VMware Identity Manager. Configuring Failover and Redundancy in a Single Data Center (Windows)To achieve failover and redundancy, you can add multiple VMware Identity Manager machines in a cluster. If one of the machines shuts down for any reason, VMware Identity Manager is still available. Set Up Active Directory or LDAP Directory ConnectionsYou integrate your enterprise directory with VMware Identity Manager to sync users and groups from your enterprise directory to the VMware Identity Manager service. Adding Whitelist IP Addresses to Your External FirewallWhen you configure VMware identity Manager with an external firewall, whitelist the IP address ranges or URLs for the following VMware Identity Manager services to provide access to that service. Enabling Proxy Settings After InstallationThe VMware Identity Manager machine accesses the cloud application catalog and other Web services on the Internet. If your network configuration provides Internet access through an HTTP proxy, you must adjust your proxy settings on the VMware Identity Manager machine. Enter the License KeyAfter you deploy the VMware Identity Manager appliance, enter your license key.
