Identity Director Administration Guide


Configure the Datastore connection

At Setup > Datastore, manage the Datastore connection settings and authentication settings. You can change settings, connect to a different Datastore or create a new one.

The Datastore stores all information of your environment, including licenses and data synchronized from external sources. Upgraded customers may use an Ivanti Automation Datastore.



Explanation and Tips

Database type

Select the database type.

Database server

Specify the IP address, hostname or FQDN of the database server.

Protocol encryption

Enables secure communication between the Datastore and the components that connect to it (Microsoft SQL Server only).
See also: Configure protocol encryption

Database name

Specify the Datastore name.

  • If you change the connection to a different Datastore, you also need to point the Transaction Engine to this Datastore. See Command-line options.
  • You can connect to an empty database (a database without any tables) that you have created directly on a database server, not with Identity Director. This database can then be used as an Identity Director Datastore. This is useful if an administrator is only allowed to manage existing databases, not create new ones.

Use Windows authentication

Use Windows authentication for access to the Datastore (Microsoft SQL Server only).

Authentication type

Windows authentication

By default, the server that hosts the Management Portal uses Windows authentication.

ADFS authentication

ADFS Authentication requires the availability of a fully-configured ADFS server.

  • In the Login URL field, specify the URL to the ADFS server (e.g. https://[adfs host]/adfs/ls).
  • In the Realm field, specify the ADFS realm that you configured on the ADFS server (e.g.
  • In the Certificate Authority area, specify the name and the thumbprint of the security certificate on the ADFS server.

Identity Broker authentication

The Identity Broker is a web application that acts as a "broker" for authentication, between Ivanti portals and their configured Identity Provider: it can process authentication requests by means of external authentication endpoints. See the Getting Started with the Identity Broker for further information on installation and configuration of the Identity Broker.

See also

Was this article useful?