This is not the latest version of Identity Director documentation.
View available documentation.

Install the Management Portal

You need to install the Management Portal on a web server. We do not recommend to install it on a domain controller.

For evaluation purposes, you can also install the Management Portal on a workstation running Microsoft Windows 8 or higher.
By default, the Management Portal is installed at %PROGRAMFILES%\RES Software\IT Store\. If you install the Management Portal at a custom location, the installation path can contain a maximum of 120 characters.
By default, access to the Management Portal is not secured with administrative roles. This means that because the Management Portal is web-based, anyone with an Active Directory account can access it from any location, including end users. It is therefore best practice to secure access to it with administrative roles. See the Help for more information.

Installation

Run the Identity Director Installer on the target device, for example the web server that also hosts the Web Portal. This opens the Identity Director Installer window.
When asked, choose Select and install components and click Next.
In the Features section, select Management Portal. Optionally, you can install other components. These are installed after you install the Management Portal.
Start the installation and follow the Setup Wizard.
In the Secure Binding step, specify the settings to create an SSL binding for the Management Portal. This step is skipped if you already installed an Ivanti portal on the web server (e.g an Ivanti Automation or Ivanti Workspace Control Management Portal, or an Identity Director Web Portal).
- The host name must be known on your internal and external DNS servers.
- The Management Portal is secured with SSL by default. It uses the HTTPS protocol and port 443 (or another port that you specified).
Associate a server certificate with the binding; either a certificate from a trusted Certificate Authority, or a self-signed certificate that is generated during installation.
- You can obtain server certificates for example at www.letsencrypt.org.
- Ivanti recommends to use self-signed certificates only for testing purposes, not in a production environment.
Click Next to start the installation. In IIS, the installation creates the web site RES and deploys the Management Portal as the web application RES > IdentityDirector.
- If the web site RES already exists, a message is shown. Click Yes to continue.
For the IIS Application Pool that is hosting the Management Portal site, make sure that the Load User Profile option is set to True.
How to check the Load User Profile status for the Management Portal
1. Open the IIS Management Console.
2. Navigate to Application Pools > IT Store Management.
3. Open the Advanced Settings for IT Store Management.
4. In the Process Model section, make sure that the Load User Profile is set to True.
5. If the Load User Profile is set to False, set it to True and click Recycle.
  - If you have to change the configuration, make sure to exit the Management Portal first.

Management Portal URL

If you specified a host name identitydirector.example.com in step 5 above, the web application is available at https://identitydirector.example.com/IdentityDirector.

You can sign in to the Management Portal with your Windows User Account and with your User Principal Name (UPN). A UPN is the name of a user in an e-mail address-like format. When you sign in, the UPN is matched to a user account in Microsoft Active Directory and the identifier of a specific person in Identity Director.

Make sure that you use the same encryption key for the Transaction Engine and the Management Portal components of Identity Director.
When you first generate the encryption key, make sure you store it in a easily-accessible location for future use.
To see if an encryption key has already been configured, look in your web.config file, in the section webConsoleConfiguration > managementService > database > encryptionKey.