none
FIM Database questions RRS feed

  • Question

  • We are about to deploy FIM in a simple topology to a costumer, aiming towards the Self Service Password Reset service.

    However the database will be located somewhere else in the network, some concerns were raised by the DB Administrator of the costumer, and i still couldn't find proper documentation covering those questions such as follows:

    - Names of user and database are fixed, or can be changed?

    - If the DBA's create the database before the installation of Central Instance, the OWNER permission will suffice for the creation of objects?

    - Is our standard collation "SQL_LATIN1_General_CP1_Cl_Al" compatible?

    - Does the application need any permission on the catalog databases, like "máster", "msdb", etc?

    - The migration of the database to production instances can be done using backup and restore?

    - Is there a policy for the data stored on this database? Are there any archiving/purge of unecessary data?

    Thursday, April 2, 2015 11:59 AM

Answers

  • This is Typical DBA push-back. 

    1. Installation creates the databases and everything with it.  All you need from DBA is the ServerName\Instance.

    2. User account who runs the installation, needs SYSADMIN rights, which can be revoked after the installation.

    Q: Names of user and database are fixed, or can be changed?

    A: NO Cannot be touched.

    Q: If the DBA's create the database before the installation of Central Instance, the OWNER permission will suffice for the creation of objects?

    A: NO THEY SHOULD NOT.  Using an existing DB only works when a DB is there from a previous installation.

    Q: Does the application need any permission on the catalog databases, like "máster", "msdb", etc?. 

    A: useSYSADMIN will do that.

    Q: SQL_LATIN1_General_CP1_Cl_Al.  Is compatible.

    A: YES it works

    Q: The migration of the database to production instances can be done using backup and restore?

    A: This is not how you do it, you don't want to migrate DB (data), only configuration.  FIM Migration is done through powershell scripts.

    Q: Is there a policy for the data stored on this database? Are there any archiving/purge of unecessary data?

    A: Not sure I understand the question. Standard DB administration.


    Nosh Mernacaj, Identity Management Specialist

    • Marked as answer by RFWill Monday, April 6, 2015 11:30 AM
    Thursday, April 2, 2015 1:23 PM