Recommended:
Domino Coexistence Server
4 Cores
8 GB of RAM
100 GB of storage
Add 50 GB of storage if deploying ZApp
Minimum:
Domino Coexistence Server
2 Cores
4 GB of RAM
100 GB of storage
Add 25 GB of storage if deploying ZApp
The IP address and either the default SQL port (1433) or an alternate port must be open to all Binary Tree servers.
The ability to create and modify tables in the Dirsync database on the SQL Server database server.
It is strongly recommended that the SQL Server database server is dedicated to SQL Server. This server can host other SQL databases, but should serve no other purpose than being a SQL Server database server.
SQL Server must be configured using Mixed Mode authentication.
Using the default system administrator SQL Server login account is not recommended. A Directory Sync SQL Server login account should be created. This account must have sysadmin and database owner rights to create the Dirsync database. The sysadmin right can be removed from this account once the install is complete.
If using a Remote Named Instance of SQL Server:
The incoming firewall rules on the machine that hosts the SQL Server instance must be modified.
Using the SQL default of dynamic ports for named instances:
Create an inbound firewall “Program” rule whose program path is the named SQL database engine (ex: %ProgramFiles%\Microsoft SQL Server\MSSQL14.<INSTANCE-NAME>\MSSQL\Binn\sqlservr.exe)
Create an inbound firewall “Port” rule for UDP port 1434.
The “SQL Server Browser” must be running.
Alternatively, you can setup a fixed port for the SQL instance following these instructions.
All components of Directory Sync Pro are fully functional on physical as well as virtual machines. When setting up Proof of Concept or Pilot environments, Binary Tree fully supports, in fact, recommends the use of virtual machines as a means of lowering the expense of such projects. However, when it comes to production environments, Binary Tree has not yet gathered sufficient information to determine whether virtual environments have the same stability and performance characteristics as physical machines. Because a majority of production environments have been and are deployed on physical machines, Binary Tree advises potential customers of these facts, but defers to them to make the final decision. Binary Tree will provide product support in both physical and virtual environments. However, if either stability or performance issues are found in a virtual environment, Binary Tree may recommend switching to a physical one as a means of issue correction.
Binary Tree Servers must be connected via a LAN (10MB or higher) connection. A high-speed WAN (5MB or higher) connection may be acceptable but is not recommended. Where possible, it is recommended to have these servers, as well as Exchange on the same physical network.
To deploy Directory Sync Pro on the Binary Tree Windows Server, an AD account with Server Administration rights must be able to log on to the server interactively. The account must be able to run programs with Administration-level access on the target Exchange Server and specifically be able to open the Exchange Management Shell (PowerShell).
Binary Tree recommends the following setup for the service account:
Minimum membership of Domain Users (least privilege) built-in security group
Read & List Contents rights to "Deleted Objects" container. You may follow these steps if your account is not a Domain Administrator or equivalent (see KB892806):
Using a domain admin account, open a command prompt and confirm the successful execution of the following commands:
dsacls "CN=Deleted Objects,DC=domain,DC=com" /takeownership
dsacls "CN=Deleted Objects,DC=domain,DC=com" /g Domain\ServiceAccount:LCRP
Full Control rights to destination OU in Active Directory
Administrative rights to Exchange
Create a new login in the SQL Server Management Studio. In Server Roles, grant public and sysadmin rights (you may remove these rights after the database has been created). In User Mapping, select the DirSync database and grant public and database owner rights.
Member of local administrators group
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. 使用条款 隐私 Cookie Preference Center