IQService migration

rishavghoshacc · May 5, 2026, 7:55am

Hi all,

We are planning to move IQService from one server to another. Is there like a checklist/things that we should keep in mind.

The new server is running Windows Server 2022.

Thanks in advance

naveenkumar3 · May 5, 2026, 7:59am

Nothing much, Just take the backup of your existing iq service directory and logs. Take a backup of all the powershell script running on the iq server, for mailbox enablement and other purpose. Note down the current IQService configuration (port, service account, endpoint settings).

Please make sure on your new server, TLS certs are installed. the connectivity should be open from iiq to your new server and from there to your host.

haideralishaik · May 5, 2026, 8:38am

hi @rishavghoshacc

Yes, there are a few key things to check when moving IQService to a new server (Windows Server 2022 is fine and supported).

Checklist / Things to keep in mind:

Version alignment
- Install the same IQService version as your IdentityIQ version (and patch level).
Service account
- Use the same service account (or ensure the new one has identical permissions).
- Verify Log on as a service rights.
- If using Kerberos / SPNs (e.g., for AD), recheck SPN registrations.
Certificates
- Export/import any certificates used for SSL/TLS between IIQ and IQService.
- Update iisqservice.properties (or equivalent) if cert paths/aliases change.
Configuration files
- Copy and review:
  - IQService.properties
  - log4net.config
  - any custom scripts or connector binaries
- Update hostnames, IPs, file paths if they differ.
Firewall & network
- Ensure required ports are open both ways (default IQService port, LDAP, etc.).
- Update the IQService host reference in IdentityIQ (Application → IQService settings).
Dependencies
- Install required .NET Framework / VC++ Redistributables as per SailPoint docs.
- Confirm PowerShell version and execution policy (if used by connectors).
Testing
- Restart the IQService and verify logs come up clean.
- Test:
  - AD aggregation
  - Create/Modify/Disable account
  - Password change/reset
Decommission old server
- Only after successful validation, stop and remove IQService from the old host to avoid confusion.

Overall, the move is straightforward as long as config, certificates, and service account permissions are carried over correctly as above mentioned by @naveenkumar3

Also can refer to

Hope this helps.

neel193 · May 5, 2026, 10:25am

@rishavghoshacc Incase you are using High Availability and have multiple IQService behind a load balancer, then you should check the LB and DNS settings to point to the new servers as well.

Rest all details are already covered by fellow Sailors above.

Topic		Replies	Views
ISC - Coexistence of IIQ and IdentityNow IQService on the same Windows Server 2019 during migration ISC Discussion and Questions identity-security-cloud , identityiq , provisioning , iqservice	2	76	July 13, 2025
New Capability: Integration Service (IQService-Feb-2025) is now LIVE! Product News identity-security-cloud , identityiq , new-capability	6	816	May 16, 2025
IdentityIQ- Update IQService port from non-TLS to TLS IIQ Discussion and Questions identityiq	1	478	July 19, 2023
Changing IQ Service Password - Does it Affect ISC Source Connection ISC Discussion and Questions identity-security-cloud , active-directory	15	235	September 13, 2025
Installing and Registering IQService Connectivity Documentation Feedback va-con-docs	2	346	August 5, 2024

IQService migration

Related topics