Hello,
I am looking for learnings, experinces from people who have deployed IIQ on Azure cloud and Azure SQL (PaaS or Azure SQL).
Thanks,
Abhishek
Hi Abhishek,
That’s an extremely large topic. I would recommend reviewing the IdentityIQ on Azure article on compass first: https://community.sailpoint.com/t5/Other-Documents/IdentityIQ-on-Azure-Architecture-and-Performance-Recommendations/ta-p/74073. After reading that, you can probably narrow your question down to something a bit more specific.
Regards,
Rich
Thanks I have gone throuh the doc and have following questions
- Any additional guideliens from SailPoint omn Azure SQL PaaS as database available,?the post says it was last updated in 2019 and it is not officially tested.
- Sizing :- It says f8 for large, not sure if f8 is an old recommondation from 2019 or it is the latest?
At one of our larger clients we deployed IIQ in AKS (Azure Kubernetes Service) using Azure SQL Database.
We encountered no big or abnormal issues and running smooth. We used the information from the link Rich already shared. We used the Medium Footprint from the Hardware Sizing Guide for 35k of active identities. 
The only issue we faced was the Azure Web Application Firewall bocking all POST request using the default WAF Policy. Issues were related to (amongst others) the WebUI of IIQ is using XML to POST to the IIQ server and XML is blocked by the default WAS policy. Since IIQ deployed on AKS is not fully supported by SailPoint they were unable to provide us information on how to setup WAF for IIQ 
So yes, IIQ is running fine on Azure, either on VMs as in AKS
– Remold
1 Like
thanks that’s helpful.
We are not planning to use AKS but Azure VM’s for the current project.
For the Azure SQL server we use the following in the iiq.properties file for our dev and test servers (for prod install the cert in the Java truststore):
dataSource.username=%%DATABASE_USER%%
dataSource.password=%%DATABASE_PASSWORD_IIQ%%
dataSource.url=jdbc:sqlserver://%%DATABASE_SERVER_NAME%%.database.windows.net:1433;database=%%DATABASE_NAME_IDENTITY_IQ%%;encrypt=true;trustServerCertificate=true;hostNameInCertificate=*.database.windows.net;loginTimeout=30;
dataSource.driverClassName=com.microsoft.sqlserver.jdbc.SQLServerDriver
sessionFactory.hibernateProperties.hibernate.dialect=sailpoint.persistence.SQLServerUnicodeDialect
scheduler.quartzProperties.org.quartz.jobStore.driverDelegateClass=org.quartz.impl.jdbcjobstore.MSSQLDelegate
scheduler.quartzProperties.org.quartz.jobStore.selectWithLockSQL=SELECT * FROM {0}LOCKS UPDLOCK WHERE LOCK_NAME = ?
And use the latest Microsoft JDBC Driver for SQL Server
– Remold
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.