You can install the components for Identity Governance in a distributed environment. Several of the components can also run in a high-availability cluster. For more information about where you should install these components, see Recommended Installation Scenarios and Server Setup.
Identity Governance requires a relational database to operate and the data storage is grouped into four logical partitions:
Data collection
Operational data
Provisioning workflow
Analytics
Identity Governance provides authentication and Single Sign On (SSO) through the One SSO Provider service (OSP). After the client authenticates to OSP (with basic authentication, Kerberos or SAML), it can optionally implement a multi-factor authentication method when used with the optional Advanced Authentication Service. The OSP can be a shared service providing Single Sign On, across Identity Governance, Identity Manager and Identity Reporting services.
For more information about installation and configuration, see Section I, Installing Identity Governance.