Chat now with support
Chat mit Support

Password Manager 5.13.2 - Administration Guide

About Password Manager Getting started Password Manager architecture
Password Manager components and third-party applications Typical deployment scenarios Password Manager in a perimeter network Management Policy overview Password policy overview Secure Password Extension overview reCAPTCHA overview User enrollment process overview Questions and Answers policy overview Password change and reset process overview Data replication Phone-based authentication service overview
Management policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring access to the Administration Site Configuring access to the Legacy Self-Service Site or Password Manager Self-Service Site Configuring access to the Helpdesk Site Configuring Questions and Answers policy Workflow overview Custom workflows Custom activities Legacy Self-Service or Password Manager Self-Service Site workflows Helpdesk workflows Notification activities User enforcement rules
General Settings
General Settings overview Search and logon options Importing and exporting configuration settings Outgoing mail servers Diagnostic logging Scheduled tasks Web Interface customization Instance reinitialization Realm Instances Domain Connections Extensibility features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable 2FA for administrators and helpdesk users Reporting Password Manager integration Accounts used in Password Manager Open communication ports for Password Manager Customization options overview Feature imparities between the legacy and the new Self-Service Sites Third-party contributions Glossary

Uninstalling Secure Password Extension

You uninstall Secure Password Extension from end-user computers by removing the appropriate installation packages assigned through Group Policy. Uninstalling Secure Password Extension makes the Self-Service Site no longer available from the Windows logon screen.

To remove an assigned MSI package

  1. Start the Group Policy Management snap-in. To do this, click Start, point to Programs, point to Administrative Tools, then click Group Policy Management.

  2. In the console tree, click the group policy object with which you deployed the package, and then click Edit.

  3. Expand the Software Settings container that contains the Software installation item with which you deployed the package.

  4. Click the Software installation container that contains the package.

  5. In the right pane of the Group Policy window, right-click the package name, point to All Tasks, and then click Remove.

  6. Click Immediately uninstall the software from users and computers, and then click OK.

  7. Quit the Group Policy Object Editor snap-in, and then quit the Group Policy Management snap-in.

Logging in Secure Password Extension

For diagnostic purposes you can turn on logging in Secure Password Extension. The log file can contain the following information: exceptions and errors, debug messages and functions’ returns, and so on. You can use this diagnostic data to identify issues with Secure Password Extension.

 Caution: This section describes how to modify the Registry. However, incorrectly modifying the Registry may severely damage the system. Therefore, you should follow the steps carefully. It is also recommended to back up the Registry before you modify it.

To enable logging in Secure Password Extension

  1. On a computer where Secure Password Extension is installed, click the Start button, click Run, and type regedit. Click OK.

  2. In the Registry tree (the left tab), create the following key: HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging.

  3. Add a new string value to the HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging registry key. To do it, click the HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging registry key. On the Edit menu, select New, then click String Value.

  4. Type LogLevel and then press ENTER to name the string value.

  5. Right-click the LogLevel value and select Modify.

  6. In the Edit String dialog, type All under Value data. Click OK.

  7. Add a new string value to the HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging registry key. To do it, click the HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging registry key. On the Edit menu, select New, then click String Value.

  8. Type LogFolder and then press ENTER to name the string value.

  9. Right-click the LogFolder value and select Modify.

  10. In the Edit String dialog, type the path to the log file under Value data. For example, C:\Logs. Click OK.

  11. Exit the Registry Editor.

  12. Restart the computer.

To disable logging in Secure Password Extension

  1. On a computer where Secure Password Extension is installed, click the Start button, click Run, and type regedit. Click OK.

  2. In the HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Password Manager\Logging registry key, select the LogLevel value.

  3. Right-click the LogLevel value and select Modify.

  4. In the Value data box, type Off, and click OK.

Password Policies

About Password Policies

You can use Password Manager to create password policies that define which passwords to reject or accept. Password policy settings are stored in Group Policy objects (GPOs). A GPO is applied by linking the GPOs to a target container defined in Active Directory, such as an Organizational Unit or a group.

Group Policy Objects from parent containers are inherited by default. When multiple Group Policy Objects are applied, the policy settings are aggregated.

For information on how to apply a password policy and change policy link order, see Managing Password Policy scope.

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen