Changing Access Account
To access a managed AD LDS instance, you can use the Password Manager Service account, an Active Directory account or an AD LDS account. For more information on how to configure the access account, see Configuring Permissions for Access Account. Password Manager Service account is the account that was configured during Password Manager installation. Password Manager Service account may be used as the access account only when the Service account has all required permissions.
To modify account used to access an AD LDS instance
- On the Administration site, select the Management Policy you want to configure and click the User Scope link.
- On the User Scope page, select the connection for which you want to change access account and click Edit.
- On the User Scope Settings for #Application Directory Partition# page, click Edit.
- In the Access account section of the Edit AD LDS Instance Connection dialog, select Password Manager Service account to have Password Manager access the managed instance using the Password Manager Service account. Otherwise, select The following Active Directory account or The following AD LDS account and then enter the required user name and password.
- Click Save and select how you want to apply the updated settings. You can either apply the new settings for this user scope only, or everywhere where this connection is used.
Removing Connection to AD LDS Instance
To remove a connection to AD LDS instance
- On the Administration site, select the Management Policy you want to configure and click the User Scope link.
- On the User Scope page, select the connection you want to delete and click Remove. Note, that the connection will be removed from this user scope only. If you want to permanently remove the connection, remove it everywhere where it is used, and then on the General Settings| AD LDS Instance Connections tab, click Remove under the required connection.
Adding Secret Questions
Secret questions are the main part of the Questions and Answers policy that allows authenticating users on the Self-Service site before users can perform any self-service tasks.
For more information on the Questions and Answers policy, see Configuring Questions and Answers Policy.
To create secret questions in the default language
- Open the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http(s)://<ComputerName>/PMAdminADLDS/.
- On the Administration site home page, click the Add secret questions link under the Management Policy you want to configure.
- On the Configure Questions and Answers Policy page, click Add questions in the default language.
- In the Edit Questions in the Default Language dialog box, specify mandatory, optional and helpdesk questions. To change the default language for secret questions click the Change language link.
- Change questions’ order by clicking the appropriate links.
- Click Save to save the questions and close the dialog box.
|
IMPORTANT: Modifying a question list does not affect existing personal Questions or Answers profiles unless the users have to update their profiles as a result of the enforcement rules that require users to update Q&A profiles when the question list is modified. For more information on the enforcement rules, see User Enforcement Rules. |
Editing and Deleting secret questions
Translation of questions can be made only to the questions that have been added in the default language.
To delete questions of a default language
- Open the Administration site by typing the Administration site URL in the address bar of your web browser. By default, the URL is
http(s)://<ComputerName>/PMAdminADLDS/.
- On the Administration site home page, click the Q&A Policy link under the Management Policy.
- On the Configure Questions and Answers Policy page, click Edit questions under Question List. The Edit Questions in the Default Language page appears.
- Click X against the question that has to be deleted, and then click Save.
To delete questions of a specific language
- Open the Administration site by typing the Administration site URL in the address bar of your web browser. By default, the URL is
http(s)://<ComputerName>/PMAdminADLDS/.
- On the Administration site home page, click the Q&A Policy link under the Management Policy.
- On the Configure Questions and Answers Policy page, click the language for which the questions have to be deleted. The Translate Questions page appears.
- Click Delete questions, and then click OK.
To Edit questions of a default language
- On the home page of the Administration site, click Q&A Policy link under the Management Policy.
- On the Configure Questions and Answers Policy page, under Questions List, click the Edit questions link.
- In the Edit questions in the Default Language page, edit the required question.
- Click Save.
To Edit questions of a specific language
- On the home page of the Administration site, click Q&A Policy link under the Management Policy.
- On the Configure Questions and Answers Policy page, navigate to the Translations: section and click the language for which the questions have to be edited.
- In the translated text box against each of the questions, edit the required question.
- Click Save.
|
NOTE:
- Q&A Policy supports multiple languages. It requires the Password Manager Administrator to configure the required languages for the users to see the same in the Self service site.
- Change language link appears in the self-service site only when the Password Manager administrator has translated the questions in the required languages.
|