Chat now with support
Chat with Support

Password Manager 5.13.2 - Administration Guide

About Password Manager Getting started Password Manager architecture
Password Manager components and third-party applications Typical deployment scenarios Password Manager in a perimeter network Management Policy overview Password policy overview Secure Password Extension overview reCAPTCHA overview User enrollment process overview Questions and Answers policy overview Password change and reset process overview Data replication Phone-based authentication service overview
Management policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring access to the Administration Site Configuring access to the Legacy Self-Service Site or Password Manager Self-Service Site Configuring access to the Helpdesk Site Configuring Questions and Answers policy Workflow overview Custom workflows Custom activities Legacy Self-Service or Password Manager Self-Service Site workflows Helpdesk workflows Notification activities User enforcement rules
General Settings
General Settings overview Search and logon options Importing and exporting configuration settings Outgoing mail servers Diagnostic logging Scheduled tasks Web Interface customization Instance reinitialization Realm Instances Domain Connections Extensibility features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable 2FA for administrators and helpdesk users Reporting Password Manager integration Accounts used in Password Manager Open communication ports for Password Manager Customization options overview Feature imparities between the legacy and the new Self-Service Sites Third-party contributions Glossary

Deleting a Password Policy

You can use Password Manager to create password policies that define which passwords to reject or accept. If you wish to remove a password policy, perform the following steps.

To delete a password policy from a domain

  1. On the home page of the Administration Site, click the Password Policies tab.

  2. Click the One Identity Password Policies link under the domain that you want to manage.

  3. Click Remove under the policy that you want to delete.

NOTE: When you delete a password policy from a managed domain, the deleted policy is no longer valid for this domain.

To restore a deleted password policy, create a new policy and manually configure its settings as required.

For more information on password policies, see About Password Policies.

Enable 2FA for administrators and helpdesk users

This section describes the steps to enable 2FA to protect Administration Site and Helpdesk Site users.

To enable 2FA for administrators and helpdesk users

  1. On the home page of the Administration Site, click the Management/2FA enforcement tab.

  2. Select the Use Secure Token Server for authentication checkbox for admin authentication and/or helpdesk authentication, then choose one of the Secure Token Server providers, which you need to use for 2FA authentication. The login interface presentation can be selected from the Choose the behaviour of the authentication dropdown.

  3. Click Save to save the settings.

NOTE: At least one Secure Token Server provider needs to be configured. If there is an external provider, which loads their content while sending an X-Frame-Options : Deny header, the iframe option will not work. In this case, the redirect or the popup option is required.

Reporting

Reporting and User Action History overview

Password Manager provides a simple and convenient way to view, print, and save reports and charts allowing you to analyze information on how the application is used. The reporting functionality within the solution is based on Microsoft SQL Server Reporting Services as a common reporting environment.

The Reports section of the Administrator site includes a number of pre-defined reports that help you perform the following tasks:

  • Track user registration activity

  • Analyze information about what actions are performed by users in Password Manager

  • Check users’ registration status

  • View a list of users whose Questions and Answers profiles must be updated to comply with the current administrator-defined settings

  • Track helpdesk operators’ activity

The user action history provides records of all actions performed by users registered with Password Manager. You can search for records using a full-text search functionality. The user action history is provided by Enterprise Auditing Service embedded in Password Manager.

To use Password Manager reports, you need to connect to an SQL Server and a Report Server.

To use the user action history functionality, you need to connect to an SQL Server only.

Alternative options

You can use predefined Power BI templates to generate interactive reports as an alternative to Reporting. For more information on Power BI, see Working with Power BI templates.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating