Use the Appliance settings to view general information about the appliance, run diagnostic tools, and reset or update the Safeguard for Privileged Passwords hardware appliance.
Safeguard for Privileged Passwords can be set up to use a virtual appliance. For more information, see Using the virtual appliance and web management console.
web client: Navigate to Appliance Management > Appliance.
Safeguard for Privileged Passwordsprovides the following information to help you resolve many common problems you may encounter as you deploy and use your appliance.
Table 15: Appliance settings
Where you execute a trusted, secure diagnostics package to help solve a configuration issue, synchronization issue, clustering issue, or other internal issues.
Where you view general information about the appliance, as well as its performance utilization and the memory usage. You can also edit the Appliance Name and Host DNS Suffix.
Where you enable or disable debug logging to a syslog server.
Where you add or update a Safeguard for Privileged Passwords license.
Where you run diagnostic tests on your appliance.
|Where you view and configure the primary network interface, and if applicable, the sessions network interface.
|Operating System Licensing
Available on virtual machine only. Not available on hardware.
Where you configure the operating system for the virtual appliance.
Where you upload and install a patch update file.
Where you shut down or restart your appliance in the web client.
Where you configure SSH Algorithms to manage account passwords and SSH keys.
Where you create a support bundle containing system and configuration information to send to One Identity Support to analyze and diagnose issues with your appliance.
Where you enable Network Time Protocol (NTP) and set the primary and secondary NTP servers. A replica in the cluster will always reference the primary appliance as its NTP server.
You can also manually set the time on a primary but not a cluster.
CAUTION: Manually setting the time should be done with caution. Time changes can cause critical data loss.
Available on hardware only. Not available on a virtual machine.
Where you perform a factory reset to revert your appliance to its original state when it first came from the factory.
Lights Out Management (BMC)
Available on hardware only. Not available on a virtual machine.
Where you enable and disable lights out management, which allows you to remotely manage the power state and serial console to Safeguard for Privileged Passwords using the baseboard management controller (BMC).
In addition to the appliance options, Safeguard for Privileged Passwords provides these troubleshooting tools:
Appliance Administrators can execute a trusted, secure appliance diagnostics package to help solve issues with configuration, synchronization, and clustering, as well as other other internal challenges. The appliance diagnostics package is available from the web Support Kiosk, not the Serial Kiosk (Recovery Kiosk). The appliance diagnostics package can be used even when the appliance is in quarantine. To protect against external threats, Safeguard rejects illegitimate appliance diagnostics packages. The manifest file in the appliance diagnostics package lists criteria that may include the minimum Safeguard version, appliance ID, and expiration time-stamp UTC. New product code and database changes are not included in an appliance diagnostics package.
web client: Navigate to Appliance > Appliance Diagnostics.
- The state of the appliance displays (for example, Online). Click Refresh to update the state.
- If no appliance diagnostics package has been loaded, click Upload Diagnostics, select the appliance diagnostics package file that has an .sgd extension, then click Open.
- If the upload criteria is not met, the appliance diagnostics package is not uploaded and a message like the following displays: The minimum Safeguard version needed to run this diagnostic package is <version>.
- If the upload is successful, the Diagnostic Package Information displays with the Status of Staged. You can:
- Select Execute and wait until the Status changes to Completed or Error.
- Select Remove to delete the appliance diagnostics package and the associated log file.
- Once uploaded, you can perform these activities.
- If the Expiration Date has not passed, you can select Execute to execute the appliance diagnostics package again.
- Select Delete to delete the appliance diagnostics package, the associated log file, and stop any appliance diagnostics package that is running. Before uploading a different appliance diagnostics package, you must delete the current one because there can be only one appliance diagnostics package per appliance.
- Select Download Log to save the log file. Audit log entries are available through the Activity Center during and after execution and are part of the appliance history. A log is also available during and after execution until the diagnostic package has been deleted.
It is the responsibility of the Operations Administrator or the Appliance Administrator to monitor the status of the appliance.
To go to Appliance Information:
- web client: Navigate to Appliance > Appliance Information.
- web client: Select the number of seconds to refresh in Refresh every 30 seconds . A refresh is started immediately when the value is changed and the next refresh is scheduled based on the selected value.
The following information displays.
Table 17: Appliance properties
The name of the appliance.
The Appliance Administrator can modify the name. Click Edit to enable the Appliance Name text box. Enter a new appliance name and click Save.
Host DNS Suffix
The host DNS suffix name.
The Appliance Administrator can modify the name. Click Edit to enable the Host DNS Suffix text box. Enter a new name and click Save.
|The appliance network server IP address.
|The version of the Safeguard for Privileged Passwords Appliance.
|The amount of time (hours and minutes) the appliance has been running.
Last Boot Date
The last date the appliance was booted up.
General tab information
Disk is a graphical display of the amount of used and free disk space. When the disk usage is over 80%, the log reflects: DiskUsageWarningEvent.
Table 18: General tab
|The system manufacturer.
|The system model.
|The system bios description.
|Bios Serial Number
|The system's bios serial number.
|The media access control address (MAC address) assigned to the network interface for communications.
|The appliance ship date.
|The processor information.
|The virtual memory allocation.
The physical memory allocation.
TLS 1.2 only
Click this toggle to disable earlier versions of the Transport Layer Security (TLS) protocol and use only TLS v1.2.
NOTE: You must reboot your appliance after enabling TLS 1.2 only.
web client: enabled and disabled
Table 19: Performance tab
Total CPU and Core_n
|Displays the CPU information and the performance utilization of your appliance.
|Displays the memory usage of your appliance; what is currently in use and what is free.
Displays the disk space used and free.
Shutting down the appliance
You can power down an appliance from the web client or directly from the appliance itself.
Caution: Rebooting the appliance causes a service outage for any current users.
To shut down an appliance
You can shut down your appliance from the web client via Appliance > Power. For more information, see Power.
Appliance: Shut down from the appliance
You can use the Red X button on the front panel of the appliance to shut it down. Press and hold the Red X button for four seconds until it displays POWER OFF.
Caution: Once the Safeguard appliance is booted, DO NOT press and hold the Red X button for more than 13 seconds. This will hard power off the appliance and may result in damage.