Chat now with support
Chat mit Support

Privilege Manager for Unix 7.1.1 - Administration Guide

Introducing Privilege Manager for Unix Planning Deployment Installation and Configuration Upgrade Privilege Manager for Unix System Administration Managing Security Policy The Privilege Manager for Unix Security Policy Advanced Privilege Manager for Unix Configuration Administering Log and Keystroke Files InTrust Plug-in for Privilege Manager for Unix Troubleshooting Privilege Manager for Unix Policy File Components Privilege Manager for Unix Variables
Variable names Variable scope Global input variables Global output variables Global event log variables PM settings variables
Privilege Manager for Unix Flow Control Statements Privilege Manager for Unix Built-in Functions and Procedures
Environment functions Hash table functions Input and output functions LDAP functions LDAP API example List functions Miscellaneous functions Password functions Remote access functions String functions User information functions Authentication Services functions
Privilege Manager for Unix programs Installation Packages

Quick start and evaluation

To simplify the installation and configuration of the Privilege Manager for Unix components, One Identity recommends that you install One IdentityManagement Console for Unix. Management Console for Unix provides a web-based mangement console, a powerful and easy-to-use tool that dramatically simplifies deployment, enables management of local Unix users and groups, provides granular reports on key data and attributes, and streamlines the overall management of your Unix, Linux, and macOS hosts.

You can download the Management Console for Unix install package from the same Download Software page where you downloaded the Privilege Manager for Unix software packages.

To test Privilege Manager for Unix, you must set up at least one primary policy server and one remote host system configured with the PM Agent.

Installing the Management Console

Management Console for Unix makes it easy for you to centrally manage a policy file on a primary policy server.

You can install the mangement console on Windows, Unix, or macOS computers. Each hosting platform prompts for similar information.

The following install files are located on the Privilege Manager for Unix distribution media under console | server:

  • ManagementConsoleForUnix_unix_2_5_2.sh - for Unix and Linux
  • ManagementConsoleForUnix_windows_2_5_2.exe - for Windows
  • ManagementConsoleForUnix_windows-x64_2_5_2.exe - for Windows

The One IdentityManagement Console for Unix Administration Guide contains detailed instructions for installing the mangement console on all of these platforms. Use the following procedure to install the mangement console on a Unix computer from the command line using the installation script:

To install the mangement console on a Unix platform

  1. Log in and open a root shell.
  2. Mount the installation media and navigate to console | server.
  3. Run the following command from the Unix command line as root:
    # sh ManagementConsoleForUnix_unix_2_5_2.sh

    You can optionally use one of these options:

    • -q option (quiet mode) to automatically accept all the default settings.
    • -c option (console mode) to prompt you for information interactively.

    Using no option starts the installer in a graphical user interface if you have an X server, making the installation experience similar to running it from the Windows autorun.

    In console mode, it asks you for the following information:

    1. Enter 1 to accept the user agreement.
    2. Enter the SSL Port number or press Enter to accept the default of 9443.
    3. Enter the Non-SSL Port number or press Enter to accept the default of 9080.

    The install wizard extracts and downloads the files, configures and starts the service, and so forth. On Unix, the install location is /opt/quest/mcu and you cannot specify an alternate path.

Uninstalling the Management Console

The default for the uninstaller is to remove everything. Before you uninstall Management Console for Unix, if you plan to re-install Management Console for Unix and want to preserve your data, backup your application database. The application database contains information about the hosts, settings, users, groups, passwords, and so forth.

By default, the database directory is at: /var/opt/quest/mcu.

To uninstall the mangement console from Unix

  1. Run the following command as root:

    # /opt/quest/mcu/uninstall

    You can optionally use one of the following options with the uninstall command:

    • -q option (quiet mode) to automatically accept all the default settings, including removing the application database and logs.
    • -c option (console mode) to prompt you for information interactively.

    Using no option starts the installer in a graphical user interface.

  2. If in console mode:
    1. Confirm that you want to remove Management Console for Unix.
    2. Confirm whether you want to remove the application database and application logs.

      This option is useful if you plan to re-install Management Console for Unix and want to preserve your data. The default for the uninstaller is to remove everything.

    The wizard uninstalls Management Console for Unix

Configure a Primary Policy Server

The first thing you must do is install and configure the host you want to use as your primary policy server.

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen