Chat now with support
Chat con el soporte

Defender 5.9.3 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Integration with Cloud Access Manager Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Configuring Defender Soft Token

Configuring Defender Soft Token

This section provides instructions on how to configure and assign to users the following security tokens:

  • Defender Soft Token for Android
  • Defender Soft Token for BlackBerry
  • Defender Soft Token for iOS
  • Defender Soft Token for Java
  • Defender Soft Token for Windows
  • Defender Soft Token for Windows Phone

To configure and assign Defender Soft Token to a user

  1. On the computer where the Defender Administration Console is installed, open the Active Directory Users and Computers tool (dsa.msc).
  2. In the left pane (console tree), expand the appropriate nodes to select the container where the user object is located.
  3. In the right pane, double-click the user object, and then click the Defender tab in the dialog box that opens.
  4. Below the Tokens list, click the Program button.
  5. In the Select Token Type step, click to select the Software token option. Click Next.
  6. In the Select Software Token step, click to select the Defender Soft Token you want to configure and assign.
  7. Complete the wizard to configure and assign the Defender Soft Token.

For more information about the wizard steps and options, see Defender Token Programming Wizard reference.

Distributing Defender Soft Token for BlackBerry via BlackBerry Enterprise Service

Distributing Defender Soft Token for BlackBerry via BlackBerry Enterprise Service

You can use the BlackBerry Device Service, a component of BlackBerry Enterprise Service, to install Defender Soft Token in the work space on BlackBerry 10 devices.

To make the Defender Soft Token app available for users to install in the work space on their devices, you need to perform the following tasks:

  • Get the .bar file from the folder Tokens\BlackBerry\For devices running OS 10 in the Defender distribution package.
  • Add the Defender Soft Token app to the BlackBerry Administration Service app repository by pointing to the .bar file.
  • Add the Defender Soft Token app to the software configuration that is assigned to the users or groups you want to use Defender Soft Token.

After you complete these tasks, the BlackBerry Device Service makes Defender Soft Token available to the user for installation in the work space on the device.

To add the Defender Soft Token app to the BlackBerry Administration Service app repository

  1. In the BlackBerry Administration Service, on the BlackBerry solution management menu, expand Software | Applications.
  2. Click Add or update applications.
  3. In the Application location section, click Browse and select the .bar file that is included with the Defender distribution package.

    You can find the .bar file in the Defender distribution package, in the folder Tokens\BlackBerry\For devices running OS 10.

  4. Click Next, and then click Publish application.

To the add Defender Soft Token app to a software configuration

In the BlackBerry Administration Service, on the BlackBerry solution management menu, expand Software.

  1. Click Manage software configurations.
  2. Click the software configuration to which you want to add Defender Soft Token.
  3. Click Edit software configuration.
  4. On the Applications tab, click Add applications to software configuration.
  5. Search for, and select, the Defender Soft Token app in the app repository.
  6. Click Add to software configuration, and then click Save all.

Configuring GrIDsure token

Configuring GrIDsure token

Before configuring and assigning the GrIDsure token, you need to enable the use of GrIDsure for authentication in the Defender Security Policy properties. Then, you need to assign that policy to the users you want to authenticate with the GrIDsure token. For more information, see Managing Defender Security Policies.

To configure the GrIDsure token for a user

  1. On the computer where the Defender Administration Console is installed, open the Active Directory Users and Computers tool (dsa.msc).
  2. In the left pane (console tree), expand the appropriate nodes to select the container where the user object is located.
  3. In the right pane, double-click the user object, and then click the Defender tab in the dialog box that opens.
  4. Below the Tokens list, click the Program button.
  5. In the Select Token Type step, click to select the Software token option. Click Next.
  6. In the Select Software Token step, click to select the GrIDsure token option.
  7. Complete the wizard to configure and assign the GrIDsure token.

    For more information about the wizard steps and options, see Defender Token Programming Wizard reference.

Enabling the use of Authy

Enabling the use of Authy

You can allow users to authenticate via Defender by using one-time passwords generated with the Authy app. For more information about Authy, please visit http://www.authy.com.

To enable Authy for a user

  1. On the computer where the Defender Administration Console is installed, open the Active Directory Users and Computers tool (dsa.msc).
  2. In the left pane (console tree), expand the appropriate nodes to select the container where the user object is located.
  3. In the right pane, double-click the user object, and then click the Defender tab in the dialog box that opens.
  4. Below the Tokens list, click the Program button.
  5. In the Select Token Type step, click to select the Software token option. Click Next.
  6. In the Select Software Token step, click to select the Authy token option.
  7. Complete the wizard to enable Authy for the user.

    For more information about the wizard steps and options, see Defender Token Programming Wizard reference.

Documentos relacionados