After installing the Defender Management Portal, you need to specify a service account for the portal. This account must be a member of the Local Administrators group on the computer where the Management Portal is installed and a member of the Domain Users group in the corresponding domain. By default, the Defender Management Portal uses the service account to do the following:
All other operations are performed under the account used to access the Defender Management Portal.
To specify a service account
For instructions, see Opening the portal.
If the specified account does not have the “Log on locally” right, that right is granted to the account automatically after you click the Save button.
TIP: You can create a new dedicated user account and appoint that account as the Defender Management Portal service account. For more information, see Delegating Defender roles, tasks, and functions.
When configuring the Defender Management Portal, you can do the following:
This service retrieves log files from the Defender Security Servers to the Defender Management Portal computer. The Defender Management Portal uses the retrieved log files to display authentication statistics and Defender Security Server warning messages and logs.
The Defender Management Portal uses the log files in the specified location to generate Defender reports.
To configure the Defender Management Portal
Use the Service Account tab to specify the Defender Management Portal service account. By default, the Defender Management Portal uses the service account to do the following:
The portal performs all other actions under the account with which the user signs in to the portal.
On the Service Account tab, you can use the following elements:
If the account you specify does not have the “Log on locally” right, that right is granted to the account automatically after you click the Save button on this tab.
You can create a new dedicated user account and appoint it as the Defender Management Portal service account. For more information, see Delegating Defender roles, tasks, and functions.
Use the Roles tab to assign the Defender Management Portal roles to the Active Directory groups you want. A portal role defines the actions available to the role holder in the Defender Management Portal.
You can assign the following portal roles:
For more information, see Portal roles.
To assign a portal role, click the magnifying glass button next to the role, and then select the Active Directory group from the list.
In the domain where the Defender Management Portal is installed, the Domain Admins group always has the Administrator portal role assigned, regardless of what group you specify in the Administrator option on the Roles tab.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center