Tchater maintenant avec le support
Tchattez avec un ingénieur du support

One Identity Safeguard for Privileged Passwords 8.0 LTS - Administration Guide

Introduction System requirements Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Home page Privileged access requests Appliance Management
Appliance Backup and Retention Certificates Cluster Global Services External Integration Real-Time Reports Safeguard Access Appliance Management Settings
Asset Management
Account Automation Accounts Assets Partitions Discovery Profiles Tags Registered Connectors Custom platforms Importing objects
Security Policy Management
Access Request Activity Account Groups Application to Application Cloud Assistant Asset Groups Entitlements Linked Accounts User Groups Security Policy Settings
User Management Reports Vaults Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP and SPS join guidance Appendix C: Regular Expressions

Adding identity and authentication providers

It is the responsibility of the Appliance Administrator to add directories to Safeguard for use as identity and authentication providers.

If Active Directory forests have more than one domain, select the domain to use for identity and authentication and to display on the logon screen. It is the responsibility of an Appliance Administrator to create an External Federation or Radius provider to use for authentication.

To add identity and authentication providers

  1. Go to Identity and Authentication:
    • web client: Navigate to Safeguard Access > Identity and Authentication.
  2. Click Add.
  3. Click the provider:

Managing the default identity and authentication provider

You can set, clear, and copy the default identity and authentication provider for login.

Only primary authentication providers can be marked as the default. You can only have one provider marked as the default. Secondary authentication providers used for multi-factor authentication cannot be marked as the default.

To set the default identity and authentication provider

  1. Go to Identity and Authentication:

    • web client: Navigate to Safeguard Access > Identity and Authentication.
  2. Select the identity and authentication provider you want to set as default.

  3. Click Default Provider Options.

  4. Click Set as Default.

To clear the default identity and authentication provider

  1. Go to Identity and Authentication:

    • web client: Navigate to Safeguard Access > Identity and Authentication.
  2. Click Default Provider Options.

  3. Click Clear Default.

To copy the default override link

  1. Go to Identity and Authentication:

    • web client: Navigate to Safeguard Access > Identity and Authentication.
  2. Click Default Provider Options.

  3. Click Copy Default Override Link.

Branding customization

The Appliance Administrator can customize the login page and application for their users. Any customization must be configured on the primary, however, any customization will also appear on replicas.

NOTE: To remove any configured customizations and restore the Safeguard for Privileged Passwords branding, at the top of the page, select Safeguard Branding and click Save.

To customize the branding used on the login page and application header

  1. Navigate to Appliance Management > Safeguard Access > Branding.

  2. Select Custom Branding.

  3. In the Login Page section, for the Title, enter a name for the application that will appear on the login page.

    NOTE: For the Title, the maximum allowed length is 50 characters.

  4. For the Title Size, enter the font size in pixels to use for the application name. By default, this is 36 pixels.

  5. To customize the display colors, open the color picker by clicking the box under each field name, then set a custom color. You can set colors for the following interface components:

    1. Title Color

    2. Background Color

    3. Page Text Color

  6. To set a logo for the login page, click Upload Logo. The uploaded logo will appear under Page Text Color.

    NOTE: When uploading a logo, consider the following restrictions and recommended values:

    • The maximum file size is 256 kB.

    • The recommended width is 160 to 400 pixels.

    • The recommended height is 160 to 200 pixels.

  7. In the Background section, customize the background color of the login page, or upload a background image and customize how it appears on the login page.

    • Color: To change the background color of the login page, open the color picker and set a custom color.

    • Image: To upload a background image, click Upload Background, then select the image to upload from your computer.

      NOTE: For a background image, the maximum allowed file size is 256 kB.

      • To change the background image, click on it (Change your background image), and from your computer, select the new image to upload.

      • To remove the background image, click (Remove background image).

    • Repeat: If you upload a small-size background image, you can specify how to repeat it (display it multiple times) on the login screen:

      • No Repeat (default): The background image is not repeated.

      • Repeat: The background image is repeated both vertically and horizontally. The last image will be clipped if it does not fit the screen.

      • Repeat X: The background image is repeated only horizontally.

      • Repeat Y: The background image is repeated only vertically.

      • Space: The background image is repeated as many times as possible without clipping. The first and last image is pinned to either side of the screen, and whitespaces are distributed evenly between the images.

      • Round: The background image is repeated and either squished or stretched to fill the space without gaps.

    • Position: To set the position of the background image on the login screen, select one of the following values.

      • Center Center (default): The background image is positioned horizontally and vertically centered.

      • Left Top: The background image is positioned in the top left corner.

      • Left Center: The background image is positioned to the left horizontally, and it is centered vertically.

      • Left Bottom: The background image is positioned in the bottom left corner.

      • Right Top: The background image is positioned in the top right corner.

      • Right Center: The background image is positioned to the right horizontally, and it is centered vertically.

      • Right Bottom: The background image is positioned in the bottom right corner.

      • Center Top: The background image is positioned at the top, and it is centered horizontally.

      • Center Bottom: The background image is positioned at the bottom, and it is centered horizontally.

    • Size: To set the size of the background image, select one of the following values.

      • Auto (default): The background image is displayed in its original size.

      • Cover: The background image is resized to cover the entire screen without maintaining its original aspect ratio (potentially stretching the image or cutting off its edges).

      • Contain: The background image is resized with maintaining its original aspect ratio to make sure it is fully visible.

    • Attachment: To set if the background image is fixed or scrolls along with the rest of the page, select one of the following values.

      • Fixed (default): The background image will not scroll with the page.

      • Scroll: The background image will scroll with the page.

  8. In the Application Header section, for the Title, enter the display name to use within the header of the application.

    NOTE: For the Title, the maximum allowed length is 50 characters.

  9. To select a logo for the application header, click Upload Logo. After the logo is uploaded, it will be appear under the Title field.

    NOTE:

    1. When uploading a logo, consider the following restrictions and recommended values:

      • The maximum file size is 256 kB.

      • The recommended width is 48 to 150 pixels.

      • The recommended height is 48 to 64 pixels.

  10. Click Save.

    To view your changes after saving, click either Review Login Page Customization or Review Application Customization.

Appliance Management Settings

In the web client, Appliance Management has a settings page used to manage the maximum number of platform task retries.

  • Navigate to Appliance Management > Settings to manage the setting listed below.
    Table 71: Appliance Management Setting
    Setting Description

    Maximum Platform Task Retries

    Set the maximum number of platform retries.

    Secure Files Settings

    Disk Usage Threshold: Set disk space dedicated for secure files. The accepted range is 0-1000000 MB. The default value is 10000 MB.

    Max File Size: Set the size limit for secure files. The accepted range is 0-1000000 MB. The default value is 1000 MB.

  • Documents connexes

    The document was helpful.

    Sélectionner une évaluation

    I easily found the information I needed.

    Sélectionner une évaluation