A record that consists of all the information that defines a user to Active Directory or AD LDS. This includes the user name and password required for the user to log on, the groups in which the user account has membership, and the rights and permissions the user has for using the computer and network and accessing their resources.
A website for Password Manager administrators. On this website, they can configure Management Policies by adding managed application directory partitions, creating question lists, specify Q&A policy, etc.
Application directory partition alias
The log that lists all actions performed by Password Manager.
Configuration storage account
An account used by Password Manager for storing its configuration data i.e. settings configured in Password Manager, for example Management Polices, general settings, etc. The configuration storage account is automatically created in the Users container of a managed application directory partition when the managed partition is added. The configuration storage account is named QPMStorageContainer.
Custom activity is an activity with PowerShell handlers. Create custom activities from scratch or convert built-in activities to custom.
Do not show personally identifiable information (PII) for the logged in user
When selected, the Self-Service Site truncates personally identifiable information (PII) on the user interface. Select this option if the security policies of your organization require hiding PII.
This algorithm is used to encrypt users’ answers to secret questions. Users’ answers will be encrypted if the “Store answers using reversible encryption” option is selected in the Q&A profile settings. Otherwise, the answers will be hashed.
Provide regular expression based on the selected Active Directory attribute to find a matching pattern in the target system.
An administrator’s tool for defining and controlling how programs, network resources, and the operating system operate for users and computers in an organization.
This algorithm is used to hash users’ answers to secret questions if reversible encryption is not used to store the answers.
Locked Questions and Answers Profile
A Questions and Answers Profile that temporarily cannot be used.
A Questions and Answers Profile can become locked after a number of unsuccessful attempts to answer the questions.
The delivery location for all incoming mail messages addressed to a designated owner. Information in a user's mailbox is stored in the private information store on a Microsoft® Exchange server computer. A mailbox can contain received messages, message attachments, folders, folder hierarchy, and more. Server applications for Microsoft® Exchange server are often designed with a mailbox for communication.
A question that users should select from a list of pre-defined questions and answer to authenticate themselves using Password Manager.
Realm is a set of Password Manager Service instances sharing realm settings and configuration. You can use the realm to provide enhanced availability and load balancing.
Password Manager Service Account
An account used to install Password Manager. The Password Manager Service account must be a member of the Administrators group on the Web Server where Password Manager is installed.
Password Policy Manager
A component of Password Manager that enforces password policies configured in Password Manager, when users change their passwords using tools other than Password Manager.
Questions and Answers Profile (Q&A Profile)
A set of questions selected by a user from the Question list and user's answers to them. A Questions and Answers Profile is used to authenticate a person using Password Manager.
A set of questions used in creating users' Questions and Answers profiles. The list is defined by the administrator and contains a series of questions in a certain language that users from a specific application directory partition must answer in order to create or update their personal Questions and Answers profiles. A question list defines the number of questions of each type and the wording of mandatory and optional questions.
Provide a value to replace the matched pattern in the target system.
A website for Password Manager end-users. On this site, end-users can create their Questions and Answers Profiles and manage their passwords.
A character that is neither alphabetic nor numeric.
Test attribute value
Provide a sample Active Directory attribute value, to evaluate the matching pattern.
A question that users must provide along with the answer in order to authenticate themselves using Password Manager.
Workflow availability (helpdesk)
Workflow availability (self-service)