Chatta subito con l'assistenza
Chat con il supporto

Password Manager 5.13.2 - Administration Guide

About Password Manager Getting started Password Manager architecture
Password Manager components and third-party applications Typical deployment scenarios Password Manager in a perimeter network Management Policy overview Password policy overview Secure Password Extension overview reCAPTCHA overview User enrollment process overview Questions and Answers policy overview Password change and reset process overview Data replication Phone-based authentication service overview
Management policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring access to the Administration Site Configuring access to the Legacy Self-Service Site or Password Manager Self-Service Site Configuring access to the Helpdesk Site Configuring Questions and Answers policy Workflow overview Custom workflows Custom activities Legacy Self-Service or Password Manager Self-Service Site workflows Helpdesk workflows Notification activities User enforcement rules
General Settings
General Settings overview Search and logon options Importing and exporting configuration settings Outgoing mail servers Diagnostic logging Scheduled tasks Web Interface customization Instance reinitialization Realm Instances Domain Connections Extensibility features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable 2FA for administrators and helpdesk users Reporting Password Manager integration Accounts used in Password Manager Open communication ports for Password Manager Customization options overview Feature imparities between the legacy and the new Self-Service Sites Third-party contributions Glossary

In-place upgrade from 5.8.2 or later versions to 5.13.2

This section describes how to perform an in-place upgrade from version 5.8.2 or later to version 5.13.2.

To in-place upgrade from version 5.8.2 or later to version 5.13.2

  1. From the autorun window of the installation media, click Install against Password Manager x64 option. Read the content and click Next.

  2. Read the content in the Risk of data loss! window, select I acknowledge the above instructions and then click Next.

  3. Select I accept the terms in License Agreement, then click Next.

  4. In the Configuration Backup window, provide the File Location and set a new password, and then click Next.

    NOTE: Do not forget to store the password securely as it is required to import the configuration post upgrade. The backup of the configuration data is now saved in the provided file location.

  5. In the Password Manager Service Account Information window, enter the account name and the password details, and then click Next.

  6. In the Specify Web Site and Application Pool Identity window, choose the website name, enter the account name and the password, and then click Next.

  7. After completing the above process, click Install.

Upon successful installation, the Password Manager installs the following sites:

  • Administration Site

  • Helpdesk Site

  • Password Manager Self-Service Site

  • Legacy Self Service Site

NOTE: The above mentioned upgrade steps are not applicable for 5.7.1 or other lower versions.

Manual upgrade from 5.9.x or later versions

Uninstall Password Manager 5.9.x or later versions, then install Password Manager 5.13.2 on the computer where Password Manager 5.9.x or later versions was installed. For more information, see To uninstall Password Manager 5.7.1 or later versions..

To manually upgrade from 5.9.x or later versions to version 5.13.2

  1. From the autorun window of the installation media, click Install against Password Manager x64 option. Read the content and click Next.

  2. Select I accept the terms in License Agreement check box, and then click Next.

  3. In the User Information page, enter the user details such as the username and the organization to which the user belongs to, and then click Next.

    • To verify licenses information, click Licenses…, then check the statuses of the license.

    NOTE: If the license has expired, click Browse license… and select the appropriate license to continue the Password Manager service.

  4. In the Custom Setup page, click the respective option that needs to be installed, and then click Next.

  5. In the Password Manager Service Account Information page, the account name appears by default. Enter the password, and then click Next.

    NOTE: To change the account name, click Browse… and select the appropriate Password Manager service account name.

  6. In the Specify Web Site and Application Pool Identity page, choose the website name, and in the Application pool identity section, the account name appears by default. Enter the password, and then click Next .

    NOTE: To change the account name, click Browse and select the appropriate Application Pool Identity account name.

  7. After completing the above process, click Install.

Upon successful installation, the Password Manager installs the following sites:

  • Administration Site

  • Helpdesk Site

  • Password Manager Self-Service Site

NOTE:

  • Make sure that you have taken a back up of the current configuration settings. For more information, see To export configuration settings from Password Manager 5.7.1 or later versions..

  • After you uninstall Password Manager 5.7.1 or later versions, all configuration settings will be automatically detected by the new version. For more information on how to install Password Manager, see Installing Password Manager.

  • If you have multiple Password Manager instances installed, when upgrading them, you may experience the following issue: the Realm Instances page of the Administration Site displays an incorrect list of installed instances. After you upgrade all instances, the page will display the correct list.

IMPORTANT:

  • Switch to the Password Manager self Service site(Self-Service UI version 5.9.5 onwards) option is displayed only in case of in place upgrade.

  • In case of Manual upgrade to 5.13.2, the Self-Service Site gets replaced as Password Manager Self-Service Site. Hence, post Manual upgrade, you can see only one Self service site (Password Manager Self-Service Site) and legacy Self-Service Site is not more accessible, by default.

  • In case of Manual upgrade, if the Legacy Self-Service Site is required, Admin has to install it exclusively, in addition to the existing Password Manager Self Service site. In this case, point to note is that the Enabling Self-Service UI 5.13.2 (Switch to Self-Service Site 5.9.5 onwards) option will not be applicable.

Running the Migration Wizard

NOTE: In the Shared.storage file in ProgramData folder of primary instance, verify whether AESEncryption value is true in all hosts. After installing Password Manager 5.13.2 and importing the configuration file into secondary instances, replication from all Password Manager instances takes time to update the hosts’ information and to set AESEncryption value to true. If the AESEncryption value is not true, when you run the Migration Wizard 5.13.2, it displays the error message with the list of hosts which are not updated with Password Manager 5.13.2 configuration.

NOTE: Set AESEncryption value to true in all the hosts and run the Migration Wizard 5.13.2 under Password Manager Service account.

To run the Migration Wizard 5.13.2, see To update users’ Q&A profiles with new instance settings and clear old Q&A data for user objects in Active Directory.

NOTE: In older version Password Manager, if you are using an existing database, after installing the Password Manager 5.13.2, disconnect SQL connection and reconnect with the same or a new database.

NOTE: After installing Password Manager 5.13.2, if service account has to be modified, see Modifying the service account.

Modifying the service account

Service accounts are used to install Password Manager. This section describes how to modify your service account.

NOTE: If you want to modify the service account after installing Password Manager 5.13.2, you cannot modify it by changing the account on Password Manager service because the new account will not be able to read the current configuration.

To modify the service account after installing Password Manager 5.13.2

  1. On the menu bar, click General Settings, then click the Import/Export tab and export the configuration file of the primary instance of Password Manager.

    NOTE: Due to security enhancements, a complex password is generated while exporting the configuration. You must remember the password or store it in a secure place, to use while importing the configuration.

  2. Stop the Password Manager Service.

  3. At the command prompt, type services.msc and select Password Manager Service in the console and change the log on details.

  4. Start the Password Manager Service.

    NOTE: Before you continue, it is recommended to back up the One Identity folder at C:\ProgramData.

  5. Delete the One Identity folder at C:\ProgramData.

  6. Restart the computer.

  7. Open the Administration Site.

  8. On the Instance Initialization page, select Unique instance and click Save.

  9. On the menu bar, click General Settings, then click the Import/Export tab and import the configuration file, which was exported before changing the service account.

Related Documents

The document was helpful.

Seleziona valutazione

I easily found the information I needed.

Seleziona valutazione