In this step, you provide the certificate issued for the server computer to the Password Manager Service by using the Administration site.
To provide the certificate to the Password Manager Service
-
Open the Administration site by entering the following address: http(s)://<ComputerName>/PMAdmin, where <ComputerName> is the name of the computer on which Password Manager is installed.
-
Click General Settings > Instance Reinitialization. Under the Service connection settings, select the custom certificate issued for the server computer from the Certificate name drop-down list.
-
Click Save.
In this step, you provide the certificate issued for the client computers to the Self-Service and Helpdesk sites installed separately from the Password Manager Service.
To provide the certificate to the Legacy Self-Service Site and the Password Manager Self-Service site
-
Open the Self-Service site by entering the following address: http(s)://<ComputerName>/PMUser, where <ComputerName> is the name of the computer on which Self-Service site is installed.
For the Password Manager Self-Service site, enter the following address: http(s)://<ComputerName>/PMNewUser,
The Self-Service Site Initialization page will be displayed automatically if the Self-Service site is opened for the first time.
-
From the Certificate name drop-down list, select the custom certificate issued for the client computer.
-
Click Save.
To provide the certificate to the Helpdesk Site
-
Open the Helpdesk site by entering the following address: http(s)://<ComputerName>/PMHelpdesk, where <ComputerName> is the name of the computer on which Helpdesk site is installed. The Helpdesk Site Initialization page will be displayed automatically if the Helpdesk site is opened for the first time.
-
From the Certificate name drop-down list, select the custom certificate issued for the client computer.
-
Click Save.
After initializing the Administration site, you need to configure the default Management Policy to enable users to use the Self-Service site.
The required settings you need to configure for the Management Policy are a user scope and secret questions.
To configure the user scope, add one or more domain connections. Domain connections created for the user scope can also be used in the Helpdesk scope and password policies. The same domain connection can be used in different management policies. Wherever you create a domain connection, you can use it elsewhere, that is, a domain connection configured for password policies can be used in the Helpdesk scope.
To manage all domain connections from a single place, click General Settings > Domain Connections on the Administration site. For more information, see Domain Connections.