Permissions required for synchronizing with One Identity Active Roles
It is recommended to set up a separate user account to use for connecting to Active Directory through for . Use Access Templates for the configuration. By using access templates, you delegate administration-relevant permissions to an Active Directory user account but without issuing the permissions directly in Active Directory. For more information about Access Templates, see your One Identity Active Roles documentation.
The following Access Templates are suggested for delegating permissions:
Starling CertAccess Agent works without controlling workflows. To avoid any existing workflows, you must add the user account to the administrators group.
-
Up to and including version 6.9, the administrative group is created during installation of . The name of the group is saved in the registry database under:
-
As from version 7.0, you edit the Admins in the Configuration Center. If a user account is entered in the Configuration Center as an Admin, this use account must be used. For more information about editing the group or the user account for administrative access, see your One Identity Active Roles documentation.
Installing, updating, and uninstalling Starling CertAccess Agent components
To be able to work with Starling CertAccess, install the Starling CertAccess Agent components on an administrative workstation and on a server. Install the following components:
All components are automatically updated when your Starling CertAccess instance is updated. To uninstall the components, use the Windows standard functionality for uninstalling programs on the workstation and the server.
Detailed information about this topic
Installing the Starling CertAccess Agent on a workstation
You install the Starling CertAccess Agent on an administrative workstation. An installation wizard helps you with the Starling CertAccess Agent installation.
To install the Starling CertAccess Agent
-
Unpack the Starling CertAccess Agent installation package in a temporary directory on the administrative workstation.
-
Start the autorun.exe file from the temporary directory.
This starts the installation wizard.
-
On the start page, select the language for the installation wizard.
-
Confirm the conditions of the license.
-
On the Installation settings page, enter the following information.
-
Installation source: Select the temporary directory containing the installation files.
-
Installation directory: Select the directory in which you want to install the files for the Starling CertAccess Agent.
NOTE: To make additional changes to the configuration settings, click on the arrow button next to the input field. Here, you can specify whether you are installing on a 64-bit or a 32-bit operating system.
For a standard installation, no further configuration settings are necessary.
-
On the last page of the installation wizard, click Start to run the Starling CertAccess Launchpad.
-
Click Finish to close the installation wizard.
The Starling CertAccess Agent is installed for all user accounts on the workstation. In the default installation, Starling CertAccess Agent is installed under:
Related topics
Updating the Starling CertAccess Agent
If your Starling CertAccess instance has been update, the Starling CertAccess Agent updates automatically the next time the Launchpad starts. This loads the newest version of the Starling CertAccess Agent and installs it. Starling CertAccess Agent components are also updated automatically on the Job server.
Related topics
