Return
-
Title
What information is created and stored in Active Directory by Password Manager? -
Description
This article detailed the objects and data are created/stored in AD by Password Manager. -
Resolution
Password Manager creates and stores a number of different objects and data in AD: product configuration, replication data, user Q&A profiles, Password Policies and Service Connection Points. The following objects are created and stored in AD:- _QPMStorageContainer object under: Domain\Users\
- PMReplication container under: Domain\Users\
- strg0000000000 and strg0000000001 objects for each instance under: Domain\Users\PMReplication\\. For more information please refer to:
- qpms2faadmin object under: Domain\Users\
- Password Policy object(s) under: Domain\System\Policies\
- Service Connection Point(s) under: Domain\System\One Identity\Password Manager\
- User's Q&A profiles are stored in each individual scoped user object under the configured AD attribute (default: comment)