Return
-
Title
What information is created and stored in Active Directory by Password Manager? -
Description
This article detailed the objects and data are created/stored in AD by Password Manager. -
Resolution
The Password Manager creates and stores a number of different objects and data in AD: product configuration, replication data, user's Q&A profile, Password Policies and Service Connection Points. The following objects are created and stored in AD:1) "_QPMStorageContainer" object under: Domain\Users\;2) "PMReplication" container under: Domain\Users\;3) "strg0000000000” and "strg0000000001" objects for each instance under: Domain\Users\PMReplication\<RealmID>\<Instance ID>. For more information please refer to:https://support.oneidentity.com/password-manager/kb/1799364) "qpms2faadmin" object under: Domain\Users\;5) Password Policy object(s) under: Domain\System\Policies\<Policy ID>;6) Service Connection Point(s) under: Domain\System\One Identity\Password Manager\<PM Instance>;7) User's Q&A profiles are stored in each individual scoped user object under the configured attribute (default: comment)1