지금 지원 담당자와 채팅
지원 담당자와 채팅

Identity Manager 8.2.1 - Identity Management Base Module Administration Guide

Basics for mapping company structures in One Identity Manager Dynamic roles Departments, cost centers, and locations
One Identity Manager users for managing departments, cost centers, and locations Basic information for departments, cost centers, and locations Creating and editing departments Creating and editing cost centers Creating and editing locations Setting up IT operating data for departments, cost centers, and locations Assigning employees, devices, and workdesks to departments, cost centers, and locations Assigning company resources to departments, cost centers, and locations Creating dynamic roles for departments, cost centers, and locations Dynamic roles with incorrectly excluded employees Assign organizations Specifying inheritance exclusion for departments, cost centers, and locations Assigning extended properties to departments, cost centers, and locations Reports about departments, cost centers, and locations
Employee administration
One Identity Manager users for employee administration Basic data for employee main data Employee's central user account Employee's default email address Employee's central password Mapping multiple employee identities Password policies for employees Creating and editing employees Disabling and deleting employees Deleting all employee related data Limited access to One Identity Manager Changing the certification status of employees Assigning company resources to employees Displaying the origin of employees' roles and entitlements Analyzing role memberships and employee assignments Displaying the employees overview Displaying and deleting employees' Webauthn security keys Determining the language for employees Determining employees working hours Manually assigning user accounts to employees Entering calls for employees Assigning extended properties to employees Employee reports
Managing devices and workdesks Managing resources Setting up extended properties Configuration parameters for managing departments, cost centers, and locations Configuration parameters for managing employees Configuration parameters for managing devices and workdesks

Creating and editing workdesk types

Provide workdesk types for further classification of workdesks. Enter additional device prerequisites for a workdesk.

To create or edit a workdesk type

  1. In the Manager, select the Devices & Workdesks > Basic configuration data > Workdesk type category.

  2. In the result list, select a workdesk type and run the Change main data task.

    - OR -

    Click in the result list.

  3. Edit the workdesk type's main data.

  4. Save the changes.

Enter the following data for a workdesk type.

Table 48: Main data for a workdesk type
Property Description

Workdesk type

Name of the workdesk type.

Display name

Name for displaying in the One Identity Manager tools.

Short description

Text field for additional explanation.

Description

Text field for additional explanation.

Leasing fee

Leasing fee.

Floppy disk drive required

Specifies whether this workdesk type requires a floppy disk drive.

CD-ROM drive required

Specifies whether this workdesk type requires a CD-ROM drive.

Creating and editing devices

Table 49: Configuration parameter for setting up a device
Configuration parameter Effect when set

Hardware | Display | CustomHardwareType

When a new device is set up with the corresponding device model, the data is displayed in a customized form.

Hardware | Display | CustomHardwareType | MobilePhone Add a device type that represents a mobile phone.

Hardware | Display | CustomHardwareType | Monitor

Add a device type that represents a monitor

Hardware | Display | CustomHardwareType | PC

Add a device type that represents a PC.

Hardware | Display | CustomHardwareType | Printer

Add a device type that represents a printer.

Hardware | Display | CustomHardwareType | Server

Add a device type that represents a server.

Hardware | Display | CustomHardwareType | Tablet

Add a device type that represents a tablet.

Hardware | Display | MachineWithRPL

Data for remote booting of workstations and servers can be edited.

Hardware | Workdesk | WorkdeskAuto

When workstation or server is setup an associated workdesk is created automatically.

You can manage different devices with One Identity Manager, for example, workstations, servers, monitors, printers, or other devices.

To create or edit a device

  1. In the Manager, select the Devices & Workdesks > Devices category.

  2. Select one of the following nodes.

    • Personal computer

    • Server

    • Monitors

    • Printer

    • Mobile telephones

    • Tablets

    • Miscellaneous

    Depending on the selected filter, the device model is specified and the corresponding form for editing the main data determined when a new device is added.

  3. In the result list, select a device and run the Change main data task.

    - OR -

    Click in the result list.

  4. Edit the device's main data.

  5. Save the changes.

Detailed information about this topic

General main data for devices

Enter the following general main data of a device. The main data available depends on the selected device model.

Table 50: General main data of a device
Property Description

Asset number

Number of the asset in the bookkeeping.

Device ID

Unique device ID.

PC

Specifies whether the device is a computer.

Server

Specifies whether the device is a server.

Local periphery

Specifies whether this is a local periphery such as a monitor, printer, or other periphery device.

Manufacturer

Name of manufacturer.

Device model

Name of the device model. The main data available depends on the selected device model.

Device status

Device's status.

Workdesk

The device's workdesk. This workdesk is used to assign various devices to a workstation or a server.

If the Hardware | Workdesk | WorkdeskAuto configuration parameter is set, a workdesk bearing the same name is automatically created when a workstation or a server is set up.

Parent device

A parent device which is linked to this device.

VM Client (option)

Specifies whether this device is a virtual machine.

VM Host

Device on which a virtual machine is installed. The selection is shared if the VM client is set.

VM Host (option)

Specifies whether this device is a virtual machine host.

Phone Telephone number.
Used by Employee who uses this device.

Primary department

Department to which the device is primary assigned. Company resources can be inherited by a device through these primary assignments if One Identity Manager is appropriately configured.

Primary location

Location to which the device is primary assigned. Company resources can be inherited by a device through these primary assignments if One Identity Manager is appropriately configured.

Primary cost center

Cost center to which the device is primary assigned. Company resources can be inherited by a device through these primary assignments if One Identity Manager is appropriately configured.

Primary business roles

Business role to which the device is assigned. Company resources can be inherited by a device through these primary assignments if One Identity Manager is appropriately configured.

NOTE: This property is available if the Business Roles Module is installed.

Investment Investments or investment plans for the device.

Location description

Text field for additional explanation.

Description

Text field for additional explanation.

Remarks

Text field for additional explanation.

No inheritance

Specifies whether the device inherits company resources through roles. If this option is set, the employee cannot inherit. Direct assignments remain intact.

Operating system Operating system identifier.
Operating system version Version number of the operating system.
Service pack operating system Service pack identifier.
Hotfix operating system Hotfix identifier.
Carrier Carrier contract for the device.
Serial number Manufacturer's serial number.
MAC address The device's MAC address.
IMEI The device's IMEI number.
ICCID The device's ICCID number.
BIOS version Version of the BIOS.

Number of processors

Number of processors in the device.

RAM [MB] RAM in megabytes.
1. capacity [MB] Capacity of the first disk in megabytes
2. capacity [MB] Capacity of the second disk in megabytes
Max. vertical resolution Maximum vertical image resolution.
Max. horizontal resolution Maximum horizontal image resolution.
Import data source Target system or data source, from which the data set was imported.

Spare field no. 01 ... Spare field no. 10

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Related topics

Device networking data

Enter the following information for the network configuration. The main data available depends on the selected device model.

Table 51: Network data
Property Description

IP address (IPv4)

IP address in IPv4 format.

IP address (IPv6)

IP address in IPv6 format.

Use DHCP

Specifies whether the IP address is taken from a DHCP server. If this option is not set, enter a fixed IP address and enter the subnet mask and standard gateway.

Subnet mask

Subnet mask.

Default gateway

Default gateway.

Use WINS

Specifies whether WINS name resolution is used. If this option is set, enter the IP addresses of the preferred and the alternative WINS server.

WINS primary

IP address of the preferred WINS server.

WINS secondary

IP address of the alternative WINS server.

Range ID

To communicate worth one another, all computers require a TCP/IP network with the same area ID. The area ID is used for identification when the given DNS sever cannot be found. Normally, this input should be left empty.

Use DNS

Specifies whether WINS name resolution is used. If this option is set, enter the IP address of the preferred and the alternative DNS server.

DNS server

IP address of the preferred DNS server.

2. DNS server

IP address of the alternative DNS server.

3. DNS server

IP address of the alternative DNS server.

DNS name

Suffix of DNS domain the device belongs to.

DNS host name DNS name of the computer.

Remote boot

Specifies whether this device uses remote booting. The property is available if the Hardware | Display | MachineWithRPL configuration parameter is set.

Remote boot type

Data for the remote boot type. The property is available if the Hardware | Display | MachineWithRPL configuration parameter is set.

관련 문서

The document was helpful.

평가 결과 선택

I easily found the information I needed.

평가 결과 선택