Chat now with support
Chat with Support

Defender 5.8 - Administrator Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Securing PAM-enabled services Defender Management Portal (Web interface) Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Integration with Cloud Access Manager Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Set Defender Password

The Set Defender Password command allows you to set a Defender password for the selected user. Clicking this command opens the following page:
New password  Type the new Defender password for the user.
Confirm password  Type the new Defender password to confirm it.
Expire password  Select this check box if you want the new Defender password to expire in a preconfigured period of time.
Set Password  Click this button to apply the new password.

Program Defender Token

The Program Defender Token command allows you to program a security token for the selected user. Clicking this command opens the following page:
Token serial  Displays the serial number of the token you have assigned to the user.
Activation code  Displays the code the user must enter to activate the assigned token. You can click the Copy button to copy the displayed activation code to the Windows Clipboard.
Send activation e-mail to  Allows you to send the token activation code to the user by e-mail. Type the recipient e-mail address in the text box, and then click Send to send the e-mail message containing the activation code to the user. This option is only available if you have enabled it via a Group Policy administrative template supplied with Defender. For more information, see Administrative templates.

Enabling automatic deletion of tokens

In the left pane, expand Configuration | Policies | Administration.
Right-click the Defender node, point to New, and then click Deprovisioning Policy.
In the Policy to Configure step, in the list, expand the Defender node to select Unassign Tokens.

Delegating Defender roles or tasks

Role-oriented  Allow you to delegate specific Defender roles, such as Defender administrator or helpdesk operator. In the Active Roles console, you can find these Access Templates in the Configuration/Access Templates/Defender container.
Task-oriented  Allow you to delegate granular Defender tasks or provide full control over specific Defender components. For example, you can use these Access Templates to delegate such tasks as assign a token, program a token, and test a token. In the Active Roles console, you can find these Access Templates in the Configuration/Access Templates/Defender/Advanced container.
In the left pane, expand the Active Directory node, right-click the domain you want, and then on the shortcut menu click Delegate Control.
In the dialog box that opens, click the Add button and step though the wizard.
In the Permissions Propagation step, select the Propagate permissions to Active Directory check box.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating