Chat now with support
Chat with Support

Defender 5.8 - Administrator Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Securing PAM-enabled services Defender Management Portal (Web interface) Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Integration with Cloud Access Manager Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Tokens list buttons

After you click this button, use the Response text box to type the one-time password displayed on the token. If a PIN is enabled for the token, you can also test the PIN by entering it in the PIN (Optional) text box. Click Verify to run the test on the token.
If you use the Test button to test a token response, that token response cannot then be used for user authentication.
After you click the Helpdesk button, a dialog box opens. This dialog box provides the following options:
Reset  Click this button to resynchronize the token with the Defender Security Server.
Expires  Allows you to select a validity period for the temporary password.
Allow response to be used multiple times  Select this check box to allow the temporary password to be used more than once for authentication. If you leave this check box cleared, the temporary password can only be used once.
Assign  Assigns the generated temporary password to the user.
Clear  Removes the temporary password from the user.
Response  Shows the generated temporary password.
Token Serial Number  Type the serial number of the token you want to assign to the user. If you do not know the serial number, leave this text box blank.
Show unassigned tokens only  Select this check box to search for the tokens that are not assigned to users. If you leave this check box cleared, the search results will include both assigned and not assigned tokens.
Token Type  Select the token type you want to search for.
Click OK to start your search. When the search completes, in the Select Defender Tokens dialog box, double-click the token you want to assign, and then click OK to assign the token to the user. The assigned token appears on the Defender tab in the Tokens list.
Allows you to set a new PIN for the token selected in the list. After you click the Set PIN button, a dialog box opens. This dialog box provides the following options:
Enable PINs  Enables PIN for the selected token.
New PIN  Type the new PIN you want to assign to the selected token.
Confirm PIN  Confirm the new PIN you want to assign.
Expire  Select this check box if you want the PIN to expire.
After you click the Password button, a new dialog box opens. In the dialog box, use the Password and Confirm text boxes to type the new Defender password you want to assign.

Authentication Details area elements

Resetting passphrase for a user

5
In the Tokens area, select the token, and then click the Recover button.
6
In the dialog box that opens, use the Challenge text box to type the challenge code provided to you by the user, and then click the Get Response button.
7
Copy the passphrase unlock code displayed in the Response box and provide the code to the user.

Managing Defender Security Policy for a user

4
In the dialog box that opens, click the Policy tab. This tab allows you to view the current or assign a new Defender Security Policy to the user. The tab has the following elements:
Assigned Policy  Shows the Defender Security Policy that is currently assigned to the user. When there is no Defender Security Policy assigned to the user, this option displays <undefined>.
Select  Allows you to select an existing Defender Security Policy to assign to the user.
Clear  Unassigns the current Defender Security Policy from the user.
Effective  Click this button to view the Defender Security Policy settings that will apply to the user for a particular Defender Security Server/Access Node combination. The window that opens looks similar to the following:
The DSS list shows the Defender Security Server that is currently selected for the user. If necessary, select any other Defender Security Server.
The DAN list shows the Access Node of which the user is a member. If necessary, select any other Access Node.
The User option displays the current user.
The Effective Policy area displays the Defender Security Policy details and authentication settings that will be effective when the user authenticates via Defender.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating