Chat now with support
Chat with Support

Safeguard for Privileged Passwords On Demand Hosted - Administration Guide

Introduction System requirements and versions Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Getting started with the desktop client Using the desktop client Activity Center Search box Privileged access requests Toolbox Accounts Account Groups Assets
General/Properties tab (asset) Accounts tab (asset) Account Dependencies tab (asset) Owners tab (asset) Access Request Policies tab (asset) Asset Groups tab (asset) Discovered SSH Keys (asset) Discovered Services tab (asset) History tab (asset) Managing assets
Asset Groups Discovery Entitlements Linked Accounts Partitions Profiles Settings
Access Request settings Appliance settings Asset Management settings Tags Backup and Retention settings Certificates settings Cluster settings Enable or Disable Services settings External Integration settings Password Management settings Real-Time Reports Safeguard Access settings SSH Key Management settings Security Policy Settings
Users User Groups Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP 2.7 or later migration guidance Appendix C: SPP and SPS join guidance Appendix D: Regular Expressions About us

Appliance Diagnostics

Appliance Administrators can execute a trusted, secure appliance diagnostics package to help solve issues with configuration, synchronization, and clustering, as well as other other internal challenges. The appliance diagnostics package is available from the web Support Kiosk, not the Serial Kiosk (Recovery Kiosk). The appliance diagnostics package can be used even when the appliance is in quarantine. To protect against external threats, Safeguard rejects illegitimate appliance diagnostics packages. The manifest file in the appliance diagnostics package lists criteria that may include the minimum Safeguard version, appliance ID, and expiration time-stamp UTC. New product code and database changes are not included in an appliance diagnostics package.

web client: Navigate to Appliance | Appliance Diagnostics.

desktop client: Navigate to Administrative Tools | Settings | Appliance | Appliance Diagnostics.

  1. The state of the appliance displays (for example, Online). Click Refresh to update the state.
  2. If no appliance diagnostics package has been loaded, click Upload Diagnostics, select the appliance diagnostics package file that has an .sgd extension, then click Open.
    • If the upload criteria is not met, the appliance diagnostics package is not uploaded and a message like the following displays: The minimum Safeguard version needed to run this diagnostic package is <version>.
    • If the upload is successful, the Diagnostic Package Information displays with the Status of Staged. You can:
      • Select Execute and wait until the Status changes to Completed or Error.
      • Select Remove to delete the appliance diagnostics package and the associated log file.
  3. Once uploaded, you can perform these activities.
    • If the Expiration Date has not passed, you can select Execute to execute the appliance diagnostics package again.
    • Select Delete to delete the appliance diagnostics package, the associated log file, and stop any appliance diagnostics package that is running. Before uploading a different appliance diagnostics package, you must delete the current one because there can be only one appliance diagnostics package per appliance.
    • Select Download Log to save the log file. Audit log entries are available through the Activity Center during and after execution and are part of the appliance history. A log is also available during and after execution until the diagnostic package has been deleted.

Appliance Information

It is the responsibility of the Operations Administrator or the Appliance Administrator to monitor the status of the appliance.

To go to Appliance Information:

  • web client: Navigate to Appliance | Appliance Information.
  • desktop client: Navigate to Administrative Tools | Settings | Appliance | Appliance Information.

To refresh:

  • web client: Select the number of seconds to refresh in Refresh every 30 seconds . A refresh is started immediately when the value is changed and the next refresh is scheduled based on the selected value.
  • desktop client: Click Refresh to update the information.

The following information displays.

Table 163: Appliance properties
Property Description
Appliance Name

The name of the appliance.
The Appliance Administrator can modify the name. Click Edit to enable the Appliance Name text box. Enter a new appliance name and click Save.

Host

web client

The appliance network server IP address.

Client Version

desktop client

The version of the Safeguard for Privileged Passwords desktop client application.
Appliance Version The version of the Safeguard for Privileged Passwords Appliance.

Operating System Version

desktop client

The version of the operating system that is running on the appliance.

Operating System Level

desktop client

The level of the operating system.

Uptime The amount of time (hours and minutes) the appliance has been running.

Last Boot Date

web client

The last date the appliance was booted up.

General tab information

Disk is a graphical display of the amount of used and free disk space. When the disk usage is over 80%, the log reflects: DiskUsageWarningEvent.

Table 164: General tab
Property Description
Manufacturer The system manufacturer.
Model The system model.
Bios Description The system bios description.
Bios Serial Number The system's bios serial number.
Serial Number The media access control address (MAC address) assigned to the network interface for communications.
Ship Date The appliance ship date.
Processor The processor information.
Virtual Memory The virtual memory allocation.
Physical Memory

The physical memory allocation.

TLS 1.2 only

Click this toggle to disable earlier versions of the Transport Layer Security (TLS) protocol and use only TLS v1.2.

NOTE: You must reboot your appliance after enabling TLS 1.2 only.

web client: enabled and disabled

desktop client: enabled and disabled

Power

From the desktop client: Use the General tab, Power section to perform the following:

From the web client, see Power to shut down or restart an appliance via Appliance | Power.

Performance tab
Table 165: Performance tab
Property Description

Total CPU and Core_n

web client

Processor

desktop client

Displays the CPU information and the performance utilization of your appliance.
Memory Displays the memory usage of your appliance; what is currently in use and what is free.

Disk Space

web client

Displays the disk space used and free.

Shutting down the appliance

You can power down an appliance from the Windows desktop client, web client, or directly from the appliance itself.

Caution: Rebooting the appliance causes a service outage for any current users.

desktop client: To shut down an appliance

  1. Navigate to Administrative Tools | Settings | Appliance | Appliance Information.
  2. On the General tab, under Power, type a Reason for shutting down the aAppliance then click Shut Down.
  3. To confirm your action, enter the words Shut Down in the box and click OK.
  4. The One Identity Safeguard for Privileged Passwords Appliance LCD screen displays LCD service terminating.

web client: To shut down an appliance

You can shut down your appliance from the web client via Appliance | Power. For more information, see Power.


Appliance: Shut down from the appliance

You can use the Red X button on the front panel of the appliance to shut it down. Press and hold the Red X button for four seconds until it displays POWER OFF.

Caution: Once the Safeguard appliance is booted, DO NOT press and hold the Red X button for more than 13 seconds. This will hard power off the appliance and may result in damage.

Restarting the appliance

You can restart an appliance from the desktop client, web client, or directly from the appliance itself.

desktop client: To restart the appliance

  1. Navigate to Administrative Tools | Settings | Appliance | Appliance Information.

  2. On the General tab, under Power, type an explanation for restarting the appliance in the Reason box and click Restart.
  3. To confirm your action, enter the word Restart in the box and click OK.
  4. The One Identity Safeguard for Privileged Passwords Appliance LCD screens display the run level status of the appliance as it is starting up. For more information, see LCD status messages.

(web client): To restart an appliance

You can restart your appliance from the web client via Appliance | Power. For more information, see Power.

Appliance: Restart from the appliance

After the appliance powers off, you will need physical access to start it. Press the Green check mark button on the front panel of the appliance for NO MORE than one second to power on the appliance.

Caution: Once the Safeguard appliance is booted, DO NOT press and hold the Green check mark button. Holding this button for four or more seconds will cold reset the power of the appliance and may result in damage.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating