Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 7.0.4.1 LTS - Administration Guide

Introduction System requirements and versions Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Home Privileged access requests Appliance Management
Appliance Backup and Retention Certificates Cluster Enable or Disable Services External Integration Real-Time Reports Safeguard Access Appliance Management Settings
Asset Management
Account Automation Accounts Assets Partitions Discovery Profiles Tags Registered Connectors Custom platforms
Security Policy Management
Access Request Activity Account Groups Application to Application Cloud Assistant Asset Groups Entitlements Linked Accounts User Groups Security Policy Settings
User Management Reports Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP and SPS join guidance Appendix C: Regular Expressions About us

Discovered SSH Keys

You can view the current SSH Key Discovery results for a selected partition. The number of discovered keys for an account will reflect the number of SSH keys discovered in the account's authorized keys file.

SSH keys currently in use by an account will have a check mark in the SSH Key Managed column in the Discovered SSH Keys properties grid (see below).

Go to Discovered SSH Keys:

  • web client: Navigate to Asset Management > Discovery > Discovered Items > SSH Keys tile.

Select the partition for which you want to see the SSH Key results.

Use these toolbar buttons to manage the discovered accounts.

Table 138: Discovery: Discovered SSH Keys toolbar
Option Description

Revoke

Use this button to revoke access for unmanaged SSH keys.

Export

Use this button to export the listed data as either a JSON or CSV file. For more information, see Exporting data.

Refresh

Retrieve and display an updated list of discovered SSH keys. If SSH Keys are deleted from the account's authorized keys file, they will be removed from the discovered list when the discovery job runs.

Search

Enter the character string to be used to search for a match. For more information, see Search box.

The following information displays.

Table 139: Discovery: Discovered SSH Keys properties grid
Property Description

Fingerprint

The fingerprint of the SSH key used for authentication.

Account Status

The status of the account where the SSH key was discovered.

SSH Key Managed

This column will have a check mark indicating the SSH key currently in use on the account.

Comment

Free form comment included in the SSH key.

Key Type

The SSH authentication key type, such as RSA and DSA. For more information, see SSH Key Profiles.

Key Length

The supported RSA or DSA key length displays. For more information, see SSH Key Profiles.

Asset Name

The name of the asset where the SSH key was discovered.

Account

The name of the account where the SSH key was discovered.

Date/Time Discovered

The date and time when the SSH key was discovered.

Profiles

Within the web client, the Profiles page displays information on the currently configured profiles in use by Safeguard for Privileged Passwords.

To access Profiles:

  • web client: Navigate to Asset Management > Profiles.

The Profiles page is separated into sections:

Password Profiles (profiles)

Within the web client, the Password Profiles tab on the Profiles page displays information on the currently configured password profiles in use by Safeguard for Privileged Passwords.

To access the Password Profiles tab on the Profiles page:

  • web client: Navigate to Asset Management > Profiles which by default displays the Password Profiles tab. If needed, you can use the partition drop-down to select the parent partition of the profile (by default all profiles are displayed). Select a profile, then click to display additional information and options.

Selecting one of the profiles displays the following information:

Toolbar

Use these toolbar buttons to manage profiles:

  • New Profile: Add profiles to Safeguard for Privileged Passwords.
  • Delete: Remove the selected profile.
  • View Details: Select a profile then click this button to open additional information and options for the profile.
  • Set as Default: Select a profile then click this button to set it as the default profile.
  • Export: Use this button to export the listed data as either a JSON or CSV file. For more information, see Exporting data.
  • Refresh: Update the list of profiles.

When the Password Profiles tab on the Profiles page is selected, a View Password Profile Components link is available. For more information, see View Password Profile Components (profiles).

Properties tab (profiles)

The Properties tab lists information about the selected profile.

To access Properties:

  • web client: Navigate to Asset Management > Profiles > Password Profiles > (View Details) > Properties.

The following fields display based on the type of profile.

Table 140: Properties tab: General properties
Property Description
Name The profile's name.

Description

Description of the profile.

Partition The name of the partition where the selected profile resides.

Delete

Click this button to delete the selected profile.

The following information is also available on the General page:

Table 141: Properties tab: Check Password properties
Property Description

Check Password Settings

Name of the check password rule.

Description

Description of the check password rule.

Schedule

The schedule of the check password rule.

Table 142: Properties tab: Change Password properties

Change Password Settings

Name of the change password rule.

Description

Description of the change password rule.

Schedule

The schedule of the change password rule.

Table 143: Properties tab: Account Password Rule properties
Property Description
Account Password Rule Name of the account password rule.

Rule Summary

Summary of the account password rule.

Properties tab: Password Sync Groups properties
Table 144: Properties tab: Password Sync Groups properties
Property Description

Enabled

If Enabled is selected, the sync runs with the profile change schedule.

Status

The Status displays if all account passwords are in sync with the password sync group. The Status is if any password for any account within the sync group does not match the common password.

Name

The name of the password sync group.

Accounts The number of accounts to synchronize with a common password.

Next Sync

The date the sync group password will be synchronized across all accounts.

Description

Information about the rule.

Delete: Click this button to delete the selected profile.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating