Chat now with support
Chat with Support

Password Manager 5.11.3 - Administration Guide (AD LDS Edition)

About Password Manager Getting Started Upgrading Password Manager Password Manager Architecture
Password Manager Components and Third-Party Solutions Typical Deployment Scenarios Password Manager in Perimeter Network Management Policy Overview Password Policy Overview reCAPTCHA Overview User Enrollment Process Overview Questions and Answers Policy Overview Data Replication Phone-Based Authentication Service Overview Configuring Management Policy
Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow overview Custom workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings
General Settings Overview Search and Logon Options Import/Export Configuration Settings Outgoing Mail Servers Diagnostic Logging Scheduled Tasks Web Interface Customization Instance Reinitialization Realm Instances AD LDS Instance Connections Extensibility Features RADIUS Two-Factor Authentication Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Working with Redistributable Secret Management account Email Templates
Password Policies Enable S2FA for Administrators and Enable S2FA for HelpDesk Users Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Appendix D: Feature imparities between the legacy and the new Self-Service Sites Glossary

Invitation to Create/Update Profile Task

This task is used to enumerate users who are not registered with Password Manager or must update their Q&A profiles and send email notifications to such users. This task is applied to users who have not been invited to create or update their Q&A profiles.

The scope of this task corresponds to the scope of the Invite Users to Create/Update Q&A Profiles user enforcement rule.

To each user from the user scope, the task is applied only once. After a user has been invited to create or update his Q&A profile, the Reminder to Create/Update Profile task will be applied to this user if configured.

You should configure this scheduled task to enable the Invite Users to Create/Update Q&A Profiles user enforcement rule. If you disable this scheduled task, the user enforcement rule will not be implemented. For more information on this user enforcement rule, see Invite Users to Create/Update Profiles.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Invitation to Create/Update Profile task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Reminder to Create/Update Profile Task

This task is used to send notifications to users who have been invited to create or update their Q&A profiles. If you configure the notification schedule, the task will send email notification messages to corresponding users.

The scope of this task corresponds to the scope of the Remind Users to Create/Update Q&A Profiles user enforcement rule.

You should configure this scheduled task to enable the Remind Users to Create/Update Q&A Profiles user enforcement rule. If you disable the scheduled task, the user enforcement rule will not be implemented. For more information on this user enforcement rule, see Remind Users to Create/Update Profiles.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Reminder to Create/Update Profile task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Reminder to Change Password Task

This task is used to send notifications about password expiration. Notifications will be sent to users whose passwords expire in the number of days specified in the Remind Users to Change Password user enforcement rule.

The scope of this task corresponds to the scope of the Remind Users to Change Password user enforcement rule.

You should configure this scheduled task to enable the Remind Users to Change Password user enforcement rule. If you disable the scheduled task, the user enforcement rule will not be implemented. For more information on this user enforcement rule, see Remind Users to Change Password.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Reminder to Change Password task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Maximum Password Age Policy Task

This task is used to force users to change passwords at next logon if password’s maximum age is reached.

The scope of this task is the scopes of all configured One Identity password policies. For more information on One Identity password policies, see Creating a Password Policy.

This task applies the maximum password age rule set in the configured One Identity password policies. If the maximum password age is reached, users will be required to change password at next logon.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Maximum Password Age Policy task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating