Chat now with support
Chat with Support

Password Manager 5.13.2 - Administration Guide

About Password Manager Getting started Password Manager architecture
Password Manager components and third-party applications Typical deployment scenarios Password Manager in a perimeter network Management Policy overview Password policy overview Secure Password Extension overview reCAPTCHA overview User enrollment process overview Questions and Answers policy overview Password change and reset process overview Data replication Phone-based authentication service overview
Management policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring access to the Administration Site Configuring access to the Legacy Self-Service Site or Password Manager Self-Service Site Configuring access to the Helpdesk Site Configuring Questions and Answers policy Workflow overview Custom workflows Custom activities Legacy Self-Service or Password Manager Self-Service Site workflows Helpdesk workflows Notification activities User enforcement rules
General Settings
General Settings overview Search and logon options Importing and exporting configuration settings Outgoing mail servers Diagnostic logging Scheduled tasks Web Interface customization Instance reinitialization Realm Instances Domain Connections Extensibility features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable 2FA for administrators and helpdesk users Reporting Password Manager integration Accounts used in Password Manager Open communication ports for Password Manager Customization options overview Feature imparities between the legacy and the new Self-Service Sites Third-party contributions Glossary

Restart workflow if error occurs

This activity is performed when an error occurs during workflow execution. In this case, the activity reruns any self-service workflow from the very beginning. If a critical error occurs (user’s account or Q&A profile gets locked, or Active Directory is not available during workflow execution), then the Restart workflow if error occurs activity is skipped and the workflow stops.

It is recommended to place this activity before notifications activity in a workflow.

You do not need to configure this activity.

Issue BitLocker Recovery Key

If client computers use BitLocker Drive Encryption, users may need BitLocker recovery keys if they are locked out of their computers.

NOTE: To use retrieve BitLocker recovery keys via Password Manager, BitLocker must be configured to store recovery information in AD DS. For more information, see http://technet.microsoft.com/en-us/library/dd875529(v=ws.10).aspx.

To retrieve a recovery key, users should use the Issue BitLocker Recovery Key activity. You can create a new workflow and add this activity to the workflow. On the Self-Service Site, when performing the corresponding task, users will be prompted to enter the recovery key ID displayed by their BitLocker-enabled computers. After entering the recovery key ID, users will receive the recovery key that they need to enter on their computers to unlock them.

If you have Microsoft BitLocker Administration and Monitoring (MBAM) installed in your environment, you need to specify the URL to the MBAM Administration Service and the account to access the MBAM Administration Service in the activity settings to enable Password Manager to use MBAM.

If you use MBAM with Password Manager, when retrieving BitLocker recovery keys, Password Manager will be able to verify that the user is associated with the computer for which the recovery key is retrieved. If the user is associated with this computer, the recovery key will be issued, otherwise, the user will not be allowed to get the recovery key.

Provide product feedback

You can provide product feedback from the Password Manager Web Interface. On the title bar of the Password Manager Web Interface, click Feedback at the upper right corner to provide product feedback. You are redirected to a new browser that allows you to provide feedback.

Notification activities

All notifications can be of two types: user notifications and administrator notifications. Each notification type is divided into success and failure notifications. So, for each workflow four notification activities are available:

  • Email user if workflow succeeds

  • Email user if workflow fails

  • Email administrator if workflow succeeds

  • Email administrator if workflow fails

IMPORTANT: Before configuring notifications, ensure that you have configured the outgoing mail servers. To specify the SMTP server settings, use the procedure outlined in Outgoing mail servers.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating