Chat now with support
Chat with Support

Active Roles 8.2.1 - Feature Guide

Introduction About Active Roles
Main Active Roles features Technical overview of Active Roles
About presentation components Overview of service components About network data sources About security and administration elements About Active Directory security management Customization using ADSI Provider and script policies About dynamic groups About workflows Operation in multi-forest environments
Examples of use
Administrative rules and roles
About Managed Units About Access Templates About Access Rules About rule-based autoprovisioning and deprovisioning
Configuring and administering Active Roles Overview of Active Roles Synchronization Service Support for AWS Managed Microsoft AD FIPS compliance LSA protection support STIG compliance

About Starling Join

Active Roles supports integration with One Identity Starling via the Starling Join feature. Joining Active Roles to Starling enables access to the various Starling services, including Identity Analytics and Risk Intelligence, and Connect. For more information, see One Identity Starling Join and configuration through Active Roles in the Active Roles Administration Guide.

Configuration management tasks

Once you completed the initial configuration of Active Roles in the Configuration Center as described in Initial configuration tasks, you can check the state of the Administration Service and Web Interface components anytime, and can also perform various management tasks on them. The following sections describe these tasks in detail.

Administration Service management tasks

After installing Active Roles, first you must create the Administration Service instance as described in Configuration of the Administration Service. Then, you can use the Configuration Center to:

  • View or change the core Administration Service settings, such as the Active Roles Admin account, Active Roles service account, and the Active Roles databases. For more information, see Core Administration Service settings.

  • Import configuration data from another (current version or earlier version) Active Roles database to the current database of the Administration Service. For more information, see Configuration data import.

  • Import Management History data from another (current version or earlier version) Active Roles database to the current database of the Administration Service. For more information, see Management History data import.

  • Check the state of the Administration Service. For more information, see Administration Service states.

  • Start, stop or restart the Administration Service by clicking Start, Stop or Restart at the top of the Administration Service page in the Configuration Center main window.

Core Administration Service settings

On the Administration Service page of the Configuration Center, you can check:

  • The logon name of the service account.

  • The name of the group or user account that has the Active Roles Admin rights.

  • The SQL Server instance that hosts the Active Roles Configuration database.

  • The name of the Active Roles Configuration database.

  • The Configuration database connection authentication mode (Windows authentication or SQL Server login).

  • The SQL Server instance that hosts the Active RolesManagement History database.

  • The name of the Active RolesManagement History database.

  • The Management History database connection authentication mode (Windows authentication or SQL Server login).

From the Administration Service page in the Configuration Center main window, you can change:

  • The service account.

    Click Change in the Service account area. In the wizard that appears, supply the logon name and password of the domain user account in which you want the Administration Service to run.

  • The Active Roles Admin account.

    Click Change in the Active Roles Admin area. In the wizard that appears, specify the group or user account you want to have the Active Roles Admin rights.

  • The Active Roles database.

    Click Change in the Active Roles database area. In the wizard that appears, specify the database type and the database server instance and the database you want the Administration Service to use, and choose the database connection authentication mode (Windows authentication or SQL Server login). You have the option to specify a separate database for storing management history data.

    NOTE: Azure Databases can be connected only using SQL Server authentication.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating