Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

5.2.5 Deleting Password Format Control Policies

In the Directory panel, right-click the PFCP to delete and select Delete.

5.3 Managing User Security Profiles

As mentioned in Section 1., "Overview", the user object refers to the user himself, a group of users or an organizational unit that contains users. Thus, user security profiles can be applied to the following LDAP directory objects listed in the highest to lowest order of priority:

5.3.1 Creating/Modifying User Security Profiles

1.
In the tree structure of the Directory panel, right-click the Organizational Unit that must contain your user security profile and select New\User Security Profile.
1.
In the tree structure of the Directory panel, select the user security profile to modify.

5.3.2 Configuring User Security Profiles

2.
In the Authentication tab, select the authentication methods available for the users that will be associated with the user security profile, and define the authentication parameters of the user security profile, as described in Section 5.3.2.1, "Authentication Tab".
3.
In the Security tab, define the single sign-on parameters of the user security profile, as described in Section 5.3.2.2, "Security Tab".
4.
In the Unlocking tab, activate and use the Fast User Switching feature, define the unlocking parameters of the user security profile, as described in Section 5.3.2.3, "Unlocking Tab (Fast User Switching Feature)".
5.
In the Self Service Password Request tab, activate and use the SSPR feature, define the password and PIN reset parameters of the user security profile, as described in Section 5.3.2.4, " Self Service Password Request Tab".
6.
In the Biometrics tab, define the biometrics policy, as described in Section 5.3.2.5, "Biometrics Tab".
7.
In the Session delegation tab, define the authorization parameters of session delegation, as described in Section 5.3.2.6, "Session Delegation Tab".
8.
In the Audit tab, assign an audit filter to user security profile to generate only relevant audit events, as described in Section 5.3.2.7, "Audit Tab".
9.
In the OTP tab, define the OTP authentication parameters, as described in Section 5.3.2.8, "OTP Tab".
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating