Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

1.4.2 Directory Panel Overview

The graphical user interface (GUI) of the Quest ESSO administration console Directory panel is divided in different areas, as shown in the following illustration:
Static menus (File, View and Help), which are always available and always display the same commands.
Display biometry data (Biometrics panel).
Display reports (Reporting panel).
This area appears in the Directory panel only. It displays your LDAP directory administration perimeter.
The active panel is shown in a gray circle.

2 Authenticating to Quest ESSO Console and Managing Protection Modes

Quest Software provides the two following protection modes for the Quest ESSO security database:
Hardware protection mode: Quest ESSO operating mode in which administration encryption keys are protected by cryptographic smart cards. In this mode, smart cards are required to perform Quest ESSO administration tasks.
Software protection mode: Quest ESSO operating mode in which administration keys are protected by passwords and, if wanted, by smart cards. In this mode, smart cards are not required to perform Quest ESSO administration tasks.

2.1 Starting/Stopping Quest ESSO Console

2.1.1 Starting Quest ESSO Console

As Quest ESSO Console is an administration console, the way to start it depends on the protection mode used:
Upon the first start of Quest ESSO Console, you authenticate from the Security Module or pass phrase as the super-administrator. Then, depending on your needs, you can define as many administrators as you want, and assign for each one an administration role, with specific administration profiles and for specific organizations of the directory (see Section 4., "Managing Administrators").
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating