Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

6.5.5 Deleting Clusters

In the tree structure of the Directory panel, right-click the Cluster to delete and select Delete.

6.6 Selecting a Domain Controller

In Quest ESSO, this occurs for example when an administrator sets a new password to a user account. The new password is immediately replicated (this is a special feature of Active Directory replication process). But for Quest ESSO the new password implies a new key for this user (computed from his password) used to cipher the SSO data of this user. And the SSO data modification replication follows the normal process, which can take hours to reach the user site.
Click File/Change Directory Server.
If you have enter a computer or server name in the Server or computer name text box, all the domain controllers matching the search criteria are listed.
If a computer name is matching the search, all the domain controllers of the computer site are listed.

7 Importing/Exporting Security Profiles and Directory Objects

This section explains how to export directory tree objects as an .xml file from Quest ESSO Console, and how to import this file into the directory.
You can export/import all objects that are created with Quest ESSO Console, and technical references (created with Enterprise SSO Studio) associated with applications.

7.1 Exporting Objects From Quest ESSO Console

In the Directory tree, right-click the object or the organization containing the objects you want to export and select Export.
If the Export options window appears, fill-in the window as explained in the following "Export options" Window Description section and click OK.
An export confirmation window appears. The selected data is exported as an .xml file.
This check box is available if you want to export applications.
A Technical reference (or technical definition) is a technical description of an application that is created in Enterprise SSO Studio (see
SSOWatch Administrator Guide for more details). The application definition is completed in Quest ESSO Console (see Section 6.1, "Managing Applications").
Check box selected: the technical references associated with the applications you want to export are exported in the .xml export file.
Check box cleared: the technical references associated with the applications you want to export are not exported.
Check box selected: all the objects contained in the selected organization and all its sub-containers (if any) are exported in the .xml file.
Check box cleared: all the objects contained in the selected organization are exported, but not those contained in its sub-containers.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating