Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

9 Managing SA Server Devices

Quest ESSO Console allows you to manage the Gemalto Strong Authentication Server as follows:
Quest ESSO does not manage SA Server policies, keys and roles.
From Quest ESSO Console this link between user ID and device is managed, and does not need the use of the SA Server administration portal.
To each Quest ESSO user corresponds a specified user ID, and only one device may be assign to this user.

9.1 Configuring Quest ESSO for SA Server Management

You must have the Quest ESSO SA Server license (SASRV).

9.1.1 Configuring SA Server Connection

1.
In Quest ESSO Console, click File/Configuration and select the SA Server Hosts tab.
2.
Fill-in the Host description area with the instructions given in the following "SA Server Hosts" Tab Description section.
3.
Click the Add to Host List button to add the server to the list of SA Server managed by Quest ESSO.
5.
Manage the host connection order by click the Up and Down button in the Hosts area.
6.
Hosts area
Up/Down buttons
Edit button
Remove button
The SA Server URL must be entered with the following syntax:
<SA Server host name>/<SA Server base folder>

9.1.2 Configuring the SA Server Device Management

1.
In Quest ESSO Console, click File/Configuration and select the SA Server Configuration tab.
2.
Fill-in the tab with the instructions given in the following "SA Server Configuration" Tab Description section.
3.
Initialize: the device can be used again.
Revoke: the device cannot be used anymore (irreversible).
Example: if the user ID rule is (givenName).(sn), the user whose givenName is "John" and whose sn is "Smith" will get "John.Smith" as associated user ID.
Initialize: the device can be used again.
Revoke: the device cannot be used anymore (irreversible).
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating