Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

9.2 Managing SA Server Devices

In Quest ESSO Console, you can manage SA Server devices as smart cards.
The device ID associated with each SA Server device is saved in the directory, and allows Quest ESSO Console to detect whether the device is a device registered in SA Server.

9.2.1 Assigning an SA Server Device to a User

2.
Fill-in the SA Server tab with the instruction given in the following "SA Server" Tab Description section. This tab allows you to register the device as a SA Server device and to link the selected user to this device.
3.
The User ID field is automatically fill-in according to the user ID rule defined while configuring the SA Server device management (see 9.1.2 Configuring the SA Server Device Management).
If the SA Server is configured in "Full DB", you must fill-in the Password and Confirm password fields for the selected user.
Device ID field
Validate check box
Check box selected: the SA Server is updated with the information entered in the tab when you click the OK button, the link between the device and the user is established in SA Server.
Check box cleared: the SA Server is not updated with the information entered in the tab when you click the OK button, no link is established between the device and the user in SA Server.
You can do the assignation later on: see Link User/Remove Use in 9.2.4 Managing the Link Between User and SA Server Device.

9.2.2 Formatting an SA Server Device

If the Revoke option is set, the device state becomes "Revoked" and cannot be used anymore.
If the Initialize option is set: the device state becomes "Initialized". If a user was linked to this device, the link is removed.

9.2.3 Blacklisting an SA Server Device

If the Revoke option is set, the device state becomes "Revoked" and cannot be used anymore.
If the Initialize option is set: the device state becomes "Initialized". If a user was linked to this device, the link is removed.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating